Cyber Security Expert Cloud - London, United Kingdom - Vodafone

Vodafone

Verified Company

London, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Location:

Newbury:

Role purpose:

A Secure by Design Consultant in the Global Cyber Strategy & Secure by Design team

- acts as the interface between the technical disciplines and the business to carry out technically orientated security assessments, setting security requirements for new products and services, and also assessing compliance and risk.

The Secure by Design Consultant also has an important advisory role across the business and is required to provide security design and architecture guidance as well as general security consultancy, acts as cyber coach to agile projects and programme teams to ensure that future infrastructures and products for Vodafone globally are secure.
Covers the Cyber related aspects of the Security and Privacy by Design and Assurance process for new products & service development
Scopes and coordinates security penetration testing prior to product launch

This role specifically is covering Secure by Design for Vodafone Business Cloud & Secure program.

With us you will:

Impact on the business
This role will provide that all global products, services, and infrastructure for Enterprise customers, consumers, or being used internally by Vodafone are secure by design and will meet an appropriate technology security level, and demonstrate that all potential risks are being mitigated to an acceptable level to in order to assure the confidentiality, integrity and availability of systems and data.
Customers, supplier and third parties provide advice and guidance to internal and external customers on security related matters. Define, communicate and ensure that suppliers and third parties understand and comply with Vodafone's security standards.

Leadership and teamwork

Leadership and teamwork
are essential this role, the Secure by Design manager needs to work closely with the business and technology architecture teams, design and operations teams, and with the other security teams e.g. Risk & Compliance, Ethical Hacking, Security Operations, and Corporate Security. The role holder will also be required to manage external resource and coach Security Champions in the agile teams.

Innovation and change
This person will help change the perception that security is an inhibiter and work to demonstrate that security can be a business differentiator by enabling the business with secure by design for its products and services. In order to achieve this, proactivity and an attitude to identify best practices that can be spread to other APIs are key success factors
Communication Must have ability to communicate security requirements and risks to all levels of the business. Experience to explain complex technical matters to nontechnical business executives is crucial. The role, is expected to give clear guidance for implementing security controls in complex environments.

**The individual should have profound professional experience in information technology, Cyber security as well as experience with security in agile ways of working, DevSecOps. Good knowledge/experience with securing of cloud environments, web services, CI/CD pipelines, container security, connectivity, user access management, networks, and penetration testing experience beneficial.

Must have technical/professional qualifications:

University degree in Information Security or equivalent
One or more of the following: CISSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor, GIAC, TOGAF, SABSA or equivalent
35 years of work experience in the field of cybersecurity
UK gov / public sector Security clearance

If you have any question left:
globalresourcing

LI -Hybridworking

TogetherWeCan

SpiritofVodafone