Senior Manager, Cyber Security Operational Risk,

2 weeks ago

London, Greater London, United Kingdom BT Security Full time
Why this job matters

The role of the Cyber Security Operational Risk Senior Manager is to lead on the identification, assessment and reporting of Cyber Security Risk at group level. The role draws on expertise from across BT Group to provide professional risk management advice and analysis of specific operational risks, facilitating risk definition and assessment, in alignment with BT's enterprise risk framework.

This role is hybrid and requires 3 days in the office from the following locations: London, Birmingham, Bristol, Belfast, Manchester and Glasgow

What you'll be doing
  1. Produces group-wide Cyber Risk Reports for the BT Group Exec Committee, Board audit and risk committee and the BT Board.
  2. Provides strategic direction and leadership for operational risk management across all cyber security risks to BT, working with BT's Enterprise Risk Management structures.
  3. Defines, develops and oversees the risk policy, governance framework, standards and procedures for the identification, assessment, management and control of BT's cyber security risks.
  4. Leads the development of consistent security risk analysis, assessment and risk appetite definition pan-BT.
  5. Champions effective security risk management practices and builds risk management capabilities across BT.
  6. Ensures that BT Group level risk reporting (to Board Audit and Risk Committee, Group Risk etc.) on security matters follows risk management good practice.
  7. Develops, maintains and champions the consistent and effective collation, storage and distribution of risk data to support risk-based decision making and risk improvement investments in Technology and Group levels.
  8. Provides professional input and insights on security risk transfer through cyber and other insurance policies.
  9. Drives management focus on active control and improvement of risks within agreed risk appetite boundaries, and to the best economic advantage of the company.
  10. Presents and explains BT's approach to operational and security risk management to corporate customers, regulators, analysts, auditors and government to enhance BT's reputation, and to support commercial initiatives.
  11. Ensures all security investment plans are underpinned by effective security risk management/risk articulation, and risk benefits are evaluated.
  12. Develops strategic reporting tools to capture and report expert opinions on cyber risk for use by BT and corporate customers.
Skills Required for the Role
  1. Story-telling with data: strong skills in building the case for change, drawing on data and analytical techniques where appropriate, and communicating this to business audiences.
  2. Business acumen: Knowledgeable in business strategy and the drivers of organisational performance, including people drivers of performance and financial literacy (e.g. business KPIs, business cases).
  3. Risk Management: Identifying, assessing, and prioritising risks followed by coordinated efforts to minimise, monitor, and control the probability or impact of cyber events.
  4. Risk Analysis: Evaluating the potential risks that may be involved in a potential cyber event.
  5. Business Agility: Ability to adapt quickly and efficiently to changes in the cyber threat landscape.
  6. Business Partnering & Consulting: Working closely with other stakeholders (internal & external) to provide expert advice and support.
  7. Risk Strategy: Developing a plan to manage cyber risks effectively, which need to align with the overall BT Group business strategy.
  8. Business Insights: Information and understanding gained from analysing business data.
  9. Scenario Modelling: Creating and analysing different hypothetical cyber events to understand their potential impact on the business.
  10. Negotiation: Discussing and reaching agreements between parties.
  11. Storytelling: Using narratives to communicate ideas, values, and strategies effectively.
  12. Horizon Scanning: Identifying and analysing emerging trends, risks, and opportunities that could impact the business in the future.
  13. Regulatory Compliance: Understanding potential regulatory compliance implications based on cyber risk.
Ideally qualifications in the following
  1. Certified in Risk and Information Systems Control (CRISC)
  2. Certified Information Systems Security Professional (CISSP)
  3. Certified Information Security Manager (CISM)
Experience Required for the Role

Mandatory
  1. 3+ years experience working in an enterprise risk role.
  2. Experience in cyber risk.
Preferred
  1. Experience managing cyber risk in Telecoms sector.
  2. Line management experience.
Benefits
  1. On target 15% on target bonus.
  2. Health Care.
  3. Car Allowance.
  4. BT Pension scheme, minimum 5% Employee contribution, BT contribution 10%.
  5. From January 2025, equal family leave: receive 18 weeks at full pay, 8 weeks at half pay and 26 weeks at the statutory rate.
  6. Enhanced women's health support: including help with menopause symptoms, cancer screenings, period care and more.
  7. 25 days annual leave (not including bank holidays), increasing with service.
  8. 24/7 private virtual GP appointments for UK colleagues.
  9. 2 weeks carer's leave.
  10. World-class training and development opportunities.
  11. Option to join BT Shares Saving schemes.
About us

BT Group was the world's first telco and our heritage in the sector is unrivalled. As home to several of the UK's most recognised and cherished brands - BT, EE, Openreach and Plusnet, we have always played a critical role in creating the future, and we have reached an inflection point in the transformation of our business.

