Job Description
* This is a leadership role that must provide a clear vision and multi-year strategy for the Network Security across RAN, Transport, Core and OSS domains in accordance with the business objectives, the network and IT operational requirements and the advances in technology across all technology domains.
* Ensures that the Network Security strategy is translated into a Network Security architecture that aligns with the short-term and long-term needs to operate the 3UK network including the IT domain in an efficient way. This means defining a Network Security architecture that enables the business to deliver its outcomes in a secure manner, building customer trust in a reliable network which matches the best, whilst ensuring compliance to regulatory requirements, company policy and standards with the necessary platforms and tools to monitor, troubleshoot and fix network security issues in an automated way that ultimately result in delivering the best possible customer journey.
* Maintains awareness of the latest industry trends in terms of cyber security, network and IT technologies and evaluates the needs to manage these new technologies from an operations perspective.
* Maintains as well close relationships with the rest of the strategy and architecture teams (RAN, Transport, Core, OSS), the IT architecture unit, the network design & delivery teams and Technical Services.
* Work closely with Information Security, Regulatory and Government Liaison functions to deliver to business needs.
* Works closely with commercial and business functions to deliver to business needs.
What you will be doing in the role.
* Develop and document the multi-year strategy plan and roadmap for Network Security across all network domains including use of public and private clouds.
* Translate the multi-year strategy into detailed high level architecture plans documented in a clear and comprehensive way. Ensure continuous improvement of the architecture plans and documentation as the strategy changes, the network evolves, cyber security best practices develop and updates to regulatory & compliance frameworks.
* Communicate the strategy and architecture to the different domains (RAN, Core, Transport, Infra, OSS and Technical Services) in a clear way and ensure that the respective deliveries align with the strategy and vice-versa use their feedback to rework the strategy. This requires a frequent and close engagement with the teams.
* Develop the CAPEX and OPEX models for the network security architecture and support and influence the annual network budgeting exercise.
* Assist in the investigation of network security issues when required and evaluate the implications on the architecture and strategy applying changes if necessary.
* Maintain full awareness of the new features from the vendors across all domains and evaluates their implications from and Transport perspective.
* Ensure that the latest industry trends are followed, evaluated and captured from an cyber security perspective as applied to network security.
* Follow and liaise with external partners for collaboration and explorations of new business opportunities that impact 3UK’s network security strategy.
* Provide leadership and guidance in tendering process and PoCs.
* Support and engage with Regulatory and Government Affairs as necessary to secure outcomes aligned to business goals.
* Work closely with the following strategy and architecture teams: OSS, Core, Transport, Cloud Infra, IT (BSS) and Technical Services.
* Support the annual budget planning exercise ensuring that not only the short-term but also the long-term.
Qualifications
Type of person we are looking for.
* Strong experience working in Cyber Security within a network environment.
* Strong experience in elaborating strategies and roadmaps and translating them into high level architecture designs.
* Must have experience of working with cyber security industry and government bodies.
* Must have expertise and experience in one or more of the following technical domains:
o Cloud/Hybrid security
o Infrastructure and data centre security
o Network security
o Application security
o Identity and access management
o Vulnerability Management
* Must be able to work at multiple levels within the organisation from technical delivery to senior management.
* Must be well versed in the application of security policies and standards, governance, compliance, risk management and technical assurance practices.
* Must be able to lead the design and review of secure system architectures using or developing patterns and principles, where necessary challenging to create precedents and set direction.
* Must have a strong knowledge of system architectures and be able to understand and articulate the impact of vulnerabilities on existing and future designs and systems, and how easy or difficult it will be to exploit these vulnerabilities.
* Should have experience of using common information security management frameworks, such as NIST, PCI, GDPR, ISO Series, OWASP the IT Infrastructure Library (ITIL), the ISF Standards of Good Practice (SoGP) and ISACA’s Control Objectives for Information and related Technology (COBIT) frameworks and TSA.
* Good knowledge of OSS, RAN, Core, Transmission/Transport, IP, cloud infrastructure and end-to-end services.
* Proven experience liaising with delivery and operations teams.
* Experience dealing with and managing Telco and non-Telco vendors (including Cloud Service providers). Strong skills in the development of technical requirements, evaluation of technical responses, definition of contractual requirements and negotiation. Experience defining and evaluating RFIs and RFQs.
* Experience developing financial budgets and prioritising.
* Experience in managing and leading teams.
Additional Information
What you'll receive in return…
* Salary range for this role start's at £82,400, the exact salary will differ by job and experience.
* A £7,200 annual car allowance.
* A performance based annual bonus & an additional 'flexible allowance' to spend on additional benefits, topping up your pension, or to be added to your salary
* Hybrid working between your home (2-3 days a week) and our Reading office (2-3 days a week).
* 28 days annual leave + 8 bank holidays + 3 personal days annually, which increases with length of service.
* Private Medical Insurance, Life Assurance and Income Protection.
* Free mobile phone package & unlimited sim-card.
* .... Plus lots more including wellbeing and learning & development benefits!
Our people make us who we are. We’re a diverse and inclusive bunch, and it’s important you can feel you belong here. We value everybody for who they are and what they bring to the table, supporting one another as we continue to deliver for our customers.
With that in mind, if you do not ‘tick every box’ in the job advert above, there are likely other valuable attributes and skills you have that would make you a great addition for the team. So, if you feel this role is for you, then please apply! We are committed to equality in employment and growing a diverse workforce. We embrace those of any race, gender identity, sexual orientation, age, religion, disability, marital status, family status or civil status and we want our teams to reflect this!
We are a Disability Confident Committed Employer. Need any reasonable adjustments? Let us know when you apply so we can support you throughout the interview process.
At Three we have a hybrid working arrangement in place as standard for office based employees, where employees work from a mix of office based location and working from their home in the UK to carry on their role.
Excluding retail, our core hours at Three are between 10:00 and 16:00, with operating hours between 08:00 & 18:30. This allows employees to have a start time between 08:00 and 10:00 and finish time between 16:00 and 18:30.