Apply now »

Manager - Technology Risk

Mar 9, 2026

Overview:

This role is responsible for managing day‑to‑day cybersecurity operations, including monitoring security alerts, handling technology risk assessments, and overseeing vulnerability and threat management activities. The position works closely with internal IT teams and external MSS/SOC partners to ensure effective incident response, policy compliance, and continuous strengthening of the organisation’s security posture. The role also provides security advisory for projects, supports audits, and promotes cybersecurity awareness across the company.

 

Responsibilities:

Cybersecurity Operations

  • Monitor and respond to alerts generated by EDR/NDR, DLP, ASM, SIEM, and vulnerability management tools.
  • Coordinate with MSS/SOC vendor and internal infrastructure, network, and helpdesk teams on threat analysis, incident handling, and remediation.
  • Review and process DLP or cybersecurity exemption requests and ensure follow‑up actions are tracked.

Governance, Risk & Compliance

  • Conduct regular reviews of IT policies, cybersecurity standards, acceptable use policies, and BCP/DR plans to prevent security posture drift.
  • Support audits, regulatory reviews, penetration tests, and control assessments.
  • Oversee threat and vulnerability management, including patch baseline monitoring, end‑of‑life controls, and risk treatment plans.

Technology & Advisory

  • Perform feasibility studies on new technologies and work with IT teams to define practical use cases.
  • Lead proof‑of‑concepts and develop adoption roadmaps.
  • Provide security advisory for IT projects, system enhancements, and new technology implementations.
  • Maintain, enhance, and tune core security tools and detection capabilities.
  • Promote cybersecurity awareness and contribute to continuous improvement initiatives.

 

Requirements:

  • Bachelor’s degree in Information Security, Computer Science, IT, or related fields.
  • Minimum 5 years of experience in cybersecurity operations or technology risk; 3 years in a managerial role preferred.
  • Hands‑on experience with EDR, NDR, DLP, vulnerability scanning, ASM, and security monitoring platforms.
  • Experience working with third‑party MSS/SOC providers.
  • Strong understanding of network, infrastructure, cloud security, and frameworks such as ISO 27001, NIST CSF, PCI‑DSS, or CIS Controls.
  • Professional certifications such as CISSP preferred (or equivalent: CISM, CEH, Security+).
  • Detail‑oriented, analytical, strong problem‑solving capability.
  • Strong sense of ownership, teamwork, and excellent communication skills.

Apply now »