Cyber Defence Team Lead - Work from home with occasional travel to client site

Job Description

More than you expected Grant Thornton UK LLP is part of a global network of independent audit, tax and advisory firms, made up of some 58,000 people in over 135 countries. Were a team of independent thinkers who put quality, inclusion and integrity first. All around the worldwe bring a different experience to our clients. A better experience. One that delivers the expertise they need in a way that goes beyond. Personal, proactive, and agile. Thats Grant Thornton.Job DescriptionNEW GROUND WONT BREAK ITSELF. Every day our teams help people in businesses and communities to do what is right and achieve their goals.The Grant Thornton Cyber Defence Centre are an established MSSP at the forefront of Cyber solutions, working with industry leading technologies. We offer a path for progression and invest in our workforce. Initiative is encouraged and support is always availableacross the team and wider group. We work collaboratively and cross functionally, boasting a healthy ethos whereby we aim to promote the best version of ourselves and you.In this role you will work with fully fledged Cyber Defence team across a traditional working week. There will be instances (in event of a breach / onboarding) where its all hands-on deck and overtime is expected, with occasional travel to client site.Given the nature of this role, this should come as no surprise. Most importantly, expect to work on some of most intriguing and relevant jobs within this sector.Were happy to talk flexible working and consider reduced hours and job shares, well support you to balance your work and life.A look into the role As a Cyber Defence Team Lead within our Cyber Defence Centre, you will:

• Oversee the delivery of complex security services, manage relationships and issues.
• Embedding security into all stages of the software development life cycle/delivery methodologies.
• Lead the Cyber Security function for the business, managing the Cyber Security Specialists and ensuring their work and output aligns to the organisational priorities.
• Ensure that both Applications and Infrastructure are delivered in a consistently secure fashion
• Identify new security opportunities and challenges and ensure action is taken to eradicate risks
• Promote awareness of strategic initiatives and encourage self-sustaining security practices and behaviours within delivery teams.
• Operate as a key member of the Technical Design Authority
• Effective risk management of threats and incidents
• Leading the internal IT function on security processes
• Report to the compliance function breaches of regulatory requirements or security standards
• Implement best practices for Secure Design, Threat Modelling
• Security requirements report writing
• Analyse the Environment and set up a team to implement a new operational model for security engagement
• Assist with GDPR compliance and security best practices.
• Undertake assurance assessments of Third-Party suppliers
• Provide expert technical support during incidents response engagements
• Aligning IT risk management to the organisations overall approach and ensuring process implementation, including training
• Reviewing existing technical environment globally, propose changes, managing changes to improve IT Security
• Develop a sense of pride in the work of individuals, teams and across the department
• Take ownership and responsibility for accomplishing objectives across the team and department.
• Conscientiously follows through on commitments and embed this behaviour across the team
• Demonstrate resilience under very demanding pressures and circumstances

Knowing youre right for us Joining us as a Cyber Defence Team Lead, the minimum criteria youll need is strong IT Security background of at least 12-15 years. A passion for cyber security is a must with relevant IT / Security qualifications to set you apart. It would be greatif you had some of the following skills, but dont worry if you dont tick every box, well help you develop along the way.Essential:

• Minimum of 12-15 years experience in a Lead IS Infrastructure, Cyber defence or similar technical delivery role
• Good organisational and decision-making skills
• Excellent interpersonal and communication with accuracy and clarity both verbally and written
• Passionate, professional, with a can-do attitude at all times
• Self-motivated, disciplined, enthusiastic and team player
• Highly motivated with ability to work under own initiative, making decisions to benefit Grant Thornton
• Aptitude for understanding and solving problems
• Ability to work in a rapidly expanding and fast changing environment with a proven track record
• Excellent written and oral communication skills as you will be required to create Low Level Design documentation

• Microsoft Server and Desktop technologies
• Linux Server Technologies
• Experience in LAN deployments using VLAN segmentation along with ACL.
• Ability to demonstrate understanding of vulnerability remediation
• Skilled in consultancy, risk management, solution design and issue resolution
• Good general knowledge of IT Systems covering traditional infrastructure, cloud platforms and SaaS.
• Resource management and vendor management, working with vendors to get the right people in place
• Secure code review and experience using automated toolsets
• Understanding of log analysis and security forensics
• Experience of conducting and working with 3rd party suppliers to conduct penetration tests, both software and hardware.
• Mobile security testing
• Experience engaging 3rd party security specialists to provide additional assurance
• Experience and knowledge with IT Security software e.g. NGAV, EDR, SIEM etc.

Nice to have:

2.1 Degree in STEM or Cyber

Understanding of the modern threat landscape

Knowledge of cyber security frameworks such as ISO27001, NIST, CIS Critical Controls

VMWare or Hyper-V and server integration knowledge and experience

Certified Information Systems Security Professional (CISSP) or equivalent. Relevant Certifications: eg MCPs in desktop and server technolo