Functional Lead Sec Testing

Role title: Functional Lead IT Hardening & Assurance
- Function: Technology
- Band: Staff
- Department: Group Data Centre | Security Compliance
- Reports to: Principal Manager Core IT Protection
- Location:UK/Spain/ Germany/Italy

**Role purpose**:

- This role is responsible for ensuring, controlling, and improving the coverage and compliance of one or more security products and services within the Security & Compliance organization. The goal of the organization is to reduce the risk and mitigate the impact of internal and external cyber-attacks by keeping Vodafone’s infrastructure and services compliant with Global Cyber Security Policies, thereby protecting Vodafone customers, data, services, and brand. The Functional Leads within Security & Compliance work closely together and align on security-related topics and initiatives.
- The Functional Lead IT Hardening & Assurance is accountable for the governance of Security Hardening activities, Endpoint Protection, and the QA/Testing of all security requirements as part of the QA process, including full lifecycle testing during the operational lifecycle. This role ensures the “secure by design” principle throughout the entire system lifecycle. Close interaction with Global Cyber Security teams and supporting Group functions like Change Management, and alignment with key stakeholders inside Local Market/Group Functions and newly acquired customers as per the Commercialized Model direction, is mandatory to successfully deliver on the role.

**What you will do**

**Governance and Process Management**
- Ensure robust governance over infrastructure hardening processes, including onboarding and maintenance of hardening processes.
- Error handling, remediation, and continuous improvement.
- Emphasis on automation and auto-remediation to enhance efficiency and reliability.

**Cross-Functional Collaboration**
- Drive alignment and collaboration with VOIS “Infrastructure Management” teams.
- Service Line “Security & Testing.”
- Group Cyber Security teams to ensure strategic alignment and compliance.
- Work closely with technical/E2E teams and LM/GF teams to monitor and track progress on hardening remediation actions, including onboarding, remediation, and error handling.

**Reporting and Continuous Improvement**
- Ensure effective reporting and review mechanisms for IT Security Services processes and procedures.
- Facilitate continuous improvement initiatives to refine hardening and endpoint protection strategies and processes.

**Coverage of Hardening and Endpoint Solutions**
- Ensure full coverage of Hardening and Endpoint Protection solutions for VCI-managed components, both on-premises and in the cloud.
- Maintain close collaboration with Group Cyber Security teams to align on the hardening and endpoint strategy, processes, and tools.

**Single Point of Contact (SPOC) for Security Assurance**
- Act as the focal point for “Security Assurance,” including Infrastructure hardening and endpoint protection within VCI.
- Ensuring adherence to established policies, standards, and best practices.

**Functional Management & Testing Oversight**
- Lead functional management and collaboration with international teams involved in QA processes related to security.
- Security-specific testing, including hardening and endpoint protection

**Who you are**:
**Experienced Professional**:

- You bring 5-8 years of proven expertise in IT Operations, IT Service Management, or Project Management, with a strong foundation in delivering results.
- Exceptional Communicator: You excel in written and verbal communication in English, enabling clear articulation of complex ideas and effective collaboration with diverse teams.
- Strategic Problem Solver: Your solid, data-driven approach to problem-solving helps you address challenges efficiently and make informed decisions.
- Effective Collaborator: You have demonstrated skills in stakeholder management, risk-aware work organization, and personal/team time management, ensuring seamless execution of tasks.
- Tech-Savvy: You possess strong knowledge of Datacenter and Cloud IT Infrastructure technologies, staying abreast of evolving trends and practices.

**Your Qualifications**
- Educational Background: Bachelor’s or Master’s degree in IT Engineering, Business Management, or equivalent proven working experience.
- Security Expertise: A strong general background in IT Service and Security Management with an understanding of key standards and frameworks such as SOX, ISO 9000/20000/27000, ITIL, and Agile methodologies.
- Global Experience: Proficient in coordinating and managing functional work across international teams, fostering collaboration and achieving objectives.

**What's in it for you**:

- Discretionary yearly bonus: 10%
- Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
- Charity days: 5 days/year
- Maternity leave: 52 weeks out of which 39 weeks are fully paid + 13 weeks half pay and 6 months - wo