Security Engineering Manager

IT

Job Number: 10718

Location: Acton Support Centre (123)

Contract: Full Time / Permanent

Description

DESCRIPTION

The ever changing retail market with multichannel capabilities driven by evolving technologies and interactive customer-focused applications is an attractive target for attackers. At Dixons Carphone we are expanding our Security function to address these challenges. 

 

Reporting to the Head of DDC, the Security Engineering Manager develops, manages and leads the Security Engineering team and their efforts, enterprise-wide, to ensure the companies’ technical defences are fit for purpose. The security engineering team is responsible for all aspects of the “protect, detect, respond” lifecycle.

 

The Security Engineering Manager will be expected to working with IT operations to ensure that network defences are in place and up to date and working with application development and engineering teams to ensure that applications are integrated into a coherent security architecture.

 

Responsibilities:

  • Supporting the Head of DDC with developing and implementing the DDC strategy;
  • Coaching junior or more inexperienced team members; and
  • Collecting data that is used for KPI reporting for the CISO.
  • Working closely with Network Analysts and Infrastructure Service Providers to ensure security technologies are operational and effective;
  • Where applicable monitor service agreements with outsource providers;
  • Manage and govern reports on intrusion detection/prevention systems, log analysis and Data Loss Prevention (DLP);
  • Provide regular reports to Head of Digital Defence centre and other stakeholders regarding the operational security posture of the company;
  • Propose technical security solutions to fix known risks, issues and vulnerabilities
  • Maintain an awareness of the technical security product market and recommend products to the Head of DDC as necessary.
  • Driving technical remediation efforts to reduce information security risks across the Dixons Carphone estate;
  • Develops and enhances the security data management and security analytics capabilities of the DDC
  • Maintains a high state of situational awareness regarding threats to Dixons Carphone and relevant industry peers
  • Leverages and expands the capabilities of existing analytical tools and technologies; recommend new technologies as appropriate
  • Attend industry events and be up to date on threats faced by the retail industry;

 

Required Skills:

Essential

  • Strong influencing, negotiation and budgeting skills
  • Detailed knowledge of security standards and guidance such as NIST Cyber Security Framework, ISF Standard of Good Practice etc.
  • Great communicator with the ability to communicate at all levels within the organisation

 

Desirable

  • Extensive experience with common security analytics, threat intelligence, security case management and other information security platforms
  • Extensive experience in security operations, security incident response, security analytics, cyber threat intelligence and security threat hunting
  • Prior experience in the retail industry and an excellent understanding of security threats faced by the retail industry

 

Qualifications:

  • Bachelor degree in a related field such as information security, management or computer engineering
  • Active CISSP & CISM certifications required
  • Other relevant certifications (such as GCIH, GCIA, GCFA) desirable