Cybersecurity Operations Manager

at  Agilisys

ABOUT US

Agilisys is at the forefront of digital transformation and innovation in the public services sector. With over two decades of experience, we have established ourselves as a trusted partner for governments, local authorities, and organizations nationwide. Our mission is to empower our clients to deliver exceptional public services by harnessing the full potential of technology and data.

THE IDEAL CANDIDATE

• Security-focused with a commitment to delivering robust solutions and maintaining a vigilant stance against threats
• Experience with people management
• Experience with SIEM and orchestration
• Skilled in incident management / response to effectively monitor, detect, analyse, and remediate security incidents
• Experienced with vulnerability management lifecycle
• Working knowledge of Microsoft Defender suite and Sentinel including KQL
• Working knowledge of scripting such as PowerShell or Python
• Knowledge with a range of security tools such as IDS/IPS, firewalls, and vulnerability scanners
• Working knowledge of security policies, compliance standards, and regulatory requirements commonly used within the UK public sector such as Cyber Essentials Plus, NCSC CAF, NHS DSPT, PSN CoCo
• Public sector experience would be advantageous
• Ideally hold, have held, or working towards Microsoft security related certifications such as AZ-500, MS-500, SC-200, SC-300, SC-400
• Ideally hold, have held, or working towards CompTIA Security+ or CompTIA Cybersecurity Analyst, or other similarly relevant certifications
• Ability to collaborate effectively with other teams in the business to address security challenges and implement solutions
• Able to communicate complex technical information to non-technical audiences
• Any experience of working with recognised IT Security standards and frameworks such as PCI-DSS or ISO27001 is highly advantageous
• Change management experience for both Information Security and business impacting Information Security Change
  If you’re excited about joining the Agilisys team and think you have much of what we’re looking for, we’d love to hear from you.

PROCESS

Simply submit your CV.
By submitting your CV, you understand that we have a legitimate interest to use your personal data for the purposes of assessing your eligibility for this role. This means that we may use your personal data to contact you to discuss your CV or arrange an interview or transfer your CV to the hiring manager(s) of the role you have applied for. You can ask us at any time to remove your CV from our database by emailing talentacquisition@agilisys.co.uk – but please note that this means we will no longer consider you for the role you have applied for.
We have a rigorous recruitment process, which we use for all our roles to ensure we attract the very best talent.
Individuals seeking employment at Agilisys must note that we see diversity as something that creates a better workplace and delivers better outcomes. As such, we are keen to maximise the diversity of our workforce and actively encourage applications from all. We encourage diversity through perspective, background, identity, and thought whilst also fostering an environment where everyone can express themselves regardless of your race, religion, sex, gender, colour, national origin, disability, or any other applicable legally protected characteristic. We are committed to continuing to nurture an inclusive environment and building a diverse workforce

KEY RESPONSIBILITIES

As the Cybersecurity Operations Manager, you play a vital role in Agilisys. You will guide and support a team of Security Operations Analysts in their daily tasks, making sure that Agilisys and its customers keep a strong security posture. The role will also require you to support high level work on designing and implementing new security solutions.

You will need to be comfortable doing the following:

• Managing a team of Security Analysts (People management is a key aspect of the role)
• Staff performance reviews
• Absence, annual leave and resource management
• Starters, Movers, Leavers requirements
• Individual professional development plans for team members
• Tracking team progress against InfoSec and Business objectives
• Responsible for reporting the team’s key operational metrics
• Representing team to key stakeholders and clients where required.
• Leading on incident response, including planning, execution and post-incident analysis, assisting Agilisys and/or client(s) to investigate any IT security incidents/events
• Advising on technical elements of information security, evaluating and approving technical designs and solutions. Work with project and programme teams to identify solutions to security challenges that they might introduce.
• Managing relationship with external SOC/SIEM provider(s)
• Reviewing new security products and features to understand how/if they could enhance Agilisys and/or client(s) security posture
• Support the Head of Information Security where required in dealings with relevant external bodies to achieve or maintain security accreditations or certifications

ADDITIONAL RESPONSIBILITIES (TEAM SUPPORT)

• Monitor, review and triage outputs from security logs and monitoring systems
• Identifying security alerts and potential security issues
• Threat hunting
• Identifying and analysing security vulnerabilities and assisting operational teams with resolutions
• Implementing/improving threat detections and alerting
• Assist with technical security risk assessments