Job Purpose:
This role is responsible for leading daily security operations to ensure proactive monitoring and rapid response to security threats at GPSSA. It focuses on leading incident response activities, optimizing security tools, and leading the security operations team to enhance the organization’s overall security posture. Additionally, this role plays a critical part in fostering collaboration across departments to ensure comprehensive security measures are in place.
Main Duties and Responsibilities:
Core Responsibilities
Operational Oversight
- Leads the daily operations of the security team, ensuring adherence to established security policies and procedures while maintaining a high level of operational efficiency.
- Supervises the team, providing guidance and support to ensure effective operations.
- Prepare RFPs for security projects and initiatives.
- Manage security service providers and ensure services are delivered as per agreement.
- Achieve successful closure of audit observations.
Incident Response Coordination
- Leads the response to cybersecurity incidents, coordinating efforts between internal teams and external partners to resolve security threats promptly.
- Oversees the incident lifecycle, ensuring a timely response, thorough investigation, and detailed documentation of findings and lessons learned.
- Ensures timely and thorough post-incident reviews are conducted, documenting findings and implementing recommendations to prevent future occurrences.
Performance Monitoring and Reporting
- Monitors key performance indicators (KPIs) related to security operations, identifying potential challenges and recommending improvement initiatives to enhance operational performance.
- Provides regular updates to management on the effectiveness of security operations and any emerging security concerns.
Creates reports on security incidents, trends, and overall security posture, providing insights and recommendations for improvement
Tool Management
- Oversees the implementation, configuration, and management of security tools and technologies, ensuring they are optimized for threat detection and response.
- Evaluates and recommends enhancements to existing security tools based on performance metrics and emerging threats.
- Evaluates the performance of existing security tools, recommending enhancements to address emerging threats and improve efficiency.
Training and Development
- Fosters a culture of continuous learning and improvement within the team to adapt to the evolving security landscape.
Self-Management Responsibilities
- Defines performance goals at the start of the year in discussion with the Line Manager and ensures that the goals are achieved during the course of the year.
- Identifies the training and development requirements for self and agrees on them with the Line Manager to ensure that the required trainings are arranged and attended.
- Strives to achieve the highest levels of proficiency on all the competencies and skills required to perform the role.
Keeps abreast of professional developments, new techniques and current issues through continued education and professional growth.
Education and Experience:
- Bachelor's degree in Computer Science Engineering, Information Technology, Cybersecurity, or a related field.
- Microsoft Azure Certificate
- Security Operations Analyst Associate Certificate
- Minimum 6+ years of experience in security operations, incident response, security technology implementation.
- Experience with DLP, data classification, WAF, IDS/IPS, etc.
- This role is for UAE nationals
