Head of IT Infrastructure

Location: Tricity, Poland Salary: Zlotych20000 - Zlotych300001 per month
Sector: Pharma & Health Type: Permanent
Reference #: PR/044524_1499426664

Our client currently has a new opportunity for a Head of Security Operations who will be responsible for strategic, tactical and operational focus on managing risks and incidents globally.

Critical results

  • Reduction of overall security posture by effective vulnerability management, identity management and user behaviour analytics
  • Enhancement of Solutions' ability to detect incidents
  • Reduction of time to detect and respond to incidents
  • Operations and maintenance of critical elements of security infrastructure


Build solutions and concepts to increase time of prevention, decrease time for detection and reaction by engaging personnel in security activities

  • Define incidents detection and deception strategy, based on understanding the cyber kill chain
  • Build and maintain security operations team built of internal and external resources and service providers
  • Build and run Security Operations Centre based on physical, virtual and outsourced teams
  • Ensure company's Solutions receives actionable cyber threat intelligence
  • Ensure company's Solutions are capable of sharing cyber threat intelligence with relevant communities
  • Ensure digital identity management policy is defined and implemented, and identity management and user authentication/authorization solutions are being rolled out in line with IT landscape changes
  • Define insourcing-outsourcing strategy for Security Operations services - and implement the strategy to make sure that critical intellectual capital stays in-house, heavy lifting is outsourced where financially sound, and we partner where niche excellence is sought
  • Implement state-of-art data analytics and machine learning capabilities if necessary to improve threats detection
  • Orchestrate blue/red teaming exercises
  • Manage elements of security technology critical for control and trust, such as PKI

Knowledge, skills & experience

This is a role for a seasoned and battle-proven Cyber Security Operations leader. As a minimum, we expect to see the following skills and qualities:

  • Proven experience in building and leading teams, preferably including 24/7 operations and an international setting
  • Proven experience in incident and crisis handling, experience with handling incidents related to payment card data or personally identifiable information will be a huge asset
  • Experience in leading local and remote teams, as well as (off-shore) partners and vendors
  • More than 12 years of experience in building and/or running security operations centres/CERT teams
  • More than 12 years of exposition on modern threat techniques, tactics and procedures preferably from hands-on experience in conducting, leading or defending against penetration testing and red-teaming activities
  • Understanding of kill chain phases and its applicability to incidents detection
  • Good insight into detection, deception and incident response technology
  • Built-in sense of urgency
  • Ability to stay firm during the storm
  • Security certification, in particular in incident handling, IT forensics and security management will be considered an asset
  • Excellent verbal and written communication skills and drive for communication
  • Proactive and self-motivated work style with proven ability to manage multiple projects and changing priorities
  • Ability to onboard quickly into new areas
  • Analytical and problem-solving skills
  • Fluent in English. Ability to speak STIX will be considered an asset
  • Ability to travel internationally on a short notice