Operational Security Manager

Location: London Contract Type: Permanent Work Pattern: Full Time and minimum of 3 days in London Position Overview: We are seeking an experienced and dynamic Operational Security Manager to oversee critical components of our cybersecurity program, including Vulnerability Management, Cyber Threat Intelligence (CTI), and Incident Management and Response. This role will be pivotal in ensuring the security and resilience of MS Amlin's infrastructure and data. The Security Operations Manager will also be responsible for managing relationships and performance with a service integrator or Managed Service Provider (MSP) for outsourced Security Operations Center (SOC) and SIEM functions. This role will report to the Head of Operational Security and Programmes.MS Amlin is part of a global top-10 insurance group, MS&AD. We're made up of four distinct businesses covering Global Reinsurance, Lloyds Franchise, Local Specialty Insurer, and Business ServicesMS Amlin Business Services (MS ABS) supports the organisation through legal, HR, facilities management, IT, risk management, compliance, and finance. Our vision is to be a trusted partner and solution provider of choice Key Responsibilities: Program Leadership: Support the development, implementation, and management of security operations strategies for Vulnerability Management, CTI, and Incident Response. Ensure alignment of security operations with MS Amlin and customer goals, risk management priorities, and compliance requirements. Lead a team of cybersecurity professionals and foster a culture of collaboration, continuous improvement, and excellence.Vulnerability Management: Oversee vulnerability scanning, assessment, prioritization, and remediation efforts in collaboration with IT and business teams. Work with the team to establish processes for tracking, reporting, and mitigating vulnerabilities to reduce the organization's attack surface. Stay updated on emerging vulnerabilities and provide actionable guidance to stakeholders.Cyber Threat Intelligence (CTI): Support and direct the integration of CTI insights into security operations to proactively address emerging threats. Ensure CTI analysts deliver actionable intelligence to support threat detection, incident response, and risk mitigation. Ensure CTI leverage external threat-sharing networks and industry resources to enhance the MS Amlins intelligence capabilities.Incident Management and Response: Lead the development and execution of an effective Incident Response program, including playbooks, processes, and reporting. Manage security incidents and local investigations, coordinating cross-functional teams to resolve incidents efficiently and minimise impact. Support the process of post-incident reviews to identify root causes, lessons learned, and areas for improvement.Managing Outsourced SOC/SIEM Operations: Act as the primary point of contact for the service integrator or MSP delivering SOC and SIEM services. Define and monitor key performance indicators (KPIs) and service level agreements (SLAs) to ensure effective performance and accountability. Collaborate with the MSP to optimise threat detection and response capabilities. Regularly review and evaluate service delivery, providing feedback and driving continuous improvement.Collaboration and Communication: Work closely with stakeholders across IT, risk management, and business units to ensure seamless integration of security operations into broader business objectives. Ensure information regarding security risks, incidents, and program performance are available for presentation to executive leadership and other key stakeholders.Governance and Compliance: Work with the Cyber GRC function to ensure security operations align with regulatory requirements, industry standards, and best practices. Support the maintenance of documentation of processes, policies, and procedures required for audits and compliance initiatives. Qualifications: Experience: Experience in cybersecurity operations, with at least 3 years in a managerial or leadership role. Proven experience in managing outsourced SOC/SIEM services and working with MSPs. Strong background in Vulnerability Management, CTI, and Incident Management.Technical Knowledge: Familiarity with cybersecurity frameworks and standards (e.g., NIST CSF, ISO 27001, MITRE ATT&CK). Knowledge of vulnerability scanning tools (e.g., Qualys, Nessus) and SIEM platforms (e.g., Splunk, QRadar, Sentinel). Understanding of threat intelligence processes and incident response methodologies.Skills: Strong leadership and team management skills with a focus on collaboration and professional development. Excellent communication skills, with the ability to convey technical concepts to non-technical audiences and senior leadership. Strategic thinking with the ability to balance long-term objectives with immediate operational needs.Certifications Relevant for the role: Certified Information Systems Security Professional (CISSP) Certified Information Security Manager (CISM) GIAC Certified Incident Handler (GCIH) Certified Ethical Hacker (CEH)Key Competencies: Strategic leadership and decision-making. Strong analytical and problem-solving skills. Ability to manage complex, multi-faceted programs. Commitment to operational excellence and continuous improvement. Competitive Base Salary Performance Related Discretionary Bonus Holiday: 28 days core annual leave, and you can buy up to 5 days Pension: A minimum 2% employee contribution plus 7% MS Amlin contribution (9%) up to a maximum of 5% employee contribution plus 13% MS Amlin contribution (18%) Private Medical: cover for yourself. Family members/dependants can be added Flex Fund: £1,000 (pro-rated based on start date) to spend on flexible benefits Life Assurance: 5 x annualised base salary Each one of us is unique because of our backgrounds, what we have learned so far and how we express that. Establishing an inclusive attitude helps us, organisationally, to 'think outside the box' because it calls on that diverse range of ideas, perspectives and lived experiences. We commit to continuing our work towards a more diverse and inclusive future by recognising that our business, our teams and every colleague has a part to play in driving the positive change we all want to see. Our values demonstrate our commitment to providing an environment in which each and every colleague is respected for who they are and what they can contribute to the business, regardless of nationality, race, ethnicity, religion/faith, sexual orientation, gender identity, gender expression, disability, socio-economic background, sex or age. MS Amlin is a leading (re)insurer and part of the global MS&AD Group, with operations across Lloyd's of London, the Middle East, and Asia Pacific.With over 120 years of experience, we support businesses facing complex and demanding risks, providing continuity in an uncertain world. Our expertise covers Property, Casualty, Marine, Crisis Management, Natural Resources and Reinsurance, backed by strong underwriting capabilities and deep sector knowledge.At the core of our claims service is TRUST - Transparency, Responsiveness, Understanding, Solution-driven thinking, and Technical expertise. This defines how we manage claims and build lasting relationships.