Crown Agents Bank is a vastly growing and regulated UK bank that connects emerging and frontier markets to the rest of the world, using FX and payments technology. We are transforming the way payments and FX move through emerging markets, reducing friction so that more money gets to those who need it. Emerging markets payments are usually challenging, expensive, unreliable and opaque. Our solutions help fix these pain points. Ultimately, we connect traditionally hard-to-reach regions to global financial infrastructure, giving access to the best prices and the fastest, most reliable settlement.

FX and cross-border payments are often complex and expensive, especially when operating in emerging markets. Crown Agents Bank (CAB) wraps its deep and trusted relationships and strength of network around innovative digital capabilities, and cross-border transaction banking solutions to enable fintech, corporates, governments, development organisations and banks to move money to, from, and across often hard-to-reach markets.

We are currently based in Sutton and we are expected to move to our new offices, in London Bridge in May 2024 

The Security Operations Manager plays a crucial role in overseeing and managing the relationship with the SOC service provider while internally leading the security incident and vulnerability management processes. This includes ensuring the bank's security needs are met, liaising between internal stakeholders and the service provider, and constantly reviewing and improving the security operations processes.

Key Responsibilities

• Logging and Monitoring Policy Implementation: Lead and manage the implementation of logging and monitoring policy with the SOC provider, engineering, enterprise architecture and product teams.

• Service Provider Oversight: Manage the outsourced SOC provider, ensuring that they deliver services by the agreed Service Level Agreements (SLAs) and Key Performance Indicators (KPIs).

• Relationship Management: Act as the primary point of contact for the outsourced SOC provider, fostering a productive and cooperative relationship. Ensure clear communication between the provider and the bank's internal stakeholders.

• Incident Response Coordination: Coordinate with the SOC provider during security incidents. Oversee the process to ensure effective incident detection, investigation, response, and recovery.

• Incident Response Management: Develop and implement incident response procedures to promptly identify, assess, and respond to other security incidents. Lead the internal team in conducting thorough investigations and root-cause analysis of incidents.

• Vulnerability Management: Coordinate vulnerability assessments and penetration testing activities. Work with relevant teams to prioritize and remediate identified vulnerabilities.

• Reporting and Communication: Regularly report to senior management and other stakeholders on the status of the security operations, including identified threats, the effectiveness of the SOC provider, security incidents, and the vulnerability exposure status of the company.

• Security Tool Evaluation and Deployment: Assess and recommend security tools and technologies to enhance the organization's security posture. Oversee the deployment and integration of security solutions.

• Budget Management: Manage the security operations budget, making cost-effective decisions for security investments and initiatives.

• Compliance and Audit: Ensure the outsourced and internal security operations comply with all relevant regulatory standards and best practices. Coordinate with internal audit and compliance teams for any related reviews or audits.

• Continuous Improvement: Regularly review the performance of the security operations and suggest improvements or changes, as necessary.

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Relevant certifications such as CISSP, CISM, or GIAC are preferred.

• Proven experience in security operations management and cybersecurity, with a track record of successful incident response and security incident management.

• Strong knowledge of security technologies, including SIEM, intrusion detection/prevention systems, endpoint protection, and security analytics tools.

• Experience with vulnerability assessment tools and vulnerability management processes.

• Understanding of security best practices, standards, and frameworks.

• Knowledge of relevant regulatory requirements and data protection laws.

• Excellent leadership and team management skills

• Analytical mindset with strong problem-solving and decision-making abilities.

• Strong communication and interpersonal skills, with the ability to communicate complex technical concepts to non-technical stakeholders.

• Proactive, detail-oriented, and able to work effectively under pressure.

What's on Offer for the Candidate:

• Hybrid working
• Contributory personal pension plan: - Minimum: Employee 2% and Employer 7%. Employer matches contributions in 1% increments to a maximum of: Employee 5% and Employer 10%
• Life Assurance - 4 times annual salary
• Group Income Protection
• Private Medical Insurance - this may include cover for partner and or children at company cost. Cover includes Optical, Dental and Audiology
• Discretionary Bonus
• Competitive Annual Leave
• 2 Volunteering Days
• Benefit Hut