Job Description
We are seeking a highly skilled and experienced individual to fill the role of Head of Security Operations. In this position, you will be responsible for managing the Security Operations team, which is responsible for designing, implementing, and evolving Canonical's security practices, techniques, tools, systems, and policies.
The team is the primary owner of strategy and practices that determine how Canonical secures its data, internal infrastructure, and build processes. They are responsible for assuring the security and integrity of our own infrastructure and product deployments.
As a leader on cyber security in the company, you will collaborate with our Organisational Learning and Development team to develop playbooks and facilitate SecOps training across Canonical.
You will operate in a wider security organisation, run a high-performing security team, and improve Canonical's security posture.
* Define Canonical's SecOps security standards and playbooks
* Own and drive the architecture and design of the SOC
* Analyse and improve Canonical's security architecture
* Evaluate, select, and implement new security tools and practices
* Identify, contain, and guide the remediation of security threats and cyber attacks
* Grow the presence and thought leadership of Canonical SecOps practice
* Contribute to open source threat intelligence initiatives
* Drive threat modelling, table top exercises, and other SecOps practices across Engineering, IS, and Canonical
Key Responsibilities:
* Hire and mentor a team of outstanding technical security professionals
* Develop Canonical SecOps learning and development materials
* Publish blog posts, whitepapers, and conference presentations
* Identify, implement, and track SecOps KPIs
* Plan and deliver SecOps work in the framework of Canonical's agile engineering practice
Required Skills and Qualifications:
* Proven track record of mitigating with advanced threat actors and nation-state threats
* Expert technical understanding of SOCs from the ground up
* In-depth knowledge of SOC architecture and design, including strategies for logging, firewalls, network segmentation, honeypots, etc.
* Someone who understands how the SOC works not just how to use it
* Expert in Linux security
* Ability to define, implement, automate, and measure effective incident response playbooks
* Knowledge of security architecture and market-leading security tools
* Experience contributing to, and consuming, threat intelligence feeds
* Experience in security risk management frameworks such as NIST CSF
Benefits
* Opportunity to work with a leading-edge technology company
* Collaborative and dynamic work environment
* Professional growth and development opportunities
What We Value
* Passion for security and innovation
* Excellent communication and interpersonal skills
* Strong analytical and problem-solving abilities
* Adaptability and flexibility
* Leadership and management ability
* Excellent business English writing and presentation skills
Seniority Level: Director
Employment Type: Full-time
Job Function: Information Technology and Management
Industries: Software Development