Primark Technology has embarked on a transformation journey to support our business strategy which includes modernising our operating model as well as our technology architecture. We will use the latest technologies to do things smarter, better and faster and are looking for an ambitious Security Operations Lead who can innovate with our strategy in mind. This role is key in building and improving Primark’s Cyber Security Posture.

Duties & Responsibilities:

• Threat and vulnerability management: Lead the identification and management of threats and vulnerabilities to the environment through the enhancement of existing vulnerability management policies and processes. Organise, oversee and report on regular penetration tests and assessment exercises.
• Lead and mature Identity & Access Management (IAM) improving performance via the use of relevant policies, tools and processes
• Ensure robust processes in place to govern the identification, authentication, authorisation for access to systems and applications
• Security incident detection and response: Ensure cyber security incidents are identified, managed and responded to in a timely manner that limits impact to the business by enhancing incident response policies, processes and reporting.
• Act as the immediate escalation point for information security incidents in order to determine the required course of action in terms of escalations, investigations, remediation and communication to the wider business.
• Organise and run regular incident response exercises for both operational teams and Primark’s leadership and other business functions.
• Develop the Security Operations Centre strategy and oversee the execution of SOC capabilities, ensuring an efficient and effective operation.
• Build strong relationships with the Technology team and the wider business to collaborate on initiatives and raise awareness of the threat landscape.
• Lead key security operations transformation projects design to enhance our current capability and prepare us for any emerging threats.
• Supplier management - Oversee outsourced suppliers providing security operations services ensuring we obtain the correct level of visibility and information to effectively remediate vulnerabilities and respond to incidents.
• Security reporting - Enhance operational and strategic reporting as it relates to vulnerabilities, threats to Primark or incidents. Manage communication / remediation of vulnerabilities identified / lessons learnt. Utilise security KPI’s to ensure a robust service delivery
• Overseeing, planning and executing any required vulnerability audits, penetration tests or forensic Technology audits or related investigations. Ensure findings are fed into projects improving security.
• Establishes financial plan for the area and manages to plan, optimising costs.

• 8+ years of threat detection and response experience, vulnerability and patch management
• 3+ years of leading and managing a cyber operations management team
• Experience in leading significant security operations transformation programmes, projects and IAM initiatives
• Strong leadership skills and an ability to build relationships across the wider business, Experienced working in cross-functional teams in which difficult decisions and compromises may be required.
• An appropriate degree, equivalent qualification or experience
• A recognised security certification is desirable e.g. CISM, CISA, CISSP or CRISC
• Successful candidates will:
• Be a passionate and visionary technologist able to inspire others to challenge and disrupt the current reality to co-create a compelling technology-orientated future business by
• being able to scan potential technologies (established, emerging and emergent)
• finding ways to translate that into business opportunities
• and most importantly of all, able to take people along with you, empowering new ways of working and successfully executing on those opportunities
• Possess Strong collaboration, planning, and prioritisation skills and the ability to share ideas with audiences at varying levels
• A good understanding of the threat detection and response industry and market trends.
• Excellent understanding of vulnerabilities related to common enterprise software.
• An understanding and background partnering closely with security compliance, application security, and privacy teams with knowledge of security compliance policy, programs, processes, and metrics.