SolveCube is an award winning AI enabled Talent Solutions Platform for middle and senior level professionals. SolveCube is working with global consulting firms, mid and large enterprises across Asia Pacific and Middle East to fulfil their talent needs for permanent, short-term, part-time, interim and turnkey assignments.

One of our clients a reputed bank in Dubai is looking for Senior Manager, Information Security Operations & Incident Management

Job Description

1. Job Title

Senior Manager, Information Security Operations & Incident Management

2. Department

Risk Information Security

3. Reporting To

Chief Information Security Officer

4. Job Purpose

To lead and manage the security operations and incident response functions, ensuring the protection of the organization’s IT infrastructure, data, and systems from cyber threats while supporting the CISO office in maintaining a robust security posture.

5. Principal Accountabilities

Job Responsibilities

• Security Operations:
• Oversee the daily operations of the Security Operations Center (SOC) across 1st and 2nd Lines of Defense.
• Develop and implement security monitoring and incident detection strategies.
• Ensure effective use of security tools and technologies to protect organizational assets.
• Monitor security alerts and manage responses to potential security incidents.
• Conduct regular security assessments and audits to identify vulnerabilities.
• Incident Management:
• Own and maintain the incident response plan to address security breaches and incidents.
• Lead the incident response team in investigating and resolving security incidents (including 24/7 leadership rotation).
• Coordinate with internal and external stakeholders during incident response activities.
• Conduct post-incident reviews and implement lessons learned to improve security measures.
• Ensure timely and accurate reporting of security incidents to relevant authorities and stakeholders.
• Threat Intelligence:
• Develop and maintain a threat intelligence program to identify and analyze emerging threats.
• Collect, analyze, and disseminate threat intelligence to relevant stakeholders.
• Collaborate with external threat intelligence providers and industry peers.
• Integrate threat intelligence into security operations and incident response processes.
• Provide actionable intelligence to enhance the organization’s security posture and mitigate risks.
• Security Assurance:
• Support risk assessments and vulnerability analysis across ISMS, projects, change initiatives, and thematic reviews.
• Support threat modeling as part of DevSecOps and other change-related activities.
• Leadership and Collaboration:
• Provide leadership and guidance to the security team, fostering a culture of security awareness and continuous improvement.
• Collaborate with other departments to integrate security into all business processes.
• Stay updated on the latest security threats, trends, and technologies, and share knowledge with the team.

6. Job Context

This role operates in a dynamic and fast-paced environment, requiring close collaboration with internal and external stakeholders to ensure the organization’s security resilience against evolving cyber threats.

7. Communication & Working Relationships

Regular interaction with internal teams, senior management, external partners, regulators, and industry groups to align security initiatives with business objectives and compliance requirements.

8. Dimensions of the Job

• Financial: Management of security operations and incident response budgets.
• Non-financial: Leadership of the SOC and incident response teams, including oversight of security tools and technologies.

9. Framework, Boundaries & Decision-Making Authority

The role operates within established security policies, frameworks, and regulatory guidelines. The incumbent has the authority to make operational decisions related to security incidents, response actions, and resource allocation within defined boundaries.

10. Qualifications

• Bachelor’s degree in Computer Science, Information Security, or a related field.
• Minimum of 10 years of experience in information security, with at least 3 years in a leadership role.
• Strong knowledge of security frameworks (e.g., ISO 27001, NIST).
• Experience with security architecture and design.
• Understanding of regulatory requirements (e.g., GDPR, PCI-DSS).
• Experience with threat modeling methodologies (e.g., MITRE ATT&CK, STRIDE, OWASP).
• Proven ability to manage and lead a team.
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills.
• Relevant certifications (e.g., CISSP, CISM) are highly desirable.

11. Experience

10+ years in information security, including leadership experience in SOC and incident management within a complex organizational environment.

12. Skills

• Strategic thinking and operational execution
• Incident response and crisis management
• Threat intelligence analysis
• Stakeholder management and communication
• Team leadership and development

13. Competencies

• Results-oriented
• Decision-making under pressure
• Collaborative and influential
• Adaptable and proactive
• Strong ethical standards