Cyber Security Operations Manager

Are you driven, tenacious, and confident in your ability to improve cyber security? Do you have extensive technical knowledge and the ability to communicate with people from various backgrounds?

Oliver James is currently partnered with a global healthcare company headquartered in Lachen, Switzerland to recruit a **Cyber Security Operations Manager**. This is an exciting opportunity to really develop a SOC from the ground up.

There is a lot of interesting projects planned, both within the SOC and the wider business, the company currently has a vulnerability management & scanning programme in the works.

In your role as a Cyber Security Operations Manager:

- Improve and administer the security operations centre and vulnerability management services with a product mindset, collaborating effectively and positively with various IT teams and security service providers.
- Develop and report on business-centric cyber security metrics on a regular basis.
- Assume responsibility for developing or improving processes to identify, investigate, and respond to security alerts and incidents using SIEM - SOAR, EDR/EPP, DLP, IDPs, and other tools.
- Provide incident response, forensics, documentation, and reporting for security incidents.
- Provide security incident management advice, coaching, and assistance to IT infrastructure, service delivery, and service desk teams.
- Manage and improve the vulnerability management process from start to finish, including infrastructure scanning, technical testing, security hardening, reporting results to key stakeholders, and risk-based remediation.
- Assists in the deployment and continuing enhancement of our information security crisis management procedure.
- Assist other members of the ISRM team in developing a security education training awareness programme (SETA) based on lessons gained and root causes discovered through security incident management.

**Requirements**:

- A bachelor's degree in information security, IT, or a related field is required.
- Relevant security credentials such as ISC2, ISACA, CREST CCTIM or CCIM, SANS, and Vendor Certifications are desirable.
- 12+ years of professional IT job experience in roles like network engineering, operations, and security engineering.
- 5+ years of expertise in security operations management and vulnerability management, preferably in manufacturing-related enterprises.
- Working understanding of security protection and detection technologies such as Next-Generation Firewalls, IDPs, DER/EPP, network and host segmentation, SIEM including SOAR, and Vulnerability Scanning and Management tools is required.
- Experience with numerous technologies, including Operations Technologies (OT), such as industrial and process control systems, in terms of security monitoring, detection, and reaction.
- Knowledge of popular network services and known network vulnerabilities or attack patterns, as well as threat actor TTPs (Techniques, Tactics, and Procedures), as well as the use of MITRE ATT&CK / Kill chain / threat modelling frameworks.
- Must be able to develop project/program goals and roadmaps based on business/service customer demands and strategic direction, as well as ensuring that committed projects are completed on time by the appropriate team members.
- You are self-assured and able to articulate why you are a business enabler through the work you produce.
- Knowledge of GXP, CSV, and other pharmaceutical sector laws is advantageous.
- You have excellent oral and written communication skills in English, as well as some useful German.
- You are resilient, self-reliant/motivated, proactive with a high level of accountability, and you have good teamwork skills.
- Presentation and training, relationship management, counselling, and negotiation are all skills you possess.
- You possess a high level of personal integrity, the capacity to properly handle confidential affairs, and the necessary judgement and maturity to persuade.
- You can work in a matrix organisation that is geographically distributed.
- You could travel roughly 30% of your working time if necessary (worldwide)
**Have the right to work in Switzerland