Cyber security incident Manager AVP
Role
- The candidate will be required to be a self-starter able to identify and implement necessary tasks within their area of responsibility and the flexibility necessary to work within the Joint Operating Centre (JOC).
- Being part of a multifunctional team providing the communication and co-ordination services that deliver a world class Joint Operations Centre function.
- Engaging in critical security activities which will ultimately drive security improvements and have a positive impact on security culture across Barclays and any dependent Business Divisions by providing its common, services and by sharing best practice.
- Providing support to operational teams and to brief on the information security threat landscape to senior management when required.
- Executing a clear framework for the identification and communication of security incidents managed within the JOC globally.
- Participating in a security response capability to ensure that Barclays can call on expert capability and respond rapidly to security events, any time any place.
- Represent Physical and Cyber Security interests in internal JOC planning.
- Responsible for assisting in the review of events, including notification, escalation response and post incident review.
- Delivers the execution of triage controls to detect and prevent attackers from infiltrating company information or jeopardizing e-commerce programs.
- Delivers recommendations and actions to improve the detection, escalation, containment and resolution of security incidents,Shift work to ensure 24x7x365 coverage.
Essential Skills/Basic Qualifications:
Knowledge of
- Cyber Kill Chain
- Intelligence Driven Defense
- Attack Monitoring including documentation and ticketing fundamentals
- Digital Forensic and Incident Response skills
- Security architectures
Good understanding of security processes and technologies including;
- Threat Analysis
- Vulnerability Assessment
- Security Monitoring
- Compliance
- Auditing
Good working knowledge of key tools; including:
- Resilient,
- ServiceNow,
- Rapide,
- Alarmpoint,
- Microsoft SharePoint & Office,
- Atlassian suite of products including Confluence and JIRA
- Able to demonstrate a proven track record leading a team in the effective delivery of Incident and Problem Management.
- A good understanding of and keen interest in geopolitics, international security and current affairs.
- A good technical understanding of the threats against the financial industry from both the physical and Cyber threat domains
- Fluent English speaker
Desirable Skills
- Stakeholder management and leadership
- Confident, with the ability to remain calm, controlled and focused in pressure situations
- Ability to identify operational risks and issues in a fast time environment, and take proportionate and appropriate actions.
- Ability to write concise reports based on complex data with accuracy, brevity, and speed whilst reporting to the highest levels of the organisation.
- A good understanding of a Corporate, Physical Security Environment.
- Previous experience in a Security Control Room environment is desirable.
- UK Security Clearance (preferable)
Didn’t find the job appropriate? Report this Job