Cyber Security Lead - Glasgow, United Kingdom - City Facilities Management (UK)

City Facilities Management (UK)
City Facilities Management (UK)
Verified Company
Glasgow, United Kingdom

2 weeks ago

Tom O´Connor

Posted by:

Tom O´Connor

beBee Recruiter
Description
Salary
Competitive

  • Location
    Glasgow Head Office, 2 Lawmoor Street, Glasgow G5 0US
  • Shift Pattern
    Days
  • This is a _permanent_, _vacancy_ that will close _in a month_ at 23:59 GMT_. _

The Vacancy

POSITION OVERVIEW:


This role will lead the implementation, development, and execution of Security Operations, protecting City's users, infrastructure, and data from a range of threats.

You will monitor networks and systems, detect security threats ('events'), analyse, and assess alarms, and report on threats, intrusion attempts and false alarms, either resolving them or escalating them, depending on the severity.

You will also take the lead and provide a focal point for a range of security related activities such as compliance with policies and standards, vulnerability management, monitoring and reporting, risk and threat assessment, incident response, business continuity and disaster recovery, supporting plans to develop and improve Cyber Security and compliance with ISO27001, GDPR and other standards and regulations at City.


PRINCIPAL TASKS AND RESPONSIBILITIES

  • Have a good knowledge of the latest security and technology developments and be committed to stay current with technology trends.
- research/evaluate emerging cyber security threats and ways to manage them.
- plan for disaster recovery and create contingency plans in the event of any security breaches.
- monitor for attacks, intrusions and unusual, unauthorised or illegal activity.
- test and evaluate security products.
- design new security systems or upgrade existing ones.
- use advanced analytic tools to determine emerging threat patterns and vulnerabilities.
- identify potential weaknesses and implement measures, such as firewalls and encryption
- investigate security alerts and provide incident response.
- monitor identity and access management, including monitoring for abuse of permissions by authorised system users.
- liaise with stakeholders in relation to cyber security issues and provide future recommendations.
- generate reports for both technical and non-technical staff and stakeholders.
- maintain an information security risk register and assist with internal and external audits relating to information security.
- assist with the creation, maintenance and delivery of cyber security awareness training for colleagues.

  • Set team goals and technical direction while ensuring that they align with the goals of the Technology and Information Security roadmaps
  • Set personal goals for each team member as well as direction while ensuring they are aligned with team goals
  • Implement effective engineering processes and policies that emphasise quality and forward progress.
  • Manage 3rd parties.

SKILLS/EXPERIENCE

CRITERIA

ESSENTIAL

DESIRABLE

_Professional/Academic/ Vocational Qualifications_

  • Degree level qualification or equivalent experience in Cyber Security or Network and System Administration
  • SSCP or CISSP
  • CISM
  • CompTIA Security+

_Specific Knowledge_

  • Cyber security essentials


  • ISO 27001/2230

  • Microsoft 365/Azure
  • Ethical Hacking/Purple Team Activity
  • SIEM Management

_Specific Skills_

  • Host intrusion prevention and antivirus
  • Malware sandboxing reports
  • Security tooling (Windows & Cloud environment)
  • Cloud Security (SaaS, PaaS, IaaS)
  • Anomaly detection
  • O365, Azure. MS Intune, Identity Management
  • Cyberattack techniques, vulnerabilities, and mitigation strategies
  • Mitre ATT&CK and NIST frameworks.
  • An understanding of the cyber security risks associated with various technologies and ways to manage them

_Demonstrated Behaviours_

  • Business sense
  • Communicate Up, Down, and Across All Levels of an Organisation
  • Pragmatic and flexible approach
  • Problem-Solver
  • Excellent interpersonal skills
  • Creativity

Experience:


  • 5+ years in IT Security or IT
  • 4+ years in SOC Analyst, Cyber Threat Hunter, Investigations, Analysis, or Campaign Tracking

The Company
In 1985, husband and wife Willie and Susan Haughey established City Refrigeration Holdings. The pair set out with one goal - to make a positive change in the facilities management industry.


The Haugheys founded their enterprise on the values of collaboration and transparency, replacing client/contractor relationships with long-term, mutually beneficial partnerships.

Each partner receives a unique strategy, shaped by the needs of the business and implemented by a bespoke, self-delivered model.


It is this focus that has allowed the City Group to grow from its humble beginnings into one of the world's most trusted facilities management companies.

The business now employs over 12,000 people and has established divisions across Europe, Australia, North America and Asia.

It has also diversified the services it offers to include maintenance and engineering, technical procurement and support, cleaning and ancillary services across retail, residential and commercial markets.

Now more than three decade
More jobs from City Facilities Management (UK)
See all jobs of City Facilities Management (UK)