Cyber Security Operations Manager

Key Responsibilities

• Supporting the maturity of IT & OT detect, respond, and recover capabilities, collaborating with IT and operational teams to strengthen monitoring, incident handling, and recovery processes in operational environments.
• Working closely with IT teams to ensure security standards and controls are implemented consistently and effectively across all environments.
• Providing oversight of security operations delivered by IT and third party SOC/MDR partners, ensuring effective monitoring, detection, response, performance tracking, and operational coverage.
• Overseeing day to day cyber security operations, ensuring effective collaboration across IT, security teams, and external partners.
• Leading security awareness and training initiatives to ensure staff and managers understand cyber risks, responsibilities, and how to recognise and report security incidents.
• Acting as a trusted advisor to the business on cyber risk, controls, and good practice, providing clear and actionable guidance.
• Developing, maintaining, and supporting the implementation of security standards and control requirements for IT and suppliers.
• Managing the cyber supply chain risk, including supplier assurance, cyber due diligence, risk assessments, and ongoing oversight of third party cybersecurity posture.

Skills, Knowledge and Expertise

Background

• Demonstrable experience within a related cyber security role - essential.
• Experience of direct application of industry frameworks and guidance to business processes and decisions - essential.
• Knowledge of the MITRE ATT&CK framework - essential.
• Strong technical security knowledge, including hands on experience with Microsoft Sentinel for security monitoring, analytics, detection engineering, and incident investigation - essential.
• Awareness of cyber security risk management frameworks, such as ISO27001 or NIST-Cyber Security - desirable.
• Familiarity with cloud security principles and NCSC Secure by Design principles - desirable.
• Knowledge of Network and Information Systems (NIS) regulations and the Cyber Assessment Framework (CAF) - desirable.
• Experience working in a cyber regulated or high assurance sector or operating model - desirable.
• Experience working in a team structure with examples of managing different types of stakeholder relationships - desirable.
• Experience working in an operating model with a broad range of tasking and fast-moving workload timelines - desirable.

Behaviours

• Ability to interpret complex cyber information into actionable decisions and outcomes - essential.
• Excellent communication skills - essential.
• Excellent team player - essential.
• Tasking management - essential.

Qualifications

• CISSP or CISM certified - essential.
• Degree qualified in a relevant field - desirable.

Further Information

Recruitment Agencies: This role is being advertised directly by [Employer hidden — sign up to reveal]. At our discretion we will contact select recruitment partners and kindly ask that agencies do not contact us regarding this vacancy.

Security Clearance: The successful candidate must be able to achieve and maintain both a Baseline Personnel Security Standard (BPSS) and a Security Check (SC) for this role. Further details are available on the UK Security Vetting Website.

About [Employer hidden — sign up to reveal]

[Employer hidden — sign up to reveal] is a flexible power generation company jointly owned by EPH and TotalEnergies. Headquartered in Amsterdam, the company owns and operates more than 20 flexible power and biomass-based assets across Italy, the United Kingdom, Ireland, the Netherlands and France. As of May 2026, [Employer hidden — sign up to reveal] operates more than 14 GW of installed or in construction capacity and produces close to 30 TWh of electricity per year. This robust and diversified portfolio makes [Employer hidden — sign up to reveal] the second‑largest gas‑to‑power player in Europe. Thanks to its flexible power generation capacity and its utility-scale battery storage solutions, [Employer hidden — sign up to reveal] contributes to Europe’s security of supply while supporting power grids with the challenges of growing intermittent renewable energies integration, such as wind and solar. We are also active in the supply business in the Netherlands and Italy, and we operate a gas storage facility in the UK.