Head of Detection & Response

 

Location: Flexible 
Reporting To: Simon Goldsmith (Director of Information Security)

The OVO Group’s purpose is to drive progress towards net zero carbon living. To reach Plan Zero, we need everyone to come together - not just as customers buying energy, but as members with a common goal. As part of this ambitious plan, our goal is to become the ‘Leading Employer in the UK’ by 2030. If you think you could be the talent we’re looking for, then come and join the adventure!                                                                                                    

Where in the world of OVO will I be working?

 The OVO Energy Detection and Response team is responsible for preparing, detecting, and guiding OVO Energy through security incidents that threaten our mission and members. Our detection team works with our MSS partner and internal tech teams to promote and maintain high-fidelity detections and automate workflows to identify and respond to attackers quickly. Our incident response team orchestrates effort on information security incidents. We both build and buy services that help us understand our environments, and prepare and coordinate our response.

What will I be doing?

We’re looking for a Head of Detection and Response to lead a new team. You will be responsible for the performance and growth of this team to protect the OVO of today and prepare for tomorrow. You will set the strategy for how this team serves our business.

Key responsibilities include:

●      Lead the Information Security Detection and Response team and its security service partners with their mission to detect malicious events against Ovo and to manage OVO’s response to protect our members and business.

●      Mentor and grow a world-class team of detection and response engineers and partner services.

●      Build and maintain close, constructive relationships with teams throughout OVO.

Is this the job for me?

It is if...

●      You are a pragmatic technical security leader who has led incident response and delivered threat-focused detection approaches in mixed on-premises and multi-cloud infrastructure environments.

●      You have an excellent ability to communicate to both senior business leaders and technical teams.

●      You have demonstrated experience building robust, collaborative relationships across a large technology business.

●      Experience building and leading incident response, security operations, and detection engineering teams and processes.

●      You have led teams which valued and cultivated a culture of psychological safety and inclusivity where team members can do their best work.

Ideally you will have:

●      Experience delivering incident detection and response in critical national infrastructure environments.

●      A thoughtful approach to both building and buying detection and response services.

●      Experience of detection and response engineering for Azure, AWS, GCP and Oracle Cloud.

●      Demonstrated knowledge and understanding of security incident types, and threat tools, tactics, and procedures (TTPs)

●      Experience using the MITRE ATT&CK framework to improve security incident detection and response.

●      Designed, improved and automated security operations processes.

●      Experience planning and gaining operational value from threat hunting engagements and providing recommendations based on the findings.

●      A demonstrated commitment to continued professional development which may include contribution to and recognition by a professional information security community.

From us you’ll get*

• 4% of your salary to spend on flexible lifestyle benefits
• 5% matched employer contribution to your pension
• 25 days holiday + 1 for your birthday
• Flexible working hours
• And many ..

(*) Please note that certain benefits kick-in once you have passed probation which can be up to 6 months after your start date.

We want the best people

At OVO, we empower our people to have choice around where and when they work - flexible working arrangements can be discussed for all of our roles. Please speak to the Talent Acquisition team for more info.

We’re keen to meet people with varied backgrounds - our view is the more inclusive we are, the better our work will be. We want to build teams which represent a variety of experiences, perspectives and skills, and we recognise talent on the basis of merit and potential.

We understand some people may not apply for jobs unless they tick every box. If you're excited about joining us and think you have much of what we're looking for, even if you're not 100% sure… we'd love to hear from you.

Learn more about working in the OVO family of companies on our careers page and Glassdoor. We’re also delighted to have received a Top Employers certificate in 2018, 2019 and 2020!