Endpoint Protection Service Manager
Recruiter
Listed on
Location
Type
This job has now expired please search on the home page to find live IT Jobs.
Job Title: Endpoint Protection Service Manager
Duration: 6 months
Location: Swindon
Role Description:Define, determine and report KPIs for service optimisation in the areas of endpoint securityProvide Monthly KPI Reports to the Head of IT SecuritySchedule and assist in rollout planning and testing of future Endpoint Protection upgradesAnalyse the causes of escalated incidents, problems and changes and propose steps to improveMonitor the Endpoint Protection service queue for incidents change requests and ensure changes are implemented within the agreed SLA following strict internal change control processesProactive improvement of stability and usabilityWork closely with the Third Party Provider to ensure the day to day operations are being delivered to high quality and within SLAsEnsuring all changes to the platform are assessed from a risk perspective including any proposed security policy changes and exception requests e.g Application Safelisting, periodic endpoint policy configuration changesCreate Reports and DashboardsReview security alerts, action as appropriate and initiate escalations to other teams, including Incident Response Team as and when necessaryContribute to knowledge documents and incident response playbooks outlining processes, support procedures and workflowsReview, manage and provide security approvals for firewall requestsOther duties as and when required
Objective:
IT INFRA is responsible for providing IT Services to every company within the Group (up to 20,000 users).
IT INFRA consists of the following functional areas:Data Centre & CloudEnd User ComputingIT SecurityNetworking and Unified CommunicationsService Management
The client's Supply & Trading is seeking an enthusiastic and motivated individual to work as an Incident Response Manager within the IT Security Operations team.
This role sits within the IT Security Operations team which is responsible for Operational Security and reports into the IT Security Operations Team Lead. The Endpoint Protection Service Manager will assist on a temporary basis and manage the Third party who performs the day to day operations and ensure that the service runs smoothly in accordance with the defined SLAs and KPIs.
Competencies Required:A high level of understanding of cyber security principles, practices and toolsA broad understanding of the cyber security threat landscape.Good understanding of KPIs and reportingExperience of managing a third partyExperience in dealing with cyber incidentsProven experience in Endpoint Protection and EDRPrevious service management experience is not essential but an advantageWorking knowledge of an Endpoint Protection architectureGood understanding of the Mitre ATT&CK FrameworkUnderstanding of security governance, risk and complianceUnderstanding and familiarity with cloud security and conceptsAbility to create documentationAbility to resolve problems independently and understand the escalation procedureKnowledge and experience with Windows, Unix/Linux operating systemsGood understanding of Firewalls and Network SecurityUnderstanding of network protocols
Personal SkillsExcellent written and verbal communicationStrong verbal presentation and writing skills, including the demonstrated ability to write clear and concise text.Excellent analytical abilities and a strong ability to think creatively when approaching issuesExperience managing complex stakeholder relationshipsConfident in working with a diverse set of stockholders in the organisation from technical through senior management level.Strong report writing and communication skillsStrong Interpersonal SkillsExcellent team working capabilitiesFlexible and adaptable to changeAble to work well under pressureAbility to maintain composure under pressureAbility to handle multiple competing priorities in a fast-paced environment to proceed high priority tasks to a resolution
Required Qualifications:Bachelors or Master's degree in computer science, computer engineering, digital forensics, cyber securityCertified Ethical Hacker (CEH)Certified Information Systems Security Professional (CISSP)
Previous experience of working in the Energy, Financial or Banking Sector is an advantage but not essential
If this role is of interest to you, please submit your CV in the first instance.