IT Security Operations Lead, IT

The role of IT Security Operations Lead is to manage and maintain a premium SecOps platform and service, you will be running and iteratively refining a SecOps service, using a risk based approach with a small in-house team and an outsourced XDR provider. You will be the Subject Matter Expert for SOC and SecOps, you will be working within the IT team supported by the Information Security Manager who will allow you to lead and excel in your field. You will develop and maintain a set of meaningful security and performance metrics to support the wider IT team management reporting. You will be fundamental in ensuring that Forsters LLP is an 'exemplar' in IT security throughout the UK Legal sector. Core IT operating hours are 09:00 to 17:30 with some flexibility for out of hours working as and when required. Normally based in Marylebone (Baker Street) with some travel to South Quay Plaza (Canary Wharf) office attendance must average three days per week (including Monday and Tuesday) with hybrid working at other times. The main responsibilities of the role include:

• Operational management of a Managed XDR service.
• Produce and operate an approach to utilising custom Threat Intelligence to finetune SecOps playbooks and wider IT and firmwide knowledge sharing where possible.
• Develop service metrics and management reporting to present a holistic view of the SecOps function.
• Develop an iterative SecOps improvement programme to ensure that Forsters detection and response is operating optimally at all times.
• Contribute to projects and deputising for the Information Security Manager when required.
  
  Solid understanding and experience of SIEM/XDR/SOAR configuration, setup and continual tuning/management.
• Strong experience working in operational IT security leading a SOC team internally or externally.
• Ability to utilise, interpret and present TI data.
• Solid reporting skills using MS Excel, Word and PowerPoint.
• CiiSP or similar technical security accreditation preferred.
• Certified cyber defender or similar preferred.
  
  The salary on offer is competitive with a salary review in June 2025, plus a comprehensive benefits package and the opportunity to work in a firm that is well known for its strong and collaborative culture. In addition, Forsters has in place a highly regarded Agile Framework that supports all staff to achieve their best. As a firm, we live our values and would encourage all applicants to read up on them.
We are looking to conduct a 2 stage hiring process for this role with the initial stage being an online Teams meeting with Neil Bell (Information Security Manager) & myself. The final stage will be a face to face interview in our Baker Street office with additional hiring managers.