What the IT Security Operations Manager team is all about
The IT Security Operations Manager is apart of the wider IT strategy and architect division. Managing operational IT security controls and ensuring issues/risks are mitigated. Ensuring the IT Security controls to maintain my client’s on-going PCI DSS compliance status. To liaise with the appointed QSA prior to and during the annual PCI DSS audit.
Location: Croydon (Bromley office from time to time)
What being an IT Security Operations Manager involves
IT Operations
* Working within the boundaries of the ';Security Operations Centre’ with
* internal and third party functions for the managing of IT Security alerts.
* Accountable for managing the governance of the firewall rule bases.
* Accountable for managing the penetration testing schedule and
* ensuring risks/issues identified are mitigated within appetite.
* Ensuring internal and third party IT teams manage vulnerabilities that are identified.
* Providing weekly/monthly reporting of the status of IT Security across the estate, highlighting risk areas and working to develop remediation plans as required.
PCI
* To be accountable for those controls required by the PCI DSS standard in order to maintain the Group’s PCI DSS compliance status.
* To be accountable for providing PCI DSS compliant processes and procedures to all areas of the Group.
* To be accountable for the maintenance of all PCI DSS related documentation eg, network diagrams.
* To be able to advice on PCI compliant workable solutions
* Be responsible for the document and process reviews as defined by the PCI DSS standard.
* Be responsible for producing an accurate and rigorous audit trail showing that all the necessary PCI controls have been executed correctly.
* To be accountable for preparing for the annual PCI audit.
Stakeholder Management
* Maintain relationships with Development Services, Infrastructure Services, IT Risk.
People Management
* Effectively manage staff through:
- Talent Management that ensures the assignment of work/learning opportunities to meet the needs of both the organisation and the individual
- Fair, consistent and transparent performance management
- Appropriate adherence to line management policies and controls
- Effective communication that engages staff and encourages them to maximise their value add
Possibility of flexible working? - No
Possibility of part-time working? - No
Career benefits and rewards
It all starts with a competitive salary, benchmarked against our competitors, which will grow as you do. We’ve made sure your annual holiday entitlement is attractive too - and what’s more, we let you choose the rewards that suit your lifestyle.
That kind of flexibility is a key feature of our benefits package. And there’s plenty to choose from, including:
* Pension funding of 9% of your base salary - you can choose to contribute less or more than this
* Income protection
* Life assurance
* Private medical cover (anyone can choose this through our flexible benefits scheme, and managers receive this as standard)
![]()
The IT Security Operations Manager is apart of the wider IT strategy and architect division. Managing operational IT security controls and ensuring issues/risks are mitigated. Ensuring the IT Security controls to maintain my client’s on-going PCI DSS compliance status. To liaise with the appointed QSA prior to and during the annual PCI DSS audit.
Location: Croydon (Bromley office from time to time)
What being an IT Security Operations Manager involves
IT Operations
* Working within the boundaries of the ';Security Operations Centre’ with
* internal and third party functions for the managing of IT Security alerts.
* Accountable for managing the governance of the firewall rule bases.
* Accountable for managing the penetration testing schedule and
* ensuring risks/issues identified are mitigated within appetite.
* Ensuring internal and third party IT teams manage vulnerabilities that are identified.
* Providing weekly/monthly reporting of the status of IT Security across the estate, highlighting risk areas and working to develop remediation plans as required.
PCI
* To be accountable for those controls required by the PCI DSS standard in order to maintain the Group’s PCI DSS compliance status.
* To be accountable for providing PCI DSS compliant processes and procedures to all areas of the Group.
* To be accountable for the maintenance of all PCI DSS related documentation eg, network diagrams.
* To be able to advice on PCI compliant workable solutions
* Be responsible for the document and process reviews as defined by the PCI DSS standard.
* Be responsible for producing an accurate and rigorous audit trail showing that all the necessary PCI controls have been executed correctly.
* To be accountable for preparing for the annual PCI audit.
Stakeholder Management
* Maintain relationships with Development Services, Infrastructure Services, IT Risk.
People Management
* Effectively manage staff through:
- Talent Management that ensures the assignment of work/learning opportunities to meet the needs of both the organisation and the individual
- Fair, consistent and transparent performance management
- Appropriate adherence to line management policies and controls
- Effective communication that engages staff and encourages them to maximise their value add
Possibility of flexible working? - No
Possibility of part-time working? - No
Career benefits and rewards
It all starts with a competitive salary, benchmarked against our competitors, which will grow as you do. We’ve made sure your annual holiday entitlement is attractive too - and what’s more, we let you choose the rewards that suit your lifestyle.
That kind of flexibility is a key feature of our benefits package. And there’s plenty to choose from, including:
* Pension funding of 9% of your base salary - you can choose to contribute less or more than this
* Income protection
* Life assurance
* Private medical cover (anyone can choose this through our flexible benefits scheme, and managers receive this as standard)