Security Manager - Security Operations Centre

.Job Title: Security Operations Centre Manager

Contract Type: Permanent

Location: Edinburgh or Alderley

Working style: Hybrid 50% home/office based 

Closing date: 24th February 2025

We are looking to recruit an exciting role within our CISO function. This is an operationally focussed role which involves maintaining a high benchmark in leading a protective monitoring team to detect and respond to cyber events, minimising the potential damage from cybersecurity incidents.

The successful candidate shall be able to work with minimal guidance in the Security Operations field and will take accountability for the day-to-day operation of the Security Operations Centre. The role is directly responsible for the people management of a team of 5 SOC specialists supported by a managed service from a 3rd party MSSP. This role will own the MSSP relationship and be responsible for measuring and reporting on MSSP performance.

About the role

• Lead the SOC in protective monitoring of the environment including on premise and cloud services.

• Develop the skills within the team for protective monitoring activities, ensuring expertise are in place to detect and respond to cyber incidents, containing the threat to the Royal London business and support the remediation activities to stabilise service.

• Drive improvements in attack detection capabilities through use case development aligned to the Mitre Att&ck framework.

• Lead the team through threat hunting, purple teaming and red team exercises to demonstrate the capability to detect & respond to cyber events.

• Drive improvements in logging & monitoring, assuring the right information is being collected and corelated to produce high quality use cases using SIEM, SOAR etc. Experience of using AI within SOC would be an advantage.

About you

• You will be a strong people manager first and foremost, with the ability to inspire and develop the team.

• You will have experience in developing a series of KPI’s & KRI’s to measure the performance of both the internal SOC function and the MSSP services.

• You will substitute for the Head of Department where necessary, communicating Cyber issues to senior management, translating technical security risks into business problems.

• You will have experience in managing an operational security team with demonstrable results.

• You will have experience in managing supplier relationships, monitoring service levels to assure SLA’s are maintained.

• You will have experience working with auditors, speaking confidently in the assurances we provide to evidence our technical capability to detect and respond to cyber events.

About Royal London

We’re the UK’s largest mutual life, pensions and investment company, offering protection, long-term savings and asset management products and services.   

Our People Promise to our colleagues is that we will all work somewhere inclusive, responsible, enjoyable and fulfilling. This is underpinned by our Spirit of Royal London values; Empowered, Trustworthy, Collaborate, Achieve. 

We've always been proud to reward employees by offering great workplace benefits such as 28 days annual leave in addition to bank holidays, an up to 14% employer matching pension scheme and private medical insurance. You can see all our benefits here - Our Benefits  

Inclusion, diversity and belonging. 

We’re an Inclusive employer. We celebrate and value different backgrounds and cultures across Royal London. Our diverse people and perspectives give us a range of skills which are recognised and respected – whatever their background.