Security Operations Manager

Location: NTCC Heuston
Salary: Available upon request
Reports to: Head of Cyber Security

Iarnród Éireann / Irish Rail is seeking applications for those suitably qualified in the role of Security Operations Manager. This role will have responsibility for all aspects of Security Operations in IT and OT (CME and Rosslare) with Iarnród Éireann. The Security Operations Manager is responsible for overseeing and leading the security operations team, ensuring the organization’s IT and OT infrastructure(Rosslare and CME), networks, and data are protected from cyber threats. This role involves managing day-to-day security operations, monitoring security events, responding to incidents, and implementing security strategies and controls to safeguard company assets. The Security Operations Manager will work closely with other IT teams, risk management, and external vendors to maintain a secure and resilient environment.

Key Responsibilities

Security Operations Management

• Lead and manage the security operations for both IT and OT ensuring continuous monitoring across the organization’s networks, systems, and applications
• Have visibility of technology currency and align to annual budgeting processes

Incident Management

• Liaise with GITT on incident management
• Lead the response to security incidents from an IE perspective, coordinating efforts with internal teams, external partners, and third-party vendors

Threat Intelligence and Monitoring

• Stay updated on the latest security threats, vulnerabilities, and attack vectors
• Implement proactive measures to detect and mitigate cyber threats through continuous monitoring, threat intelligence feeds, and vulnerability management programs

Team Leadership and Development

• Manage and mentor the security operations team, providing guidance, training, and professional development opportunities
• Collaborate with internal stakeholders (e.g., IT, legal, compliance) to ensure security strategies align with business objectives

Security Tools and Technology Management

• Input into GITT on deployment, configuration, and maintenance of security technologies, including antivirus, firewalls, IDS/IPS, encryption, and endpoint detection and response (EDR) solutions
• Ensure that security technologies and tools are functioning optimally and provide adequate visibility into potential threats

Compliance and Risk Management

• Liaise with the GRC Manager on compliance related matters
• Provide regular security reports and metrics to leadership, identifying trends, risks, and areas for improvement

****This list is not exhaustive, please contact HR Shared Services for a full job description***

Essential criteria

• Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related field (Master’s degree preferred)
• Relevant security certifications such as CISSP, CISM, CEH, or equivalent are highly desirable
• 5-10 years of experience in information security, with a focus on security operations, incident response, and threat management
• Experience with a broad range of security technologies and practices (e.g., SIEM, firewalls, IDS/IPS, EDR, threat intelligence platforms)
• Strong knowledge of cyber threat landscapes, attack methodologies, and security operations best practices
• Experience in leading and managing incident response and root cause analysis
• Experience in leading a Security Operations team
• Experience in working with multiple vendors to achieve agreed service level agreements
• Solid understanding of network protocols, firewall management, vulnerability scanning, and penetration testing
• Familiarity with security frameworks and compliance standards (e.g., ISO 27001, NIST 2.0 CSF Framework, GDPR, PCI-DSS, NIS 2.0, CER,AI Act)
• Excellent leadership, communication, and problem-solving skills
• Ability to manage multiple tasks, prioritize work effectively, and thrive in a fast-paced, high-pressure environment
• Hands-on experience with SIEM tools (e.g., Splunk, QRadar, ArcSight)
• Hands on experience with vulnerability tools such as Qualys, Tenable
• Experience using Asset Management tools desirable
• Familiarity with cloud security (AWS, Azure, GCP) and container security
• Experience with scripting or automation tools to enhance security monitoring and incident response.

A practical element and competency-based interview will form part of this selection process. Candidates may be shortlisted on the basis of their application/CV and relevant experience.

If any applicants have special requirements, please advise Shared Services when forwarding your application.

If you are interested in applying for this role, applications including CVs should be forwarded to: Sharedservicesrecruit@irishrail.ie by COB Friday 24th January 2025.

Please contact HR Shared Services, Connolly HQ by mail at the above e-mail address for any queries regarding the above position.

At Iarnród Éireann Irish Rail we are committed to embedding diversity and inclusion in all that we do. This starts with how we recruit people. It is important to us that all individuals feel welcome to join our organisation and we take great care to ensure an even playing field for all.

We will strive to provide reasonable accommodation to all candidates where required and requested.

We are an equal opportunities employer and do not discriminate against any employee or applicant for employment because of race, ethnicity, sex, age, religion, sexual orientation, gender identity and/or expression or disability.