ION Group - IT Security Engineering Manager

• We are looking for a diligent, dedicated, creative and motivated individual. Excellent communication skills are a must, and the role holder will be expected to cultivate working relationships with other teams and colleagues of varying technical ability. The role would suit a technically strong candidate with an extensive cybersecurity background, at least 10+ years working in a security role, with focus on security engineering. • This role may require work out of hours • Personnel Management: • Ensure team members have clear objectives/development plans • Align Teams’ objectives to OKRs • Be the escalation point for security Tooling issues and critical security breaches • Responsible for team development, upskilling & mentoring • Responsible for vendor/MSSP relationships for the group-wide organization • Protect and defend: • Manage Security tooling to ensure coverage/availability/efficacy of tooling • Provide oversight, guidance and leadership of the IT Security Engineering Team • Drive improvements and feature enhancement to ensure ROI • Operate and maintain: • Configure, tune, maintain and operate key security controls, technologies, and other risk mitigations • Own the management reporting and provided monthly Executive level reporting • Drive process/procedure changes accordingly • Ensure quality of ticketing & runbook maintenance • Cultivate and maintain strong vendor relationships • Have an attitude of continuous improvement • Be accountable/responsible for security tool health throughout the estate • Manage the governance initiative for security tooling • Engage with vendors to introduce formal QBRs, tool reviews, feature enhancements and adoption • Create and own the overarching security tooling strategy • Regular tool reviews • Documented process for a formalized approach to security tool selection • Participate in CAB, Tool review or Architecture Review Boards (ARBs) • As a member of the ION IT Security Team, it is expected that the person in this role will: • Execute ongoing, operational business-as-usual (BAU) tasks to meet management-defined KPIs and SLAs, and deliver security projects in line with management-defined priorities and deadlines • Stay current with the latest security news, threats, intelligence, tactics, techniques, and vulnerabilities. Research and analyze new threats and vulnerabilities to determine exposure. • Assist and/or lead efforts to isolate, contain, respond to, and recover from security incidents • Identify, review, prioritize, plan, coordinate, and follow-up on the remediation of vulnerabilities • Configure, customize, tune, manage, troubleshoot, and maintain effective and efficient operation of security technologies, such as SIEM, endpoint security, secure web gateway, CASB, DLP, email security, intrusion detection/prevention systems, etc. This may also include scripting, automation, and orchestration across various platforms • Review systems, configurations, and processes to ensure and report on compliance with ION policy, client requirements, audit controls, regulations, and industry best practices. Provide best practice security recommendations to IT and other teams within ION, based on review results • Respond to information security-related inquiries and requests