Security Operations Manager

Job Description

Your new company \n\nA prominent UK-based institution in the higher education sector, this organisation delivers a broad spectrum of undergraduate and postgraduate courses spanning the sciences, business, arts, and humanities. It is well-regarded for its impactful research, international collaborations, and dedication to environmental sustainability. With a dynamic campus life and a diverse student community, it plays a key role in driving local economic growth and fostering innovation through academic and civic engagement.

\n\nYour new role \n\nDigital Technology Services plays a vital role in supporting the organisation by delivering centralised IT infrastructure, with a strong emphasis on safeguarding access. The SecOps Manager is a key figure in the organisation's cyber defence efforts, tasked with identifying, detecting, and responding to information security threats, as well as managing the response to cybersecurity incidents. Working closely with colleagues across IT and the wider organisation, this role ensures the protection of digital and information assets against a range of internal and external threats.

The M365, , and Security functions are central to this position, leading a team of specialist engineers to maintain the secure operation of services and contributing to major projects that impact management across the organisation. The post holder also serves as a technical authority within the team and department. \n\nWhat you'll need to succeed \n\nSecurity Operations & Incident Response\n\nLead security operations services, including monitoring, incident response, threat management, and intrusion detection, using both internal and external resources.\nManage the outsourced 24/7 security operations service.\nLead the organisation's response to security incidents, coordinating recovery efforts with internal teams and vendors.\nEstablish and manage threat intelligence processes to ensure timely remediation of vulnerabilities.\nMonitor and analyse performance metrics to support security troubleshooting and continuous improvement. & Access Management\n\nProvide expert technical leadership for and access management, ensuring secure, high-performing services aligned with SLAs.\nOversee day-to-day monitoring and maintenance of services, ensuring reliability and user demand readiness.\nShape and deliver a strategic roadmap for services, focusing on automation and proactive improvements.\nInvestigate and resolve complex -related incidents and problems.Strategic Leadership & Collaboration\n\nAct as service/technical manager for the SecOps function, driving improvements in security, performance, and usability.\nBuild strong partnerships with internal technology teams to embed security into architecture and processes.\nCollaborate with senior leadership and DTS teams to identify and address emerging threats.\nRepresent the organisation in external networks and vendor relationships to share best practices and influence product development.Governance, Risk & Compliance\n\nEnsure technical security risks are documented and managed within the risk register.\nOwn and manage services/processes in line with ITSM best practices.\nMaintain and review operational documentation and processes for effectiveness and efficiency.Continuous Improvement & Innovation\n\nDesign and implement long-term security and access management capabilities.\nAnalyse complex technical data to inform strategy, policy, and decision-making.\nStay informed on internal and external developments, assessing their impact on digital services.Key Requirements\n\nCore Skills\n\nStrong leadership in security and technologies, including M365.\nEffective prioritisation and problem-solving across complex systems.\nProven experience managing teams and delivering complex projects.\nExcellent collaboration and communication across technical and non-technical teams.Qualifications\n\nDegree or equivalent industry certification.\nProfessional certification in security/ (e.g.

CREST, GIAC).\nITIL Foundation certification.\nIncident response certification .Technical Knowledge\n\nProficient in SIEM, EDR, threat detection, and vulnerability management.\nSolid understanding of network security (firewalls, segmentation, IDS/IPS).\nExperience with Windows, Mac, Linux environments and security tooling.\nFamiliarity with public cloud platforms (Azure, OCI) and AHV Hypervisor.Experience\n\nLeading security incident response and recovery.\nManaging full lifecycle of security and systems.\nOperating in large, complex, and 24/7 environments.\nProducing clear technical documentation and engaging with stakeholders.\n\nWhat you need to do now \n\nIf you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.\nIf this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career.\n\nHays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)