Description:
We're looking for a Security Team Lead to join the dynamic Haven Technology team. Working for one of the UK’s best-loved holiday brands, you will play a pivotal role leading a highly capable team of security engineers.
As a Security Engineering Team Lead, you will join our dynamic team of experts, committed to securing our organization and its assets against evolving cyber threats, supporting us in our journey to be the leading UK holiday operator. You can be based anywhere in the UK for this role, as long as you’re happy to travel occasionally to meet up with your team and stakeholders.
What you will be doing:
- Lead, mentor, and inspire a team of security engineers, fostering their professional growth and driving excellence in their work.
- Develop and execute security engineering strategies, ensuring alignment with business objectives and industry best practices.
- Oversee the design, implementation, and management of security solutions, including Palo Alto Cortex XDR, Cybereason, LogRhythm SIEM, Mimecast, Zscaler, Knowbe4, Vectra, Tenable One, CyberArk, Wiz.io, and other relevant technologies.
- Collaborate with cross-functional teams to assess security risks, define security policies and procedures, and implement effective security controls.
- Stay up-to-date with the latest security trends, vulnerabilities, and industry standards, and apply that knowledge to continuously improve our security posture.
- Conduct security incident response activities, including investigations, remediation, and lessons learned.
- Act as a key point of contact for internal stakeholders, providing expert guidance on security-related matters and driving security awareness across the organization.
- Develop and maintain documentation related to security engineering processes, procedures, and configurations.
What we’d like you to bring:
- Proven experience in a security engineering role, with a track record of successfully leading and managing security engineering teams.
- Strong expertise in technologies such as Palo Alto Cortex XDR, Cybereason, LogRhythm SIEM, Mimecast, Zscaler, Knowbe4, Vectra, Tenable One, CyberArk, Wiz.io, and other relevant security solutions.
- Deep understanding of network security principles, secure system design, and secure coding practices.
- Familiarity with industry frameworks and standards (e.g., NIST Cybersecurity Framework, ISO 27001, CIS Controls).
- Strong analytical and problem-solving skills, with the ability to think strategically and make data-driven decisions.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams and influence stakeholders at all levels.
- Relevant certifications such as CISSP, CISM, GIAC, or equivalent are highly desirable.