Job Description
* Actively represent the security organisation within business project initiatives, providing technical security leadership to ensure that security requirements and outcomes are defined and considered throughout the lifecycle of projects from conception to operation.
* Collaborate closely with a broad range of stakeholders across the business and be able to articulate the security vision, principles and governance/assurance standards for security consultants and solution architects within Three and our partners.
* Provide security requirements and design input across several projects or technologies across Three’s Network and Enterprise business domains at any one time.
* Provide effective governance and assurance of security deliverables by our partners and internal teams within Three, where necessary also supporting security consultants and solution architects through review and approvals.
* Maintain an in-depth knowledge of industry standards and have an evolving level of technical expertise relevant to the role.
* Create, review, and approve requirements capture, architecture, design, delivery and test documentation and other artefacts used in the design and delivery lifecycle by Three and its partners, ensuring that effective governance and technical assurance can be performed. Maintain and improve the use of artefact templates.
* Ensure that there is effective capacity management and planning in place for the security services and solutions assigned to you and ensure that the solution is incorporated into the 18-month technical and budget roadmap for capacity expansion and service improvement.
* Support the Programme and Project Manager in project planning, risk and issue management and the budgeting process.
Qualifications
* Mix of security consulting, architecture/design, and professional services experience.
* Lead the design and review of secure system architectures using or developing patterns and principles, where necessary challenging to create precedents and set direction.
* Knowledge of system architectures and be able to understand and articulate the impact of vulnerabilities on existing and future designs and systems, and how easy or difficult it will be to exploit these vulnerabilities
* Experience in one or more of the following technical domains: Cloud/Hybrid security, Infrastructure and data centre security, Network security, Application security, Identity and access management, Vulnerability Management
* Expertise in defining and then governing the delivery of security contractual/business outcomes and know how to influence/negotiate technical outcomes with 3rd parties, including conflict resolution due to changing priorities.
* Experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks.
Additional Information
* The salary range for this role starts at £59,120, the exact salary will differ by job and experience
* A car allowance, a performance based annual bonus & an additional 'flexible allowance' to spend on additional benefits, topping up your pension, or to be added to your salary.
* Hybrid working between your home (2-3 days a week) and our brand new Reading HQ office at Green Park (2-3 days a week)
* 28 days annual leave + 8 bank holidays + 3 personal days annually, which increases with length of service.
* Private Medical Insurance, Life Assurance and Income Protection.
* Free mobile phone package & unlimited sim-card
* Free on-site car parking
* Plus lots more including wellbeing and learning & development benefits!
Our people make us who we are. We’re a diverse and inclusive bunch, and it’s important you can feel you belong here. We value everybody for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers.
At Three we have a hybrid working arrangement in place as standard for office based employees, where employees work from a mix of office based location and working from their home in the UK to carry on their role.
Excluding retail, core hours at Three are between 10:00 and 16:00, with operating hours between 08:00 & 18:30. This allows employees to have a start time between 08:00 and 10:00 and finish time between 16:00 and 18:30.