Over the next two years, we will complete the UK's largest and most successful digital infrastructure project - connecting more than 25 million premises to full fibre broadband. Together with our heavy investment in 5G, we play a central role in revolutionising how people connect with each other.

While we are through the most capital-intensive phase of our fibre investment, meaning we can reward our shareholders for their commitment and patience, we are absolutely focused on how we organise ourselves in the best way to serve our customers in the years to come. This includes radical simplification of systems, structures, and processes on a huge scale. Together with our application of AI and technology, we are on a path to creating the UK's best telco, reimagining the customer experience and relationship with one of this country's biggest infrastructure companies.

Change on the scale we will all experience in the coming years is unprecedented. BT Group is committed to being the driving force behind improving connectivity for millions and there has never been a more exciting time to join a company and leadership team with the skills, experience, creativity, and passion to take this company into a new era.

A FEW POINTS TO NOTE:

Although these roles are listed as full-time, if you're a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

We will also offer reasonable adjustments for the selection process if required, so please do not hesitate to inform us.

DON'T MEET EVERY SINGLE REQUIREMENT?

Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.
#J-18808-Ljbffr

  • Senior Cyber Security Analyst – Incident Management

    1 week ago

    London, Greater London, United Kingdom Cyber UK Full time

    Cyber Operations purpose is to support safe care and build public trust by building NHS England's cyber resilience and enabling the wider health system to be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas:Cyber Security...

  • Digital Security – Senior Manager, Security Risk

    3 days ago

    London, Greater London, United Kingdom Cyber News Full time

    AVEVA is creating software trusted by over 90% of leading industrial companies.Position: Digital Security – Senior Manager, Security Risk & AssurancePrevious experience: Preferable 7+ years relevant work experience in security governance, risk, and compliance with at least 3 years of working as a senior expert or manager of a significant department....

  • Cyber Security Consultant

    2 weeks ago

    London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time

    Cyber Security Consultant – A JOB IN THE NORTH OF ENGLANDSalary - £30k - £50kAnd Bonus, Healthcare, 28 days off + bday, training, professional memberships...............Within 1.5hrs of Leeds - Hybrid Role = Home / office and site as required.This phase of key hires is based on unwavering demand and a consistently solid pipeline of new and repeat...

  • Senior Security Engineer

    2 weeks ago

    London, Greater London, United Kingdom Iceberg Cyber Security Full time

    Iceberg Cyber Security provided pay rangeThis range is provided by Iceberg Cyber Security. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.Base pay rangeSalary: Talent-led, not salary-led, but as a guide, £100k-£150k base + bonus + excellent benefits.Job OverviewThis is a hands-on engineering role in a...

  • Senior Security Engineer

    4 days ago

    London, Greater London, United Kingdom Iceberg Cyber Security Full time

    Iceberg Cyber Security provided pay rangeThis range is provided by Iceberg Cyber Security. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.Base pay rangeSalary: Talent-led, not salary-led, but as a guide, £100k-£150k base + bonus + excellent benefits.Job OverviewThis is a hands-on engineering role in a...

  • OT Cyber Security Assistant Manager

    1 week ago

    London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time

    OT Cyber Security Assistant Manager - Operational Technology Salary £50k - £62500k - Open to UK residents with the right to work in the UKHybrid – Site – Office – HomeYou'll be an OT Cyber Security Consultant in this up until now niche sector of the cyber security threat landscape. In what should be considered a career-defining move, you'll be (or...

  • Cyber Security Governance Analyst

    1 week ago

    London, Greater London, United Kingdom Cyber UK Full time

    Role Title: Cyber Governance AnalystLocation: London (Farringdon) OR Sheffield (Pond Street) – Hybrid, 3 days in officeWhat will you do?As a Cyber Governance Analyst at Royal Mail Group, you will provide guidance to support the delivery of projects and workstreams in support of our 5-year Cyber strategy and transformation programme and ensure that Cyber...

  • Cyber Security Governance Analyst

    1 week ago

    London, Greater London, United Kingdom Cyber UK Full time

    Role Title: Cyber Governance AnalystLocation: London (Farringdon) OR Sheffield (Pond Street) – Hybrid, 3 days in officeWhat will you do?As a Cyber Governance Analyst at Royal Mail Group, you will provide guidance to support the delivery of projects and workstreams in support of our 5-year Cyber strategy and transformation programme and ensure that Cyber...

  • Head of Cyber Security

    3 days ago

    London, Greater London, United Kingdom NDK Cyber Full time

    Get AI-powered advice on this job and more exclusive features.This range is provided by NDK Cyber. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.Base pay rangeDirect message the job poster from NDK CyberOperations Manager at NDK Cyber & NDKtech.ai | Helping high-growth businesses scale globally with AI...

