Cyber Security Event/Operations Manager

  • Location

    Glasgow, Scotland

  • Sector:

    IT Security

  • Job type:


  • Salary::

    Up to £0.00 per annum + HIGHLY COMPETITIVE SALARY + PACKAGE

  • Contact:

    Gail Maguire

  • Contact email:


  • High Salary:


  • Low Salary:


  • Reference:


  • Job Published:

    10 months ago

  • Expiry Date:


  • Startdate:


Cyber Incident Event Manager - Glasgow

My client is a highly dynamic and globally successful Investment Bank.
They currently have an opportunity for a Cyber Incident Event Manager to join their team in Central Scotland.

The role:
- Cyber Event Manager, is charged with orchestrating prevention, detection, and response to cyber events that threaten the Firm's clients, assets, and reputation. The cyber system is also responsible for the management of cyber events from detection to response to resolution, and serves as the Firm's focal point for cyber communications and reporting.

The Cyber Event Management (CEM) team is responsible for orchestrating a rapid Firm-wide response to any cyber threat, vulnerability, or incident that introduces risk to the Firm, taking into consideration the nature and criticality of the cyber event; the Firm's assessed or potential exposure; the Firm's control posture; and the level of actual or potential business impact.

The global incident team is a 24/7 operation with members in key geographic locations; this requires the role to cover shifts during weekday core hours, plus occasional evening and weekend on call for Cyber Event Management as required.

Primary Responsibilities:
A successful CEManager must have an appropriate mix of cybersecurity knowledge, communication skills, interpersonal skills, and operational experience. A successful candidate should ideally have a solid foundation of cybersecurity technology experience and have a voracious appetite for learning new things. The cybersecurity landscape is constantly changing and it is essential that you will be able to keep pace in this incredibly dynamic environment.
- Assist in the development and implementation of global operations, working with leadership to establish comprehensive "follow the sun" workflow processes
- Orchestrate cyber incident event management from detection to resolution to recovery for cyber threats, vulnerabilities, or incidents that threaten the Firm's clients, assets, or reputation
- Develop, maintain, and continually refine standard operating procedures for escalation, communication, and response
- Conduct cyber incident scenario preparation including scenario development with stakeholder teams, Cyber playbook development and documentation, incident simulations and exercises, as well as post-incident reviews
- Develop, exercise, and continually refine Cyber playbooks for a range of potential threat scenarios
- Maintain knowledge of current and emerging cyber threats to the Firm
- Work as part of the global CEM community to develop and tune the firm's event response operations

Required Skills:
- Professional experience within security roles, preferably within financial services, law enforcement, the military, and/or the intelligence community
- Requires excellent writing, presentation, and communication skills for event management; plus pre and post event response development
- Experience designing and orchestrating cyber event exercises
- Experience of cyber security investigations and understanding of cyber threat landscape
- Knowledge of information security threat type and their composition
- Knowledge and experience of computer security incident investigations and response processes
- Ability to distil technical and complex information into easy to understand business terms for management

Desired Skills:
- Experience working for a globally distributed organization
- Willingness to learn about the technology and cyber threat environment
- Experience of Major Incident Management
- ITIL V3 Foundation Certificate in IT Service Management
- Experience of 24/7 operational environment
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)

This is an excellent opportunity to be at the forefront of one of the largest cyber incident global response teams