This is an excellent opportunity to join the Digital Technical Architecture team – owning the security assurance for all the digital systems and overseeing & remediating identified security risks and vulnerabilities. You’ll be responsible for leading the deployment of the necessary security measures to achieve this goal.

What will you be doing? 

· Define a roadmap for the deployment of security measure improvements that deliver clear business benefit, setting clear direction for next 2 years. The objective is to leverage planned technical upgrades, and system rationalisation as an opportunity to deliver continuous security improvements across the Digital Domain.
· Establish yourself as the Champion of Security by Design within Digital Engineering, working collaboratively with the Cyber Security team, Technical & Solution Architects and Developers, supporting planned releases and major incidents, and providing guidance on security aspects.
· Define a clear and simple set security assurance principles for all solution designs and Digital Engineering systems. Establish the necessary review and sign-off processes to ensure that these principles are followed, and all digital deliverables are security compliant (using automation where possible).
· Challenge upstream requirements, as well as design and development activities that deviate from VF security guidelines, or the security assurance principles you’ve defined.
· Provide support for security breaches by working with the team’s that own impacted services to assess the causes and identify remediations, and prepare reports to be shared with relevant colleagues, managers, and executives.

Who are we looking for?  

· Detailed understanding of the OWASP top 10, and extensive demonstrable experience applying common patterns to protect against these vulnerabilities.
· Extensive demonstrable secure system design experience (for application, cloud infrastructure & networking layers).
· Knowledge and experience of working with web, mobile & RESTful API microservices application layers.
· Knowledge and experience of working with systems and solutions deployed in a cloud environment, ideally AWS.
· A working knowledge of modern authentication (e.g. OpenID Connect, SAML 2 etc.) & authorisation standards (e.g. Oauth 2, API keys etc.).
· A working knowledge of Agile delivery methodologies such as LEAN, Scrum & Kanban.
· Experience working in a large corporate environment.

 
What’s in it for you?

An excellent remuneration and bonus package with 28 days holiday entitlement, in addition to bank holidays and paid leave for charity projects. We offer an extensive and flexible benefits package that can be tailored to suit you and your family. We’re proud to provide a Reconnect programme with flexibility for individuals returning to work after a career break. From our market-leading parental leave policies through to employee discounts, retail vouchers, pension plan and share schemes we are committed to supporting you throughout your career with Vodafone.
 

Together we can