Cyber Security Operations Manager

September 16, 2024

Uisce Éireann

Dublin

FULL TIME

Reporting to the Cyber Security Senior Manager, the Cyber Secuity Operations Manager will be responsible for the monitoring of existing systems and IT/OT security infrastructure, security enhancements to new and existing solutions, day-to-day security operations, monitoring, and management, and IT security standards compliance and quality assurance. The role is key to embedding IT security practices across Uisce Éireann processes, procedures and culture and acts as a subject matter expert for Head of IT, on all IT/OT security related matters and issues across the enterprise. This role requires collaboration and sharing of IT/OT responsibilities within the IT area as required .
Main Duties and Responsibilities:

Manage the delivery of operational IT/OT security services through the Cyber Security Operations team including, security operations, security monitoring, incident response and delivery of security systems solutions. Working collaboratively across the various IT/OT teams to ensure the security of the Uisce Éireann IT/OT estate
Provide effective leadership to a motivated and talented Cyber Security Operations team (internal & external) across various geographical locations . Coach, mentor and further develop the team to high performance in delivering IT/OT security services with a strong customer service focus
Manage outsourced Security Management contracts and relationships with strategic suppliers and ensure service providers perform to the SLA’s documented in the contract
Continuously evaluate the performance of service providers and define improvement initiatives
Define, document, maintain and communicate clear and unambiguous roles and responsibilities for the security operational services with all internal and external parties involved
Capture KPIs and performance data and interact with the Head of IT and IT Management to ensure that services and levels are aligned with business requirements
Perform day to day management of security operations activities, including security monitoring, vulnerability assessment, security penetration testing, threat intelligence and threat hunting, incident response and technical compliance implementing security policies and procedures
Responsible for the delivery and operational management of cyber security operations activities while ensuring that architecture principles and standards defined by Enterprise Architecture are adhered to across all security ops initiatives
Ensuring business understanding of key IT/OT security risks and IT/OT risk strategies and their impact through effective communication, awareness raising and training initiatives
Maintain a deep understanding of IT/OT security and risk trends as well as a high level of expertise around enterprise products and technologies
Apply technical expertise to drive best practice regarding cyber security standards, and procedures appropriate to the security needs of Uisce Éireann
Provide oversight, guidance and direction to the IT area for security related matters and work collaboratively with Enterprise Architecture, Information Security and Architecture teams to maintain and deliver secure IT/OTsystems, solutions and data for Uisce Éireann
Maintain awareness and understanding of applicable EU, state and industry regulations and aligning controls and technology with them
Apply technical expertise and provide guidance on the selection, design, implementation and operation of new security related technologies
Assisting in the delivery of internal technology security projects in conjunction with the relevant IT and Business Change Teams (as required) on time, on budget, and at the expected quality
Drive best practice processes by maintaining knowledge and deep expertise in the technology security and risk landscape relevant to Uisce Éireann
Identify, investigate and report on security issues, risks and suspected breaches and review findings with key stakeholders, advising the Head of IT as required
Offer security expertise to any changes, programmes or projects being delivered to the Uisce Éireann organisation
Be a positive influence for change and improvement by driving adoption of emerging technologies to bring greater cost efficiency and platform flexibility
Lead efforts to establish and manage the Cyber Security Operations team to bolster threat detection and vulnerability management
Engage proactively with business stakeholders, participate in relevant business facing meetings and develop strong working relationships with IT/OT customers
Collaboration and sharing of IT/OT responsibilities within the wider IT function as required
Participation in On Call Rota and flexibility for out of hours work as required

General Duties and Responsibilities:

Collaboration with key internal stakeholders across the UÉ business, including but not limited to;
Wider IT Team
Asset Operations
Executive Team as required
Responsible for promoting and delivering health and safety commitments across UÉ and its supply chain, reinforcing positive behaviours and delivering health and safety objectives and requirements to the highest industry standards.
Support the delivery of the Uisce Éireann Transformation Programme, driving results required within the Directorate and supporting organisation-wide objectives.
Provide visible leadership for your team, coaching and developing them to achieve their full potential and deliver business objectives, promoting collaboration and highlighting the behaviours that are expected from everyone in the team.
Other duties as required.

Knowledge, Skills and Experience:

At least 7 years’ relevant experience, of which at least 3 will have been in a senior Security Management role demonstrating security operations, security solutions delivery, principles and knowledge of emerging security technologies and trends
Relevant Bachelor’s degree in computer science, information systems, business administration or other related field (or equivalent work experience)
Relevant Security Certification advantageous (e.g. CISSP, CISM, CISA etc.)
Deep understanding and application of the security disciplines, processes, concepts and best practices across full SDLC
Industry experience of application of secure network design, Network Hardware Configuration, Network Protocols, Networking Standards, secure information architecture,secure internet service delivery, and working knowledge of database and application security practices
Understanding of security considerations of cloud computing which include approach to data breaches, broken authentication, hacking, account hijacking, malicious insiders APTs, data loss and DDo S attacks
A minimum of 7 years’ experience in the water, utilities or similar industries is desirable and or relevant experience
Demonstrated leadership ability, proactive development, motivation and engagement of staff
Experience managing a large team, with strong people, change management and conflict resolution skills
Experience of developing and maintaining effective strategic partnerships with key stakeholders
Proven track record with dealing with complex issues, proactively and in a timely fashion along with the ability to communicate complex information to others
Experience of supporting policies, systems and controls and driving the implementation of progressive policies.
You will have a proven track record in leadership, change & transformation experience ideally in a similar utility, regulated industry or multi stakeholder environment
Able to work to deadlines and adapt to changing conditions and ambiguity generating effective and pragmatic solutions to new situations and problems as they are presented.