Network Mgt Security Specialist
Posting Date: 30 Oct 2024
Unit: Networks
Location: Snowhill, Birmingham, United Kingdom
Internal Closing Date: 19th August
About us
BT is part of BT Group, along with EE, Openreach, and Plusnet. Millions of people rely on us every day to help them live their lives, power their businesses, and keep their public services running. We connect friends to family, clients to colleagues, people to possibilities. We keep the wheels of business spinning, and the emergency services responding.
We value diversity and celebrate difference. ‘We embed diversity and inclusion into everything that we do. It’s fundamental to our purpose: we connect for good.’
We all stick to the same values: Personal, Simple, and Brilliant. From day one, you’ll get stuck in to tough challenges, pitch in with ideas, make things happen. But you won’t be alone: we’ll be there with help and support, learning and development. This is your chance to make a real difference to the world: to be part of the digital transformation of countless lives and businesses. Grab it.
About the role
This role is fundamental to maintaining the BT Network Management Systems Security posture. As a business, we need to be proactive in identifying security issues, highlight concerns and reduce risk. This works in tandem with our ability to react quickly and effectively when operations are threatened by issues outside of BT’s risk appetite.
Ensuring the security of BT’s complex architecture, applications and services in-line with the expectations of our customers is a prime objective of our business. Appraising the risk BT faces from the wider connected world this role assures the protection of BT Group’s brands and reputation, supports improvements to our Security controls and helps maintain BT’s critical business operations.
What you'll be doing
* Document and implement an appropriate user Access Control Policy on the centralised authentication system for 21CN (RADIUS and TACACS AAA). This includes liaising with individual platform teams to understand their access requirements, and vendors, to produce an appropriate access design for each system. You will also be carrying out early integration testing of authentication functionality, and working with the SASM/CAMS design and support teams to help incorporate the resultant system access design into formal SASM/CAMS support.
* Document and implement appropriate Citrix client access for users as part of each system’s Access Control Policy design.
* As part of a team, provide consultancy for and implement via Firewalls all interconnect relating to 21CN hosted systems, in both the model and production 21CN environments. This includes evaluating proposed interconnect against best practice, giving guidance to platform teams, including domain build and routing guidance, and clarifying where Telecom Security Act requirements may impact their system design.
* Provide diagnostic support and general consultancy for any aspect of system interconnect, user access or authentication relating to 21CN hosted platforms, both model and production. This includes checking/analysing firewall rules and firewall log data, plus user authentication policy rules and logs.
* Accountable for 21CN DCN Network security including the control and management of the 200+ network management systems now hosted/connected to 21CN DCN.
* Accountable for the auditing and correction of 21CN user access provision.
* Strong influence and collaboration with CIS and Technology Identity provisioning team, on the architecture, design, and delivery of the User access provisioning systems (CAMS & MUI).
What you'll bring
Must Have:
* A very good understanding of BT Networks and the application of security controls within these environments. Ideally a good understanding of the 21CN DCN Network.
* Experience of connecting different technologies, networks, systems and applications both internally & externally.
* Access control Policy knowledge, design and understanding of roles and responsibilities in a technical role.
* Understanding of complete End to End assessment of system security.
* Technical background in large scale network & IT environments.
* The ability to communicate technical requirements either verbally or written to a diverse group of customers with differing technical skill levels.
* Experience in technical decision making.
Nice to have:
* Membership of a pertinent Security/technology professional body: To hold an external IT networks or security qualification (e.g. CISSP, CISM M.IISP, CRISC).
* Demonstrable analytical skills to ensure technical risks are fully understood and mitigation solutions can be correctly identified and implemented at a system and local level as required.
* Efficient problem solver in enterprise environment.
Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.
Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.
#J-18808-Ljbffr