Head of IT Security Operations

GKN Automotive
Birmingham
1 month ago
Applications closed

Related Jobs

View all jobs

Cyber Security Manager

Cyber Security Operations Engineer

Head of Business Operations

IT SOC Analyst

Head of IT

Security of Operations Threat Detection Analyst

Head of IT Security Operations

Role purpose

The Head of IT Security Operations is responsible for managing the day to day security of GKN Automotive’s technology stacks across multiple international locations. You will lead the security operations team in a technical management role and work closely with other functions within GKN Automotive, to ensure security operations is at the forefront of innovation and best practice. You will play a critical part in identifying and safeguarding GKN Automotive from intrusion, security threats, security weaknesses, software vulnerabilities. You are the key authority for the coordination and management of security incident. Reporting to the Director of IT Security you will provide regular KPI reporting including updates on the threat landscape and intelligence.

Key responsibilities

Leadership and Coordination:Lead the Security Operations team to deliver best practice security capabilities globally. Ensure a consistent and repeatable approach to security across all regions and sites.Compliance and Audits:Provide support and assistance in managing audits where necessary, particularly concerning ISO27001, NIS2, TISAX and other compliance standards.Subject Matter Expertise:Serve as the SME for all Security Operations functions, including, but not limited to: SIEM Anti-Virus Vulnerability and Patch Management and use of tools Threat Intelligence Incident Management Security Architecture Project Assurance Supplier incident managementSecurity Posture Improvement:Define programme goals and roadmaps based on GKN Automotive’s needs and strategic direction and ensure that committed projects are delivered on schedule by the relevant team members.Support and Issue Resolution:Act as the escalation point for the Security Operations team. Facilitate strong alignment between IT Security and other IT and Business functions with GKN Automotive. Run patch and vulnerability management forums. Support Security Champions Network.Consultancy and Advice:Provide information security consultancy and advice to other GKN Automotive teams. Organise forums to share good practices and improvement initiatives for security enhancements.Reporting and Risk Management:Set reporting requirements for GKN leadership reviews and meetings. Oversee security risk registers, ensuring regular assessments and timely risk treatment activities. Assist in implementing remediation actions to mitigate risks and meet best practice expectations. Report to senior business stakeholders including IT Directors, VPs, and CIO.Audit Support:Provide assistance and support for site IT and OT and security audits.

Skills

Experience and Knowledge:Proven experience in information security with a track record of influencing and implementing major cultural changes. Experience of managing cross-functional teams in support of delivering expected organisational outcomes Knowledge of recognised frameworks and standards, such as TISAX, ISO 27001, NIST, CIS benchmark. Experience in physical security measures and their implementation.Technical Skills:A subject matter expert in developing and operationalising techniques for security operations. Experience with industry standard SIEMs. Understanding of cloud infrastructure ., AWS, Azure, etc. Familiarity with web services, multi-tiered systems, workflow modelling and enterprise application integration. Awareness of IT and OT security technologies and best practices. Ability to conduct gap analysis, summarise results, and produce remediation plans.Leadership and Communication:Proven experience in team leadership with the ability to motivate teams to deliver advantageous outcomes. Excellent stakeholder management and collaboration skills, with the ability to work across teams and departments at all levels. Good communication skills to convey information security and risk-related concepts to both technical and non-technical audiences.Organizational Skills:Ability to work on own initiative and meet personal deadlines while contributing to global team objectives. Good organisational skills and attention to detail.Industry Knowledge:Knowledge of applicable data privacy practices and laws (., GDPR). Experience working in the automotive sector

Education

Bachelor's or Master's degree in Computer Science, IT Security, Information Systems, or a related field. Relevant certifications such as CISSP, CISM  Additional certifications related to cybersecurity and data privacy (., ISO 27001 Lead Implementer, TISAX Assessor) are a plus.

