Head of Security Operations
October 04, 2024
This newly created Head of Security Operations role is pivotal in ensuring the security and integrity of our systems and data.
The scope of the role involves establishing and managing a robust Security Operations team, contributing to, and delivering, the security operational strategy, owning all customer-facing security events, and proactively improving our security posture.
Reporting to the Global Head of Platform Operations you will be highly skilled in practical delivery, team leadership, and strategic planning.
About the role
- Establish, lead and manage the Security Operations team
- Develop and implement a comprehensive security operations strategy
- Oversee the day-to-day operations of the Security Operations Center (SOC)
- Ensure timely and effective response to all P1 and customer-facing security events
- Own all events from alert level to triage levels 1, 2, and 3, including all P1 (Major Events)
- Proactively improve security monitoring, alerting, defensive measures, and response capabilities
- Collaborate with other departments to integrate security best practices across the organization
- Conduct regular security assessments and audits to identify vulnerabilities and implement corrective actions
- Stay current with the latest security trends, threats, and technology solutions
- Provide mentorship and professional development opportunities for team members
- Prepare and present regular reports on security operations
About Vista
Vista is a world-leading company that makes software for the cinema industry. Started in Auckland, New Zealand, over 25 years ago, we now serve cinemas, film distributors, and moviegoers worldwide.
Our HQ is in Auckland and we have offices and subsidiary companies in Sydney, Los Angeles, London, Amsterdam, Cape Town, Shanghai, Mexico City, and Kuala Lumpur.
Our innovative solutions empower cinemas worldwide to deliver exceptional movie-going experiences. We are committed to excellence, innovation, and security in all our operations.
Shared Standards
Our Shared Standards act as a compass for how we work together and reflect the behaviours we value at Vista Group. The way in which each member of our crew embodies these Shared Standards is an indicator for performance and success, as it aligns with our vision and strategy.
One Crew • We're a diverse team, in different places and functions, and we're at our best when we connect, help and collaborate.
Shine a Light • We communicate openly, we explain the why, and we ask when we don't understand. We don't leave people in the dark.
Make it Happen • We make good things happen as people and as teams through our focus on delivery.
Chase Great • We challenge ourselves and each other to keep improving.
Requirements
About you
- 7+ years’ experience in a senior security management role, with a demonstrable track record of developing and implementing security strategies and frameworks
- Extensive experience in conducting security audits, risk assessments, and managing incident response processes
- Deep understanding of cybersecurity, data protection regulations, and industry best practices with a particular focus on SaaS organisations
- Demonstrated experience of applying security principles effectively and making informed decisions to minimize the impact of live security incidents
- Analytical mindset and strong problem-solving skills to assess risks, analyze complex security issues, and develop appropriate solutions
- Tertiary degree in information security or a related field, or equivalent experience
- Relevant certifications such as CISSP, CISM, or CRISC
- Up-to-date knowledge of emerging security threats, trends, and technologies
- Strong leadership and communication skills, with the ability to collaborate effectively with cross-functional teams and senior management
- Motivated individual who takes ownership of problems, ensuring that they are proactively managed until resolution
Highly desirable experience
- Master’s degree in cybersecurity, information assurance, or a related field
- Knowledge of security frameworks, such as ISO 27001 and NIST Cybersecurity Framework
- Experience in managing security operations centers (SOCs) or working with managed security service providers (MSSPs)
- Proven ability to drive cultural change and embed a security-aware culture within the organization
We are currently only considering applicants with an existing right to work in NZ, without the need for employer sponsorship, for this position.
Benefits
You will be supported to continually learn and improve your skills, share knowledge and ideas in the team, and be part of a dynamic and open culture.
We have a range of benefits that include:
- Excellent work/life balance, including a 4 ½ day working week
- Hybrid working (home/office based split, requiring regular weekly attendance in the Auckland office)
- Medical and Life insurance
- Volunteer day, enhanced paid parental leave and wellness benefits
- Strong mentoring & career development focus
- Fun team events including the Vista Innovation Cup
If this sounds like you, get in touch to find out more
We value inclusivity celebrate diversity and are committed to offering equal opportunity to our staff and candidates — regardless of gender, age, race, ethnicity, marital status, disability, sex, sexual orientation, religious, ethical beliefs or political opinion. This commitment is reflected in all our employment policies and procedures.