Cyber Defence Team Manager at OUTsurance

Job Description
Responsibilities

As the Cyber Defence Team Manager, you will be responsible for but not limited to the below:

• Responsible for overseeing all security incident investigations to ensure that incidents are thoroughly & timeously investigated.
• Facilitate and/or oversee the implementation of countermeasures to mitigate any identified deficiencies.
• Deployment or assist with deployment of technical solutions for detecting & preventing potential threats.
• Ensure all relevant hosts & sources are monitored across the environment, including cloud and on premise.
• Ensure that all new critical security log sources are ingested into the relevant SIEM.
• Ensure adequate activity log retention on all critical systems, apps & infrastructure appliances for investigation purposes in the event of a breach.
• Identify important elements of threats (behaviours, tools, targeting, etc.) and use this knowledge to build detections.
• Fine tune existing IoCs to reduce false positives.
• Mature the company’s Cyber Incident response plan & processes.
• Take ownership of incident response playbooks.
• Initiate the incorporation of the Mitre ATT&CK framework into relevant processes and procedures.
• Facilitate/coordinate regular cyber breach simulations with internal teams & EXCO.
• Monitor and report on effectiveness of key security countermeasures.
• Run regular phishing simulations using the company’s security awareness solution.
• Develop a Cyber Security awareness program and implement a Cyber Security Awareness solution to support the program

Competencies

The successful individual would need to demonstrate the below listed competencies at an advanced level:

• 'Can do' attitude, comfortable dealing with ambiguity, resilient, strong team player, committed to continuous improvement
• Very strong interpersonal skills and the ability to build relationships
• Problem-solving with strong decision-making mind-set
• Takes initiative and works under own direction
• Engages professionally
• Adapts and responds positively to change
• The ability to multitask and handle stress to meet project deadlines
• Enthusiasm, energy, determination and a passion for improving client experience through digital platforms
• Works meticulously always demonstrating a very high level of attention to detail
• The ability to multitask and handle stress
• Strong problem solving skills and willingness to roll up one’s sleeves to get the job
• Excellent written and verbal communication skills
• Ability to communicate effectively with management

Qualifications
Qualifications and experience

• 7 years’ experience in an information security role.
• 3 years’ experience as a Team manager or similar position in Cyber security.
• Experience with malware analysis, vulnerability exploitation, network exploitation, network attacks, network traffic analysis and social engineering.
• Experience in using a variety of tools, e.g. EDR, PassiveTotal, Wireshark, Joe Sandbox.
• Familiarity and understanding of basic SQL and KQL queries.
• Proven knowledge of security fundamentals across Microsoft platforms (client, server and cloud).
• Strong knowledge of networking principles and standard protocols.
• Strong knowledge of Windows and Linux.
• At least one of the following technical security accreditations: CISSP, CEH, OSCP, GIAC.