Aztec Group Aztec Group is the bright alternative in fund and corporate services with dedicated client teams and a focus on alternative strategy asset classes.The IT Security Manager will oversee the organization’s security and data infrastructure, with a focus on technical aspects to ensure robust protection of information systems. This role involves managing security operations, implementing security measures, and leveraging Microsoft Azure’s security features to safeguard the organization’s data and infrastructure.Key Responsibilities:Security Operations Management:Be the Technical Expert to support and advance the objectives of IT Security and the wider groupIn conjunction with the leadership team, develop and implement security policies, procedures, and protocolsActively engaged in continuous monitoring and protection of networks, systems, and applicationsTechnical Security Implementation:Design, implement and support new and existing security solutions. (Privileged Access Management, Vulnerability Management, Threat Intelligence, etc)Expert in Microsoft Azure’s security tools and services. (Entra, Privileged Identity Management, conditional access, Microsoft defender, Sentinel, etc)Perform security input and guidance on tools being adopted within the organisation.Oversee and assess the outputs of the vulnerability management platforms to effectively identify and mitigate vulnerabilitiesEnsure documentation of all solutions and designs are up to date, including technical design documents and associated policies, procedures and processesAzure Security Management:Utilize Microsoft Azure’s security features, including Azure Security Centre, Azure Sentinel, and Active Directory, Entra ID to enhance the organization’s security postureImplement and manage identity and access management (IAM) solutions within AzureMonitor and respond to security alerts generated by Azure security toolsCoordinate the incident response process, including investigation, containment, and remediation of security breachesPerform forensic analysis to determine the root cause of incidents and develop strategies to prevent recurrenceRisk Management and Compliance:Ensure compliance with recognised industry standards, such as SOC2, ISO 27001 and ISAE 3402 etcAssessment of Third-Party Risk Assessment responses and diligence requests for both clients and vendorsCollaborate with internal and external auditors to support security audits and assessments and develop risk mitigation plansCollaboration and Communication:Work closely with IT teams and other stakeholders to integrate and advise on suitable security controls for all systems, applications and projectsReport security risks and strategies to senior management and non-technical stakeholdersWork alongside vendors and partners to ensure the organization’s security tools and practices are up-to-date and effectiveEngage with clients and vendors to ensure Aztec security controls are clearly understoodTraining and Awareness:Develop and deliver security training and awareness programs for employeesStay current with the latest cybersecurity trends, threats, and best practicesSkills, Knowledge, and Expertise:Minimum of 5 years of experience in IT security, with a focus on technical cybersecurity rolesProven experience in implementing and managing security solutionsStrong knowledge of Microsoft Azure security tools and servicesProficiency in network security, system administrationExperience with security monitoring tools, incident response, and forensic analysisRelevant certifications such as CISSP, CISM, Microsoft Certified: Azure Security Engineer Associate, or equivalent are preferred but not essentialExcellent communication skills, both verbal and writtenStrong leadership and team management abilitiesAbility to carry a task to completion or engage more help to reach a conclusionAnalytical and problem-solving skills
#J-18808-Ljbffr