Experience

At least 7 years of experience in information security, with a focus on leading security functions. Experience with recognised security frameworks and standards, such as TISAX, ISO 27001, NIST and CIS.  Must be able to demonstrate the ability to lead teams and manage global security operations effectively. Proven track record in stakeholder and partner/vendor management and collaboration across various departments. Must have practical experience with technical tools utilized in Security Operations, including but not limited to SIEM systems, Threat Intelligence platforms, Vulnerability and Patch Management solutions, the Microsoft Defender suite, web proxies, firewalls, Email gateway technologies, and endpoint protection tools. Must have experience in enhancing Security Operations capabilities to align with the strategic objectives of the business and address the risks posed by an evolving threat landscape.

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Jobs

Job-Hunting During Economic Uncertainty: Cyber Security Edition

The cybe rsecurity sector sits at the forefront of today’s digital landscape, defending businesses and governments alike from increasingly sophisticated threats. From incident response and network security to cloud protections and zero-trust architectures, cyber security professionals tackle an ever-evolving array of challenges. Yet, even this mission-critical field is not immune to economic turbulence. When broader financial markets experience uncertainty—whether through global recessions, regional downturns, or unexpected macro events—the hiring climate can shift, making roles more selective and budgets tighter. For job seekers in cyber security, this can be disconcerting. You might discover that once-abundant vacancies have become scarce, competition for the remaining positions is fiercer, or company priorities pivot away from large-scale expansions toward essential, cost-justified security projects. At the same time, data breaches and cyberattacks don’t pause during economic slowdowns—if anything, they may escalate as bad actors exploit organizational vulnerabilities. This paradox means that while the market feels tough, demand for cyber security expertise remains robust. In this article, we’ll look at: Why economic uncertainty affects cyber security hiring trends. Strategies for staying competitive, even if the number of open roles shrinks. Methods to highlight your skills, adapt to shifting priorities, and network effectively. Approaches for preserving mental well-being during prolonged searches or uncertain feedback loops. How www.cybersecurityjobs.tech can help you find the ideal security-focused role. By proactively sharpening your skill set, tailoring your professional profile, and engaging with a focused community, you can secure a rewarding cyber security job—even when the broader market feels volatile.

Careers

How to Achieve Work-Life Balance in Cyber Security Jobs: Realistic Strategies and Mental Health Tips

Cyber security is one of today’s most vital and rapidly expanding sectors. As data breaches, ransomware, and other cyber threats continue to evolve, the demand for skilled professionals is surging across industries—from finance and healthcare to government and e-commerce. Whether you’re a penetration tester, security analyst, or threat intelligence expert, you play a key role in safeguarding digital infrastructure and sensitive information. This high-stakes environment, however, often comes with intense pressure. Long hours, constant vigilance, and an ever-changing threat landscape can make it challenging to find time for personal well-being. Many cyber security specialists report difficulty striking a sustainable work-life balance, unsure if it’s even possible in a field that never truly sleeps. Yet, as concerns about mental health and burnout become more pressing, professionals and employers alike are seeking better ways to combine career advancement with a fulfilling personal life. In this comprehensive article, we’ll explore how to achieve a work-life balance in cyber security. You’ll discover strategies for managing 24/7 threat alerts, the importance of realistic expectations, ways to maintain mental health in high-intensity roles, and tips for setting boundaries without compromising your professional growth. Whether you’re new to this dynamic arena or already an established specialist, these insights can help you thrive personally and professionally in the fast-paced world of cyber security.

Careers

Transitioning from Academia to the Cyber Security Industry: How Researchers Can Harness Their Skills to Protect Commercial Environments

Cyber security has become a mission-critical field in an era where data breaches, ransomware attacks, and sophisticated hacking techniques threaten businesses and public institutions alike. As digital transformation touches nearly every facet of modern life, the need for highly skilled individuals capable of defending systems and networks continues to grow. For PhDs and academic researchers with expertise in areas like cryptography, network security, or threat intelligence, this presents an exciting opportunity to deploy your analytical prowess in a high-impact, fast-paced commercial setting. In this guide we’ll explore how academics can successfully pivot from the research lab to the cyber security industry. Learn how to apply rigorous, theory-driven approaches to real-world challenges, from designing secure software architectures to neutralising advanced persistent threats. By embracing the industry’s urgency and end-to-end mindset, you can transform your scholarly insights into robust, market-facing security solutions that protect companies and users on a global scale.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.