Offers “John-Lewis-Partnership”

Expires soon John-Lewis-Partnership

Information Security Operations Service Owner

  • Bracknell (Bracknell Forest)

Job description



Job Type

IT

Region

South East England

Location

Bracknell

Preferred Hours

Full Time

Partnership Level

05

Closing Date

9/2/2020

Vacancy Type

Permanent

APPLY NOW  

Salary

£69,000 - £98,500

Salary Frequency

per annum

Hours of Work

35 hours per week
Monday - Friday
09:00 - 17:30

We have a number of different ways to work flexibly so at your interview feel free to talk about what flexibility means to you. There are no guarantees, however, it may open the door to not only a new role but a new way of working.

Duties & Responsibilities

What's the role about?

The John Lewis Partnership, Britain's largest co-owned retailer, is looking for a Service Owner to oversee the end-to-end delivery of our Information Security Operations through people, processes and technology.

Based at our Security Operations Centre in Bracknell, our InfoSec Operations team oversee Threat and Vulnerability Management, Logging and Analytics, and Incident Response across our two brands - John Lewis & Partners, and Waitrose & Partners. Working collaboratively, they ensure that customers can shop with us efficiently, safely and securely, every single day.

We need somebody to provide senior leadership to these services; shaping them to meet evolving requirements, growing and developing the team of professionals that operate them, and creating demand for them across the wider partnership, all whilst keeping a keen eye on budget, quality and performance.

If you're as excited by this as we are, then we would love to hear from you.

Job Requirements

What you'll be doing:

Your role as service owner of InfoSec Operations services is to define and oversee delivery of the capabilities required to anticipate potential security issues, identify when they happen, and then return us to normal operations.

In doing so, you will build a collection of capabilities that meet the needs of your customers within the rest of the CISO function and across the wider Partnership, maintaining and progressing a prioritised plan of improvement projects to deliver new capabilities and ensuring the resources required to make a success of your service are in place and operating efficiently. Driving demand and adoption of your service, you'll also ensure stakeholders are kept informed of operational issues and security outcomes arising from their service, and provide regular reporting on key risk indicators, operational metrics, project progress and escalations.

You will work closely with other parts of the Partnership to determine their requirements, whilst influencing them to understand their own security responsibilities. The role requires an informed view of what your services should be doing and an ability to influence and drive change and collaboration in teams outside of security.

Through leadership of your services, you'll actively share the responsibilities of ownership and operations, whilst supporting Partners and colleagues to have a voice in our business, empowering and supporting them to make decisions and take actions based on the output of the InfoSec operations services.

Required essential experience skills and qualifications

What you'll have:

- You will be an expert in Information Security, with accreditation or extensive, hands-on management experience directly relevant to Information Security Operations in a large organisation.

- You'll have experience responding to rapidly changing operational situations and will be comfortable making decisions, such as resource redeployment and task re-prioritisation, in fast-paced and high-pressure environments.

- You'll possess great awareness of information security trends and techniques, both internal and external to the Partnership.

- Leadership-level people management experience of diverse teams of over 10, through all stages of employment (recruiting, developing, managing, organisational changes).

- You'll have strong relationship building skills, and will be comfortable owning and developing the relationship with third parties delivering components of the end to end security service.

- Experience of being responsible for £m budgets, and demonstrating the value delivered from security investment decisions.

- You'll have outstanding communication skills that go beyond “tech talk”, with the ability to translate complex security matters to those without a security background.

Required desirable experience skills and qualifications

What else you could bring:

You will oversee three IT Security Operations domains, and as such, your specialist knowledge and experience in any of the following would be advantageous:

Threat & Vulnerability Management:
Vulnerability Scanning & Management (eg. Qualys, Kenna), NMAP, CIS baseline compliance, asset management, cloud platforms, OWASP, Mitre ATT&CK, threat modelling, patch management, threat intelligence feeds, OSINT, red/purple team testing, threat hunting, strategic vs tactical vs operational intelligence, threat intelligence lifecycle, Forseti, Skybox.

Logging & Analytics:
Splunk, Syslog.

Incident Response:
Mitre ATT&CK, Splunk, log analysis, incident management, CSIRT, network administration, cloud platforms, handling digital evidence, ITIL, Powershell, digital forensics, breach response, Windows event logging, Stealthwatch, Web Application Firewalls, Cisco Ironport, OSI model, HTTP request analysis.

For internal use only:

APPLY NOW  

Make every future a success.
  • Job directory
  • Business directory