  • Head of Cyber Security

    2 days ago

    London, Greater London, United Kingdom NDK Cyber Full time

    Get AI-powered advice on this job and more exclusive features.This range is provided by NDK Cyber. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.Base pay rangeDirect message the job poster from NDK CyberOperations Manager at NDK Cyber & NDKtech.ai | Helping high-growth businesses scale globally with AI...

  • Cyber Security Officer @ McDonald's Corporation

    4 days ago

    London, Greater London, United Kingdom Cyber Crime Full time

    About UsMcDonald's has run its business in the UK since 1974 and currently operates over 1500 restaurants across the UK and Ireland, serving almost four million customers each day. McDonald's is one of the UK's largest private sector employers, employing over 170,000 people.Hybrid WorkingThis role is based in our East Finchley office working 3 days in the...

  • Senior Manager, Cyber Security Operational Risk, BT Security

    2 weeks ago

    London, Greater London, United Kingdom TN United Kingdom Full time

    Senior Manager, Cyber Security Operational Risk, BT Security, LondonClient:BT GroupLocation:London, United KingdomJob Category:OtherEU work permit required:YesJob Reference:e947eaeda137Job Views:6Posted:04.04.2025Expiry Date:19.05.2025Job Description:What you'll be doingProduces group-wide Cyber Risk Reports for the BT Group Exec Committee, Board audit and...

  • Senior Cyber Consultant

    1 week ago

    London, Greater London, United Kingdom Cyber News Full time

    Senior Cyber Security ConsultantBMT is dedicated to tackling the most crucial challenges of our era, fostering an environment where individuals with exceptional technical expertise provide meaningful, practical solutions. Our worldwide reputation for innovative thinking and technical excellence is built by every individual within our company. How we behave...

  • Senior Manager

    2 weeks ago

    London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time

    Senior Manager (Cyber Security) Salary - £80k - £100kAnd Bonus, Healthcare, 28 days off + bday, training, professional memberships...............Within 1.5hrs of Leeds - Hybrid Role = Home / office and site as required.This phase of key hires is based on unwavering demand and a consistently solid pipeline of new and repeat work.This is your chance to lead...

  • Information Security Management System Manager

    1 week ago

    London, Greater London, United Kingdom Cyber Crime Full time

    Information Security Management System Manager (London)Insight Investment is looking for a Information Security Management System (ISMS) Manager to join the Cyber Security team in London. Working within the CISO team as the designated ISMS Manager and acting as an information security subject matter expert, you will have a broad range of expertise across...

  • Senior Cyber Security Manager

    2 weeks ago

    London, Greater London, United Kingdom 83zero Limited Full time

    Senior Cyber Security ManagerCompany Overview83zero is working with a leading IT consultancy that partners with global organisations to deliver IT operations along with business advancements through the adoption of new and innovative technologies.Our client partners with a number of international private businesses in shipping, real estate, energy, banking,...

  • Senior Cyber Security Manager

    4 days ago

    London, Greater London, United Kingdom 83zero Limited Full time

    Senior Cyber Security ManagerCompany Overview83zero is working with a leading IT consultancy that partners with global organisations to deliver IT operations along with business advancements through the adoption of new and innovative technologies.Our client partners with a number of international private businesses in shipping, real estate, energy, banking,...

  • Senior Cyber Security

    1 day ago

    London, Greater London, United Kingdom UK Power Networks Full time

    80422 - Senior Cyber Security (GRC) AnalystThis Senior Cyber Security (GRC) Analyst will report to the Cyber Security Governance, Risk & Compliance Manager and will work within the Information Systems directorate based in either our London or Crawley office. You will be a permanent employee.You will attract a salary of up to £75,000.00 and a bonus of 7.5%....

  • Senior Manager, Cyber Security Operational Risk, BT Security

    2 weeks ago

    London, Greater London, United Kingdom BT Group Full time

    What you'll be doing Produces group-wide Cyber Risk Reports for the BT Group Exec Committee, Board audit and risk comittiee and the BT Board Provides strategic direction and leadership for operational risk management across all cyber security risks to BT, working with BT's Enterprise Risk Management structures Defines, develop and oversees the risk...

  • Product Cyber Resilience Manager

    3 weeks ago

    London, Greater London, United Kingdom Cyber UK Full time

    Job Description:The opportunity: Have an Engineering/Science background and an interest in cyber security? Are you a security architect or security risk advisor, but looking for a challenge beyond the same old Enterprise IT problems? Perhaps you already work in a Product Security role? For a challenge that will yield the reward of guiding product...