What you’ll be doing
1. Leads the development and implementation of the Cyber Security strategy, developing and maintaining a current road map including new features and subservices required to meet commercial demand as well as changes to the security landscape, the sector and technologies.
2. Leads the deployment, integration and configuration of the most complex security solutions and enhancements to existing security solutions in accordance with standard best operating procedures.
3. Leads the execution of threat modeling and security assessments, determining security requirements and specifications, and developing security solutions to satisfy design requirements.
4. Leads the provision of information and cyber security advice and guidance to key stakeholders across the BT Group including multiple senior stakeholders.
5. Leads the creation of policy for the Cyber Security function relating to the compliance, validation and assessment of major information technology systems, developing and providing security and governance reviews.
6. Leads the design and implementation of information and cyber security controls and change initiatives across the BT Group.
7. Leads the reporting of the status of risk exposure and control maturity against the relevant policies and standards.
8. Operates as an SME in cyber security, providing expertise and analysis in the development of the Business Continuity Management Programme and Disaster Recovery Plan.
9. Ensures product compliance with applicable security standards, group policies and industry best practices.
10. Mentors and coaches experienced professionals to develop current and future team capabilities and ensure performance.
11. Leads the implementation of continuous improvement opportunities to improve cyber security processes.
Experience Required
1. Leading complex security and assessments with measurable risk reduction outcomes.
2. Implementing DevSecOps practices within modern engineering pipelines, including automated security testing and controls.
3. Designing and governing enterprise‑scale security architectures across multi‑domain technology estates.
4. Delivering secure end‑to‑end solution designs that balance security, operability, performance and business needs.
5. Establishing security governance frameworks aligned to policy, risk, and compliance requirements in regulated environments.
6. Managing complex security incidents, coordinating stakeholders, and driving lessons‑learned and systemic improvements.
7. Working in agile delivery environments, translating security requirements into technical epics, guardrails and acceptance criteria.
8. Hands‑on experience with AWS cloud security architectures, landing zones, guardrails and platform controls backed by certifications.
9. Knowledge of data governance practices to ensure data quality, security, and compliance.
10. Demonstrates a comprehensive understanding of ethical considerations related to artificial intelligence and possesses the capability to develop and implement fair and responsible AI solutions.
11. Research skills to stay up-to-date with the latest trends and continue to learn new techniques.
The skills you’ll need
Compliance Monitoring and Controls TestingInformation Security StrategyApplication SecurityEnterprise Security ArchitectureStakeholder ManagementSecurity AssessmentSolution DesignVulnerability ManagementAgile MethodologiesCustomer Relationship ManagementDevSecOpsCyber ResilienceTechnical Security ArchitectureSecurity Evaluation and Functionality TestingDecision MakingGrowth MindsetInclusive LeadershipIncident ManagementZero Trust ArchitectureAccess ControlAI in SecuritySecurity of AI
Our leadership standards
Looking in:
Leading inclusively and Safely
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.
Looking out:
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.
Looking to the future:
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.