Career Level: Grade D
Location: London, Manchester, Bristol, Birmingham, Sheffield, Glasgow
Why this job matters
The Cyber Security Governance & Assurance Specialist executes a range of workstreams in delivering contributions to the BT Group’s & BT Group’s Customers overall cyber security risk management program, which is designed to ensure that the BT Group’s & BT Group’s Customers technology systems and data are adequately protected.
What you’ll be doing
* Management and maintain Security Governance, Risk and Compliance for specified Customer Contract(s).
* Manage Security Obligations for the Customer Contract(s) and ensure they are reviewed on a regular basis and where not compliant, appropriate mitigation is in place or contract risks raised.
* Manage, implement and measure the effectiveness of the Security framework, processes, and plans for the contract that support the security strategy and policy, taking into account risks and appropriate legal/regulatory constraints.
* Support and where applicable take ownership of customer specific elements of security strategy development and deliver within the agreed timescales.
* Monitor and manage the effectiveness/certification of the contract as required eg ISO27001, CE+, DART compliant service; by managing/monitoring compliance to the above certifications.
You'll need to have the following skills and experience
* Achieve and maintain Security Clearance as defined in the contract.
* Excellent commercial awareness and customer facing skills.
* Excellent interpersonal and communication skills.
* Ability to make effective decisions and plan accordingly.
* Excellent time management and prioritisation.
* Excellent ability to drive continuous improvement including assimilating change, adapting and being effective quickly.
* Maintains an awareness of the evolving security and threat landscape.
* Achieve and maintaining relevant security accreditations (CISM, M.Inst.ISP, etc.).
* Understand the application of frameworks ISO27001, Security Policy Framework.
* Experience implementing and managing security frameworks (eg ISO 27001, CE).
* Good level of knowledge of Security Architecture, Design, and operational processes.
* Good knowledge of security incident response, investigation and follow-up.
* Good knowledge of Risk Assessment methodologies and implementing security improvement plans for remedial action follow-up.
* Excellent report writing skills.
Benefits
* 10% on target bonus
* BT Pension scheme, minimum 5% Employee contribution, BT contribution 10%
* 25 days annual leave (not including bank holidays), increasing with service
* Huge range of flexible benefits including cycle to work, healthcare, season ticket loan
* World-class training and development opportunities
* Option to join BT Shares Saving schemes.
* Discounted broadband, mobile and TV packages
* Access to 100’s of retail discounts including the BT shop
With over 175 years of heritage, BT is now the flagship business brand of BT Group. We’ve brought together our best people and capabilities into a B2B powerhouse serving 1.2 million business customers internationally.
We’re a global leader for secure connectivity and collaboration platforms for businesses of all shapes and sizes, from big household names and government departments, right through to sole traders and new start-ups. But it’s not just the technology that matters, it’s what it can do to help them build stronger, smarter, more secure businesses.
We value diversity and inclusion and believe in making a positive impact. We connect for good by championing digital inclusion and equipping people, businesses, and communities with digital skills to thrive.
As a member of our team, you will be part of an organisation that celebrates difference, fosters innovation and provides you with opportunities to be your best. With millions of businesses relying on us daily, joining BT means you can be part of a diverse and multi-skilled team that makes a significant impact to society.
A FEW POINTS TO NOTE:
Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.
DON'T MEET EVERY SINGLE REQUIREMENT?
Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.