Manager - Security Operations

Job Summary
The Manager – Security Operations is responsible for leading and overseeing day to day network security operations delivered by the SOC/NOC (Security Engineering Team), Managed Service Providers, and onsite resources. The role ensures the effective operation of security platforms, incident response, vulnerability remediation, and the maintenance of secure configurations across production environments. Reporting operationally to the Head of Technology Operations, the position provides oversight of security execution activities, ensures compliance with established corporate security policies and frameworks, and manages the security operations budget to ensure resources are used efficiently. The role is focused on operating and sustaining security controls and does not own security policy, regulatory interpretation, risk acceptance, or independent assurance functions.

Core Accountabilities:
• Own the day to day operation of security controls across infrastructure, cloud platforms, identity services, and enterprise applications.
• Act as the operational owner for security platforms, ensuring availability, correct configuration, monitoring, tuning, and issue resolution.
• Work with information security department on security incident response execution, including investigation coordination, containment actions, recovery activities, and operational remediation as per defined incident process.
• Own and drive vulnerability remediation execution, ensuring findings from scans, incidents, audits, and assessments are resolved within agreed timelines .
• Operate and maintain Identity & Access Management (IAM) and Customer Identity & Access Management (CIAM) platforms, including access lifecycle, integrations, privileged access, and operational stability.
• Ensure cloud security controls (Azure, SaaS, PaaS, IaaS) are correctly configured, monitored, and maintained in production environments.
• Act as the single operational escalation point for security control failures impacting live services.
• Maintain operational security metrics, including incidents, vulnerabilities, control failures, and remediation status.

Operational responsibilities:
• Implement and operate security controls defined by Information Security policies, standards, and architecture designs.
• Execute security remediation actions across infrastructure, applications, identity platforms, and cloud services.
• Participate in live incident bridges, providing technical leadership, decision support, and clear operational updates.
• Maintain security operational documentation, including runbooks, SOPs, response playbooks, and as‑built configurations.
• Support audit and review activities by providing operational evidence and implementing required corrective actions.
• Ensure secure configuration baselines are applied and maintained across platforms and services.
• Monitor operational security tooling outputs and alerts, ensuring issues are investigated and resolved.
• Coordinate with vendors and service providers to resolve security platform and control issues.
• Conduct post‑incident reviews, root cause analysis, and track corrective actions to closure.
• Support business continuity and disaster recovery execution from a security operations perspective.
• Provide technical security input during solution implementation to ensure controls can be effectively operated post‑deployment.
• Lead and supervise the IT Network Security Operations team, providing direction, mentorship, and performance evaluations.
• Manage the day-to-day activities of the network security team, including monitoring security alerts, incidents, and vulnerabilities.
• Collaborate with cross-functional teams to establish and enforce robust network security policies, procedures, and controls.
• Design, implement, and manage network security solutions to safeguard the organization's networks, systems, and data.
• Conduct regular network security assessments, health check, and configuration review to identify and mitigate potential risks.
• Stay abreast of the latest network security threats, trends, and technologies, proposing appropriate measures to enhance the organization's security posture.
• Analyze events and incidents, leading investigations to determine root causes and implementing corrective actions.
• Test and implements new security solutions as required to maintain a robust security posture.
• Ensure SOPs are implemented and followed in liaison with stakeholders, MSP, vendor recommendation and regulatory requirement.
• Coordinate with external partners and vendors to optimize network security services and solutions, if necessary.
• Ensure compliance with relevant industry standards, regulations, and frameworks (e.g., NIST, CIS, ISO 27001).
• Provide comprehensive reports and updates to senior management and stakeholders about the organization's network security status, incidents, and improvements.
• Support the testing and validation of internal security controls, as directed by the Information Security Department or the internal audit team.
• Collaborate on strategic planning to align network security initiatives with the organization's broader business objectives.

Managerial Responsibilities
• Lead and manage assigned Security Operations team members, with accountability for operational delivery and control stability.
• Prioritise operational workload across incidents, vulnerabilities, remediation activities, and platform issues.
• Drive a culture of execution, accountability, and operational discipline.
• Provide technical guidance, mentoring, and performance feedback to team members.
• Coordinate across Technology Operations teams to ensure security controls are implemented and maintained effectively.

Business Continuity Responsibilities

• Ensure all security systems (VPN, Akamai, FW…etc) to be ready for disaster and ensure highly available to secure business continuity.
• Execute assigned security operational activities during business continuity or disaster recovery events.
• Ensure security controls support service recovery and operational resilience.
• Provide feedback and consultant from security point of view.

Job Qualifications & Experience
• Minimum 10 years of experience in cyber security or technology operations, with a strong focus on security operations.
• Minimum 3 years of experience leading security operations, remediation, or platform delivery teams.
• Bachelor’s degree in information technology, Computer Science, or a related field.

• Experience operating security controls aligned to frameworks such as ISO 27001, NIST, and cloud security standards.
• Proven ability to fix security issues in production environments, not just identify them.
• Strong coordination and communication skills in high‑pressure operational scenarios.
• Strong hands‑on experience with:

o Security operations and incident response
o IAM / CIAM/ PAM/ SASE/ NGFW/ WAF/ API Protection/ DDooS/ NAC / CASB/ SWG/ Email Protection/ Endpoint Protection platforms
o Cloud security operations
o Vulnerability management and remediation