Manager, Cyber Security Operations Centre

Putting people first, every day

BDO is a firm built on a foundation of positive relationships with our people and our clients. Each day, our professionals provide exceptional service, helping clients with advice and insight they can trust. In turn, we offer an award-winning environment that fosters a with a high priority on your personal and professional growth.

Your Opportunity

BDO Digital is seeking an experienced Manager to join our growing Cyber Security team. You will contribute to the rapidly expanding the Cyber Threat Management and Response (CTMR) team that provides managed detection and response services for our clients on a 24x7x365 basis. As the SOC manager, you will have the opportunity to work within a culture that is highly collaborative, very supportive, and offers an opportunity to help grow the practice, while developing a contemporary approach to security operations with best-in-class technology and professionals. If you are passionate about security operations, threat intelligence, analytics, and incident response, and are looking for a challenging and rewarding career, this is the right opportunity for you. Our people are our most valuable asset and we encourage career growth and development opportunities for every individual on our team.

As a Manager in our Cyber Security Operations Centre, your responsibilities will include :

Expanding our capabilities in the area of threat detection and response services

Being the subject matter expert of the entire security investigation process

Maintaining extensive awareness of Microsoft and other related security technologies

Overseeing the staffing, investigations and quality control of the security operations team

Identifying delivery risk and opportunities for improvement

Keeping track of technological developments and opportunities as they relate to MXDR

Working with the SOC engineering team to establish sustainment plans.

Recruiting, developing, and retaining talent

Work with the cyber leadership team to identify and develop new capabilities which will take our clients and BDO into the future of cyber security

How do we define success for your role?

You demonstrate BDO's core values through all aspect of your work : Integrity, Respect and Collaboration

You understand your client’s industry, challenges, and opportunities; clients describe you as positive, professional, and delivering high-quality work

You understand and demonstrate proven success managing and leading cyber operations teams effectively

You are focused on effective service delivery to your clients

You share in an inclusive and engaging work environment that develops, retains & attracts talent

You actively participate in the adoption of digital tools and strategies to drive an innovative workplace

You grow your expertise through learning and professional development

Your experience and education

7 to 13 years experience managing teams and incidents within a security operations centre

Knowledge and experience with next generation security operations to include analytics, intelligence, MXDR, endpoint, user and network behavior patterns, IT service management

Knowledge of familiarity with SIEM, EDR, IDS / IPS, Active Directory, VM and other related solutions

Strong client communication skills to include verbal and written communication

Strong talent leadership skills with a proven track record of developing individuals and teams

Strong understanding managed detection and response services, and proven ability to deliver on agreed upon service levels

Knowledge of security threats and common vulnerabilities for legacy and Cloud environments

Experience presenting to clients or other decision makers to present and sell ideas to various audiences (technical and non-technical)

Strong knowledge of cyber security frameworks and industry recognized security frameworks

Fostering critical thinking within robust security processes and response deadlines

Preferred :

Experience managing large teams

Experience interacting across globally distributed security teams

It's an asset if you have completed or are in the process of completing any of one or more of the following certifications :

Certified Information Systems Security Professional (CISSP)

Certified Cloud Security Professional (CCSP)

Certified Information Systems Auditor (CISA)

Certified Information Security Manager (CISM)

Cloud certifications such as Azure Fundamentals, Azure Security Engineer, AWS Technical Essentials