VodafoneThree - Secure by Design SME IT/ Digital Newbury, United Kingdom Secure by Design - IT/ ...

VodafoneThree - Secure by Design SME IT/ DigitalNewbury, United Kingdom Location: Newbury + Hybrid Salary: Excellent basic salary plus bonus and Vodafone benefits Working Hours: Full time 37.5 hours per week - Monday to Friday Hybrid We believe that through collaboration and connection with our colleagues we can achieve great things. Our hybrid working approach allows our people to work both in the office and at home, providing the flexibility and resources you need to succeed in your role. We don't require you to be in on specific days; instead, we ask people to come into the office 2-3 days each week, for at least 8 days per month. You should work with your line manager to understand what their expectations are for you, your specific role and your team. Who We Are We're here to build a network the UK can count on - one that connects people, places and potential. Because no matter where you live, what your background is, or how you get online - we think everyone deserves the same chance to stay connected, and with VodafoneThree, that future's being built - today. We're creating more than the UK's best network. We're helping close the digital divide, empower communities and drive meaningful progress. We believe that everyone should feel they belong. Whoever you are and whatever your story, there's space for you here. We're building a workplace where different perspectives are welcomed, voices are heard, and everyone feels safe to show up as themselves. You'll join a team that genuinely cares - about each other, about our customers, and about the future we're building. From day one, you'll be welcomed, valued and encouraged to bring your whole self to work. Why VodafoneThree Join us and you'll be at the heart of change. That means building responsibly, investing sustainably and creating opportunities that last. We're not just expanding connectivity; we're reimagining what a connected nation looks like. With £11bn invested in 5G and digital infrastructure, your work will directly power businesses, services, and communities across the country. You'll work on real challenges, with real impact, across every corner of the country. Wherever you join us, whatever your role, you'll be helping to build a future that works better for everyone. We move at pace, because what we're building matters - and we're learning as we go. We're proud of the progress we've made, but we're just getting started. Join our Technology team and push the boundaries of tech to make a better world today and create the ground-breaking products and services of tomorrow. What you'll do In this role you will provide Security Architectural support to projects that have engaged with Secure by Design, providing guidance to projects and BAU activities across the following UK business functions: The purpose of the role is to: Ensure Security is embedded in IT and Digital Systems including planning, designing, and building phase Define technical security controls for efficient implementation Ensure compliance with Legal and Regulatory requirements Fulfil Key Customers obligations and Stakeholders expectation Ensure security architecture activity is timely delivered to support other technology and business functions Contribute to, define and assess complex design proposalAs a Security Architect in Secure by Design you will be required to develop and document end-to-end architecture that will protect the IT and Digital Systems from the significant and persistent cyber security threat to which VodafoneThree is exposed to. You need to ensure system architecture is developed adequately to protect the availability, confidentiality and integrity of IT Systems. The security architect is required to develop this architecture in conjunction with Group and European region technical architects and influence them to support the UK position. This architecture and ability to influence senior technical stakeholders across the group will underpin attaining and retaining of business-critical certificates and legislative obligations. You will engage with the business functions to understand their future roadmaps and will ensure that appropriate Cyber Security engagement takes place to support these roadmaps. You will also be responsible for providing technical leadership and task direction to other Secure by Design managers, Specialists as well as Cyber Security Champions across Technology and other business functions. You will work with project teams to produce solutions that comply with internal security policies, standards and the security architecture. The role requires a recent hands-on background with a wide range of security and IT & Digital technologies.The projects and "business as usual" change you will be working on will encompass the full range of IT & Digital technologies encompassing: Online & Digital including Mobile Applications Customer Management & Billing Systems Business Intelligence and Big Data Business Support Systems Cloud Infrastructure & SaaS Automation Solutions End user computing / BYOD.Key functions of this role are to: Senior member of the Secure by Design IT & Digital Team. Embed effective security practices into IT & Digital processes (Agile, DevSecOps, CI/CD etc). Provide Cyber Security guidance, design input and design review/assessment. Review and approve end to end connectivity across Vodafone networks. Specify security testing and ensure that identified vulnerabilities are remediated. Identify Cyber Security risks and ensure that these are managed effectively. Lead relevant Regulatory and Compliance initiatives for Secure by Design. To review telecoms project designs and architectures against the company's cyber security policies and to communicate this to project teams. To assess project designs against requirements, including the UK Telecommunications Security Act (TSA) Guiding and embed effective security controls into Network architectures Provide Cyber Security guidance, design input and design review/assessment of complex changes Specify and scope security penetration testing of complex designs, and ensure that identified vulnerabilities are remediated To assist members of the Secure by Design Networks team with understanding of designs To provide leadership, updates and guidance for cyber control implementation and their ongoing assessment and improvement Who you are Please note: Enhanced vetting may be carried out for this role Educated to degree level and/or relevant technical experience (preferably 7+ years) with a proven track record of delivering complex cross-domain IT/IS solutions architectures/designs in the telecommunications industry Minimum of 5+ years of experience in Security role Knowledge of common information technology management / compliance frameworks such as ISO/IEC 27001, SOC 2, SOX, ITIL, COBIT, and NIST. Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII) Protection and Payment Card Industry (PCI)/Data Security Standard An ability to think strategically and drive change A deep understanding of Security risks and mitigating solutions A diverse security background with knowledge in several areas including DNS, routing, authentication, VPN, proxy services and DDOS mitigation technologies Knowledge in Windows, UNIX and Linux operating systems Practices and methods of enterprise architecture and security architecture IT security architecture development and definition Web Security & Encryption Strong organizational skills Ability to work under time and resource pressure An ability and desire to communicate and work with a broad set of stakeholders A customer-focused, responsive, and transparent attitude Competent in understanding solution designs and