Senior Manager, Security Operations & Incident Management

Job Purpose

Lead CBD's security operations and manage incident response efforts. This role is critical in supporting the CISO office and ensuring the security and resilience of our IT infrastructure and protecting our bank's data and systems from cyber threats.

Principle Accountabilities

• Oversee the daily operations of the Security Operations Center (SOC) working across 1LoD & 2LoD security teams.
• Develop and implement security monitoring and incident detection strategies.
• Ensure the effective use of security tools and technologies to protect the bank's assets.
• Monitor security alerts and manage the response to potential security incidents.
• Support the CISO office Conduct regular security assessments and audits to identify vulnerabilities.
• Own the incident response plan to address security breaches and incidents.
• Lead the incident response team in investigating and resolving security incidents. (24/7 rota with leadership team)
• Coordinate with internal and external stakeholders during incident response activities.
• Conduct post-incident reviews and implement lessons learned to improve security measures.
• Ensure timely and accurate reporting of security incidents to relevant authorities and stakeholders.
• Develop and maintain a threat intelligence program to identify and analyze emerging threats.
• Collect, analyze, and disseminate threat intelligence to relevant stakeholders.
• Collaborate with external threat intelligence providers and industry peers to stay informed about the latest threats.
• Integrate threat intelligence into security operations and incident response processes.
• Provide actionable intelligence to enhance the bank's security posture and mitigate risks.
• Support risk assessments and vulnerability analysis to identify potential threats (ISMS/Projects/Change/Thematic).
• Support threat modelling as part of DevSecOps and other change activity.

", "order": 1}, {