Job description
Contract Security Specialist
2. Collaborates with internal departments and organisations to implement practices that meet the Group's defined policies and standards for information risk management.
3. Delivers the rigorous assessment of internal compliance, informing and advising on data protection obligations, providing advice regarding Data Protection Impact Assessments, acting as a contact point for data subjects.
4. Contributes to the ongoing development and management of frameworks pertaining to Information Governance (IG), Cyber Security and Data Protection.
5. Ensures the adherence to policies and procedures to support requirements to enable the group to meet its legal, contractual and statutory obligations while reducing the cyber security and information risk exposure.
6. Executes activities in support of cyber security owned programs and related teams including security policies, vendor risk and compliance management, regulatory audits and compliance management, metrics, risk and performance indicators, executive and board reporting, security awareness and training, security integration and assessment of M&A and related ventures.
7. Supports lines of business to perform security assessments and ensures timely execution of projects and programs while mitigating any security risks.
8. Executes the evaluation of cyber security controls to ensure effectiveness, compliance and adherence to key controls and policies and drive its remediation efforts.
9. Implements analysis of key GRC (governance, risk and compliance) risk information, including the cyber risk register, policy exceptions, audit findings and data security reviews and the preparation of reporting and dashboards as necessary to satisfy the Group's cyber reporting requirements at both a management and executive level.
10. Monitors cyber compliance portals and acts as the liaison with communication groups driving awareness and adoption of cyber policies and standards across the BT Group.
11. Leads liaison for cyber audits and maturity assessments assisting with reviews and providing artefacts as needed.
12. Mentors other Cyber Security Governance & Assurance professionals, helping to improve the team's abilities by acting as a technical resource.
13. Champions, continuously develops and shares with team knowledge on emerging trends and changes in Cyber Security Governance & Assurance.
Leading inclusively
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.