A Secure by Design process team acts as the interface between the technical disciplines and the business to carry out technically orientated security assessments, setting security requirements for products and services, and assessing compliance against agreed security requirements.
This professional has an important advisory role across the business and is required to provide security design guidance and general consultancy, acts as coach to agile projects and program teams to ensure that future Vodafone infrastructures and products are secure.
Provide requirements for secure by design development to global products, services, and infrastructure for Enterprise customers, consumers, or being used internally by Vodafone internally, that allow to meet an appropriate cybersecurity level, and demonstrate that all potential risks are being mitigated to an acceptable level in order to assure the confidentiality, integrity and availability of systems and data.
Provide advice and guidance to internal and external stakeholders on security related matters.
Work closely with the business and technology architecture teams, design and operations teams, and with the other security teams.
Manage external resources of the Security by Design team
Coach Security Champions in the agile teams.
5+ years working in Cyber Security, in Security By Design, Architect or Consultancy roles
High level of English both written and spoken.
One or more of the following certifications : CISSP, CISM, CISA, CRISC, ISO 27001 Lead Auditor, GIAC or equivalent
Experience working in multinational virtual teams.
Experience with security in agile & DevSecOps valuable.
Telecommunication, networks and penetration testing experience is an advantage.
Good knowledge / experience with security on cloud environment and web services valuable.
Good understanding of risks and countermeasures, and ability to assess and communicate alternative solutions from the perspective of risks.
Ability to communicate with both technical and non-technical stakeholders, capturing business requirements and communicating risks and achievements.
Ability to give clear guidance for implementing security controls in complex environments.
At Vodafone we are concerned about being a company committed to diversity as an engine of change. We are proud to offer equal opportunities regardless of race, nationality, cultural origin, sex, age, marital status, sexual orientation, gender identity, disability and religious or political beliefs.