Role: InfoSec Ops Manager
Location: London - hybrid 2 days a week in the office
Reports to: CISO
The role
As Security Ops Manager, you’ll be working across a range of areas to support the information security needs of a busy, high-profile website, as well as an administrative IT environment that supports nearly 1,000 people across 3 office locations with many remote workers. As well as working closely with the other members of the Information Security team, the role will also require extensive engagement across other departments within Rightmove (including IT Services, Product Development, Compliance. Legal, HR etc.) to ensure security objectives are being met, incidents are being responded to effectively, and our security stance remains strong.

What you’ll be doing

• Providing technical leadership and acting as a subject matter expert on information security best-practice.
• Planning and delivering projects to achieve our information security objectives.
• Working with DevOps teams on implementing security controls in our new GCP based web hosting environment, and with delivery teams on implementing controls into the software development and CI/CD processes.
• Collaborating with the IT Infrastructure team on the security elements of migrating our on-premise Windows estate into Azure.
• Leading threat modelling sessions with technology teams from both the website and corporate IT functions.
• Working with team members to set up and manage SIEM and XDR tooling and establishing processes and workflows to support incident response and SOC activities.
• Leading threat hunts to proactively discover potential compromises before they lead to bad security outcomes.
• Working with team members and external partners on penetration tests and red team engagements to assess our security posture, along with our detection and recovery capabilities.
• Helping evaluating our response to regulatory/legislative requirements and recommending actions if needs be (e.g. FCA compliance, PCI-DSS, GDPR etc).
• Keeping up to date with cyber threat intelligence and emerging attack vectors, always evaluating the materiality of the threat to Rightmove and helping shape our response.
• Coaching and developing your people, with regular 1-to-1s and continuous feedback.
• Supporting your team members by actively removing blockers.

We’re looking for someone who

• Has a passion for Information Security and understands how this is embedded into an organisation.
• Can manage their own workload, making decisions on what tasks need to be prioritised.
• Is confident to communicate and collaborate with internal and external stakeholders, either individually or in group settings, and across a variety of levels of seniority and technical understanding.
• Can reach decisions, even if they are difficult, and is able to provide a clear explanation of the rationale and approach taken.
• Can be trusted to keep confidences, and displays a high level of professional integrity.
• Follows through on commitments and can be relied upon to get things done.
• Is proactive, hands-on and wants to make things better.

What you’ll bring to the role

• Minimum of five years working in a technical security-based role, or equivalent in research at an education level above degree.
• A degree in Computer Science, Computer Security or other technical area or an equivalent level of industry experience, or a high-level Security qualification such SANS Cyber Defence, EC-Council Certified Security Analyst, OSCP etc.
• Professional experience in three or more of the following areas (and a willingness to learn about the others):
• Application security (with a focus on web applications); including the use of security controls in an agile development environment
• Linux security
• Securing Windows, Active Directory and M365 environments
• Container security
• Cloud Security (ideally in GCP and / or Azure environments)
• SIEM and EDR / XDR systems
• Incident Response.
• Strong understanding of networking principles including TCP/IP, DNS etc. and commonly used Internet protocols such as SMTP, HTTP etc.
• Experience working in IT security in a cloud focused environment.
• Good data processing skills – experience with ELK, Splunk or similar would be beneficial
• Report writing and note taking skills.

• Ability to prioritize both operational and project demands.Line management experience.

What you’ll be doing

• Providing technical leadership and acting as a subject matter expert on information security best-practice.
• Planning and delivering projects to achieve our information security objectives.
• Working with DevOps teams on implementing security controls in our new GCP based web hosting environment, and with delivery teams on implementing controls into the software development and CI/CD processes.
• Collaborating with the IT Infrastructure team on the security elements of migrating our on-premise Windows estate into Azure.
• Leading threat modelling sessions with technology teams from both the website and corporate IT functions.
• Working with team members to set up and manage SIEM and XDR tooling and establishing processes and workflows to support incident response and SOC activities.
• Leading threat hunts to proactively discover potential compromises before they lead to bad security outcomes.
• Working with team members and external partners on penetration tests and red team engagements to assess our security posture, along with our detection and recovery capabilities.
• Helping evaluating our response to regulatory/legislative requirements and recommending actions if needs be (e.g. FCA compliance, PCI-DSS, GDPR etc).
• Keeping up to date with cyber threat intelligence and emerging attack vectors, always evaluating the materiality of the threat to Rightmove and helping shape our response.
• Coaching and developing your people, with regular 1-to-1s and continuous feedback.
• Supporting your team members by actively removing blockers

What you’ll bring to the role

• Minimum of five years working in a technical security-based role, or equivalent in research at an education level above degree.
• A degree in Computer Science, Computer Security or other technical area or an equivalent level of industry experience, or a high-level Security qualification such SANS Cyber Defence, EC-Council Certified Security Analyst, OSCP etc.
• Professional experience in three or more of the following areas (and a willingness to learn about the others):
• Application security (with a focus on web applications); including the use of security controls in an agile development environment
• Linux security
• Securing Windows, Active Directory and M365 environments
• Container security
• Cloud Security (ideally in GCP and / or Azure environments)
• SIEM and EDR / XDR systems
• Incident Response.
• Strong understanding of networking principles including TCP/IP, DNS etc. and commonly used Internet protocols such as SMTP, HTTP etc.
• Experience working in IT security in a cloud focused environment.
• Good data processing skills – experience with ELK, Splunk or similar would be beneficial
• Report writing and note taking skills.
• Ability to prioritize both operational and project demands.Line management experience