IT Security Operations Lead

The IT Security Operations Lead will be responsible for managing and strengthening the Group’s operational security posture across all business units and African subsidiaries.

Job Title: IT Security Operations Lead

Location: Mauritius
Reports to: Group CIO
Collaborates with: CISO, Infrastructure, Applications, and Security Teams

Role Summary

The IT Security Operations Lead will be responsible for managing and strengthening the Group’s operational security posture across all business units and African subsidiaries. The incumbent will oversee day-to-day security operations, including threat monitoring, incident response, vulnerability management, and the implementation of security controls and tools. Working closely with the Group CIO and the CISO, the IT Security Operations Lead will ensure that security practices align with the Group’s governance framework, regulatory requirements, and strategic objectives.

Key Responsibilities

Operational Leadership

• Lead and coordinate daily IT security operations across all group entities.
• Manage a small team of security analysts/engineers, ensuring continuous monitoring, alert management, and timely incident response.
• Serve as the main point of contact for security operations between internal teams and the CISO.
• Lead efforts to automate security operations using SOAR platforms and scripting (e.g., Python, PowerShell) to improve efficiency and response times.
• Oversee cloud security operations for hybrid or multi-cloud environments, ensuring consistent monitoring and protection.
• Maintain operational alignment with the IT Service Management framework and change management processes.

Incident Response & Threat Management

• Oversee the identification, triage, investigation, and resolution of security incidents.
• Coordinate incident response activities, including communication, escalation, and post-incident reviews.
• Monitor threat intelligence feeds and proactively implement measures to mitigate emerging risks.
• Maintain the Incident Response Plan (IRP) and coordinate simulation exercises (tabletop tests)
• Stay ahead of emerging threats including AI-driven attacks, ransomware, and supply chain vulnerabilities.
• Provide timely reporting of incidents to management and regulators, as required.

Vulnerability & Patch Management

• Manage the vulnerability management lifecycle, including scanning, prioritization, remediation tracking, and reporting.
• Collaborate with infrastructure and application teams to ensure timely patching and hardening of systems.
• Include third-party and supply chain risk assessments as part of the vulnerability lifecycle.
• Ensure cloud-native services are included in patching and hardening efforts.

Security Tools & Infrastructure

• Administer and optimize security tools (e.g., SIEM, endpoint protection, email security, firewalls, DLP, etc.).
• Evaluate and implement new security technologies to address evolving threats and improve detection capabilities.
• Ensure integration between security tools and IT infrastructure for unified monitoring and incident tracking.

Collaboration with IT & Business Functions

• Work closely with the Infrastructure and Applications teams to ensure Group security standards are followed in IT and business projects.
• Act as a security advisor in IT and business projects, ensuring alignment with Group security standards and regulatory requirements.
• Participate in project reviews, risk assessments, and solution designs to integrate appropriate security controls early in the lifecycle (“security by design”).
• Support fraud prevention and detection initiatives through data analytics and security monitoring.
• Collaborate with legal and compliance teams to ensure data privacy regulations (e.g., GDPR) are embedded in project designs.

Compliance & Governance Alignment

• Work in close coordination with the CISO to implement the security governance framework, policies, and procedures.
• Ensure compliance with FSC & BOM guidelines, DPA, and ISO 27001 standards
• Support internal and external audits, penetration tests, and regulatory reviews.
• Maintain security metrics and prepare periodic reports on the Group’s operational security posture.
• Maintain an oversight of third-party risk assessments, vendor security reviews, and integration of supply chain risk into the security program.

Awareness & Collaboration

• Support user awareness initiatives and promote a security-first culture within the Group.
• Collaborate with IT, Risk, and Compliance teams to ensure security integration in business processes and new initiatives.
• Provide technical coaching and mentorship to junior security staff.

Qualifications & Experience

• Bachelor’s degree in Information Security, Computer Science, or related field.
• Minimum 5–8 years of experience in IT or Cybersecurity, including at least 3 years in a security operations or technical leadership role.
• Strong hands-on experience with security monitoring tools (e.g., SIEM, EDR, XDR, IDS/IPS, Firewalls).
• In-depth understanding of incident response processes, network security, and vulnerability management.
• Familiarity with frameworks such as ISO 27001, NIST, and CIS Controls.
• Relevant certifications preferred: CISSP, CISM, CEH, CompTIA Security+, or similar.
• Exposure to data privacy regulations and business continuity planning.
• Experience working in a multi-entity or regional organization is an advantage.

Key Competencies

• Strong analytical and problem-solving skills.
• Ability to lead and motivate small teams effectively.
• Excellent communication and collaboration skills across departments and countries.
• Strategic mindset with hands-on operational capability.
• High integrity and commitment to confidentiality.