The Cyber Security Governance & Assurance Professional supports the delivery of BT's cyber security governance and assurance activities, helping to reduce risk to the business by assuring the effectiveness of key security controls, tooling and processes. This is a developing role, ideal for someone looking to build experience across cyber security governance, assurance, and risk management within a large, complex organisation.
Role Contributions
* Protecting BT Business from cyber risk
* Supporting compliance with security standards and regulations
* Enabling external certifications that help BT win business
* Providing clear, risk‑based insight to senior stakeholders
This is a hybrid role (3 days in office) and can be based in Manchester, Belfast or Leeds.
Key Responsibilities
* Supporting cyber security governance and assurance activities to identify, assess and reduce cyber risk across BT Business.
* Contributing to assurance of key security controls, including Secure Configuration, Vulnerability Management, Access Control and Account Management, Audit Logging and Monitoring.
* Supporting assurance and oversight of security toolsets, such as endpoint detection and malware defence (e.g. CrowdStrike).
* Assisting with risk‑based reviews of information security and technology processes and controls.
* Supporting governance forums and oversight activities, including preparation of materials and actions for security risk review meetings.
* Analyzing governance, risk and compliance information such as risk registers, policy exceptions, audit findings and data security reviews.
* Preparing cyber risk reporting and dashboards for management and senior stakeholders.
* Contributing to certification and assurance activities, including Cyber Essentials Plus, ISO/IEC 27001 and Public Services Network (PSN).
* Participating in cyber security incident response activities during high‑severity incidents when required.
* Supporting continuous improvement of governance, assurance processes and ways of working within the team.
BPSS eligibility is also required for this role.
Essential Skills / Experience
* Cyber Security Governance & Assurance
* Risk Assessment & Control Assurance
* Understanding of Security Controls and Tooling
* Stakeholder Communication
* Documentation & Reporting
Desirable Skills / Experience
* Foundational experience or strong understanding of cyber security, information security, risk, or compliance.
* Awareness of information security standards or frameworks such as ISO/IEC 27001.
* Basic understanding of risk assessment, control assurance, and governance concepts.
* Exposure to security controls such as vulnerability management, access control, secure configuration or logging.
* Some understanding of GDPR / data protection principles and their application within organisations.
* Ability to analyse information, document findings clearly, and follow defined processes.
* A proactive approach to learning and developing.
Our Package
* On‑target bonus of up to 10%
* BT Pension scheme, minimum 5% employee contribution, BT contribution 10%
* Equal family leave: 18 weeks full pay, 8 weeks half pay, 26 weeks statutory rate (from January 2025)
* Enhanced women’s health support, including menopause assistance, cancer screenings, and period care
* 25 days annual leave (not including bank holidays), increasing with service
* 24/7 private virtual GP appointments for UK colleagues
* 2 weeks carer's leave
* World‑class training and development opportunities
* Option to join BT Shares Saving schemes
#J-18808-Ljbffr