What you’ll be doing
1. Executes the implementation of the Cyber Security strategy, developing and maintaining a current road map including new features and subservices required to meet commercial demand as well as changes to the security landscape, the sector and technologies.
2. Implements the deployment, integration and configuration of new security solutions and enhancements to existing security solutions in accordance with standard best operating procedures.
3. Runs resiliency exercises including threat modeling and security assessments, determining security requirements and specifications, and developing security solutions to satisfy design requirements.
4. Provides information and cyber security advice and guidance to key stakeholders across the BT Group.
5. Manages the implementation of information and cyber security controls and change initiatives across BT Group.
6. Reports the status of risk exposure and control maturity against the relevant policies and standards.
7. Runs analysis to the development of the Business Continuity Management Programme and Disaster Recovery Plan.
8. Utilises best practice knowledge to detect, identify and respond to cyber events, threats, security risks and vulnerabilities.
9. Follows product compliance with applicable security standards, group policies and industry best practices.
10. Mentors other cyber security professionals, helping to improve the team's abilities by acting as a technical resource.
11. Champions, continuously develops and shares with team knowledge on emerging trends and changes in cyber security.
Experience Required
1. Deep expertise in IAM, VPC security, encryption, and network segmentation.
2. Proven hands on experience with Amazon GuardDuty in production environments.
3. Ability to tune and optimise GuardDuty to reduce noise and improve detection accuracy.
4. Familiarity with SageMaker security constructs and Bedrock access controls.
5. Familiarity with EKS runtime security and container threat detection.
6. Degree in Computer Science/Engineering (or equivalent practical experience leading production cloud/ML platforms).
7. AWS certifications strongly preferred – AWS Security Speciality.
8. Strong understanding of API authentication, authorisation, throttling, and abuse prevention.
9. Familiarity with GenAI interaction standards, orchestration layers, or AI gateways.
10. Hands-on delivery experience with Amazon Bedrock to run agentic apps safely in production and build observability around them.
The skills you’ll need
Compliance Monitoring and Controls TestingInformation Security StrategyStakeholder ManagementSecurity AssessmentSolution DesignData AnalysisVulnerability ManagementInformation SecurityAgile MethodologiesDevSecOpsCustomer Relationship ManagementCyber ResilienceRequirements ManagementSecurity Evaluation and Functionality TestingDecision MakingGrowth MindsetInclusive LeadershipIncident ManagementZero Trust ArchitectureAccess ControlAI in SecuritySecurity of AI
Our leadership standards
Looking in:
Leading inclusively and Safely
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.
Looking out:
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.
Looking to the future:
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.