Cybersecurity Operations Lead

Position Summary

We are seeking a highly professional and customer-oriented Cybersecurity Operations Lead to drive mission-critical security operations in a 24/7 environment. This role is deeply integrated within both operations and service teams, with end-to-end responsibility for threat monitoring, incident response, vulnerability management, and delivery of high-quality cybersecurity services and advisory.

You will play a key role in ensuring that systems remain secure, resilient, and compliant with IM8 governance standards and cybersecurity best practices. Acting as the primary bridge between security engineers, operations teams, internal stakeholders, and customers, you will enable effective risk communication, provide practical remediation guidance, and drive continuous service improvement.

This will be a 1 year contract role.

Key Responsibilities

Threat Monitoring & Incident Response

• Oversee day-to-day security monitoring using SIEM, endpoint protection, and related tools
• Lead incident response activities, including containment, eradication, and root cause analysis
• Ensure proper incident classification, escalation workflows, and communication protocols
• Leverage and disseminate up-to-date threat intelligence to proactively safeguard digital assets

Vulnerability & Patch Management

• Lead and coordinate vulnerability assessments and penetration testing engagements with third parties
• Manage internal vulnerability scanning programmes on a regular schedule
• Drive timely remediation of vulnerabilities across servers, networks, middleware, containers, and security appliances
• Ensure compliance with regulatory requirements for patching cycles across all environments
• Provide clear, actionable communication of risks and remediation plans to both technical and non-technical stakeholders

Security Infrastructure & System Hardening

• Implement, configure, and maintain security technologies (e.g., firewalls, IDS/IPS, PAM, HSM)
• Oversee OS, application, and network hardening (e.g., RHEL, Windows Server, Kubernetes)
• Review and approve security architecture designs for new systems and enhancements

Privileged Access Management

• Govern privileged access across Active Directory and enterprise systems
• Enforce segregation of duties, emergency access procedures, and periodic access reviews

Governance & Compliance

• Ensure compliance with IM8 cybersecurity policies, standards, and regulatory requirements
• Maintain risk registers, support audits, and track remediation progress
• Promote adherence to cybersecurity governance and best practices

Team Leadership

• Collaborate with cross-functional teams to deliver secure and resilient solutions
• Ensure proper documentation, SOPs, and knowledge transfer across security operations
• Drive team development through training, certifications, and continuous learning
• Conduct workshops, training sessions, and briefings to strengthen cybersecurity posture

Qualifications

Education & Experience

• Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field
• Minimum 5 years of experience in cybersecurity or information security roles supporting mission-critical environments
• Experience in regulated environments (e.g., public sector) is advantageous

Technical Expertise

• Strong knowledge of operating system security (RHEL, Windows Server), network security, and Kubernetes
• Hands-on experience with at least two of the following: SIEM (e.g., LogRhythm) Vulnerability management tools (e.g., Nessus) IAM/PAM solutions (e.g., CyberArk, BeyondTrust) Firewalls (e.g., Check Point, Palo Alto) IDS/IPS, HSM, TLS/PKI

Certifications (Preferred)

• Relevant certifications such as CISSP, CISM, CEH, or equivalent are preferred

Core Knowledge Areas

• Security principles (CIA triad, defense-in-depth, least privilege)
• Networking and operating system fundamentals
• Identity & Access Management and cryptography basics
• Application security (e.g., OWASP Top 10, secure coding principles)
• Incident response practices and IM8 compliance