Manager, EIT Security Operation Center

Hydro Global Business Services (GBS) is an organizational area that operates as an internal service provider for the Hydro group. Its ultimate purpose is to deliver relevant IT, financial, and HR business services to all business areas within the company.

Are you an IT professional who's there to drive change? We at Hydro IT are transforming business processes with our Next Generation IT strategy to support Hydro's Sustainability Agenda, using modern tools and future technologies. Join us and make an impact via SAP S/4, native Cloud Technologies, Digital Products, State of Art Cyber Security tools, and much more!

Role purpose

The Security Operation Center (SOC) manager is in the front line of defense against security incidents directed at the IT platforms and automated information systems (IT security incidents) of Hydro. The SOC manager is also responsible for the performance of the SOC.

Responsibilities

IT Security Incident Preparedness

• As a SOC Manager You will act as a liaison between industry peers, government agencies (including law enforcement) and other specialists.
• Utilize commercial intelligence providers to gain insight into existing activities in the hacker and fraudster communities, as well as planned activities and emerging motivations.
• Coordinate with the external managed security services provider, to identify and assess IT security incidents.
• Advise of significant emerging threats and recommend tactical steps to counteract these threats.
• The SOC manager will exercise or support the preparedness of various parts of the organization to respond to IT security incidents via the following activities:

• In consultation with the crisis management team, develop and deliver desktop preparedness exercises at the executive committee level, at least annually.

IT Security Incident Management

• Develop and maintain the IT security incident response process, including all required supporting materials.
• Implement standard Operating Procedures for the incident handling that helps the analysts guide through triage (order of treating security events) and response procedures.
• Develop functional requirements for roles that will be involved in the SOC program.
• Work with business units, IT functions and external providers to ensure that the process is mutually understood and agreed on and that responsibilities.
• Ensure execution of the incident response process to the resolution of the incident.
• Ensure generation, maintenance and protection of required incident records, such as investigator journals.
• Organize, participate in and if required chair post incident reviews for presentation to the senior management.

Support

• Provide overall direction for the SOC and input to overall security strategy

Management

• Manage resources to include personnel, budget, shift scheduling and technology strategy to meet SLAs.
• Establish metrices and KPIs, then delivers reports regularly.

Work Arrangements

• Under normal operating conditions, this role will work to the usual organizational policies and norms of the broader team. However, if the SOC manager is notified outside of normal working hours of a potential incident, then the SOC Manager will be expected to perform the role out of hours to the extent required to protect the organization.
• The SOC Manager will be expected to ensure that the SOC is suitably equipped to operate out of hours and off-site where desirable.

Requirements

• In-depth experience in security incident management processes and tools.
• 5 to 10 years of technology experience, including troubleshooting and performing root cause analysis of complex IT solutions.
• Two or more years of demonstrated leadership experience building consensus across IT domains.
• Two or more years of demonstrated experience managing a high-performing, cohesive security response team.
• Two or more years of experience in working in the manufacturing industry.
• Bachelor’s or master’s degree in IT, engineering, business, management or a related field, or equivalent work experience.
• Tertiary qualifications in information or IT security, or industry qualifications such as Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM) or the equivalent.
• High level of English.

Hydro offers

• Working at the world’s only fully integrated aluminum and leading renewable energy company 
• Diverse, global teams 
• Flexible work environment/home office 
• We provide you the freedom to be creative and to learn from experts 
• Possibility to grow with the company, gain new certificates 
• Attractive benefit package 

Applications from severely disabled and equally disabled people will be considered with equal suitability. 

If you have any questions, please contact:  

Mercédesz Novák

MercedeszBeatrix.Novak@hydro.com