Cyber Security Consultant - AWS

Overview

The Cyber Security Consultancy Principal leads a range of information security, data protection, governance, risk and compliance activities including client assurance, policy compliance, vulnerability management, risk assessments and incident response.

• Leads the development and implementation of the Cyber Security strategy, developing and maintaining a current road map including new features and subservices required to meet commercial demand as well as changes to the security landscape, the sector and technologies.
• Leads the deployment, integration and configuration of the most complex security solutions and enhancements to existing security solutions in accordance with standard best operating procedures.
• Leads the execution of threat modeling and security assessments, determining security requirements and specifications, and developing security solutions to satisfy design requirements.
• Leads the provision of information and cyber security advice and guidance to key stakeholders across the BT Group including multiple senior stakeholders.
• Leads the creation of policy for the Cyber Security function relating to the compliance, validation and assessment of major information technology systems, developing and providing security and governance reviews.
• Leads the design and implementation of information and cyber security controls and change initiatives across the BT Group.
• Leads the reporting of the status of risk exposure and control maturity against the relevant policies and standards.
• Operates as an SME in cyber security, providing expertise and analysis in the development of the Business Continuity Management Programme and Disaster Recovery Plan.
• Ensures product compliance with applicable security standards, group policies and industry best practices.
• Mentors and coaches experienced professionals to develop current and future team capabilities and ensure performance.
• Leads the implementation of continuous improvement opportunities to improve cyber security processes.

Responsibilities

• Leading complex security and assessments with measurable risk reduction outcomes.
• Implementing DevSecOps practices within modern engineering pipelines, including automated security testing and controls.
• Designing and governing enterprise-scale security architectures across multi-domain technology estates.
• Delivering secure end-to-end solution designs that balance security, operability, performance and business needs.
• Establishing security governance frameworks aligned to policy, risk, and compliance requirements in regulated environments.
• Managing complex security incidents, coordinating stakeholders, and driving lessons-learned and systemic improvements.
• Working in agile delivery environments, translating security requirements into technical epics, guardrails and acceptance criteria.
• Hands-on experience with AWS cloud security architectures, landing zones, guardrails and platform controls backed by certifications.
• Knowledge of data governance practices to ensure data quality, security, and compliance.
• Demonstrates a comprehensive understanding of ethical considerations related to artificial intelligence and possesses the capability to develop and implement fair and responsible AI solutions.
• Research skills to stay up-to-date with the latest trends and continue to learn new techniques.

Skills & Capabilities

• Compliance Monitoring and Controls Testing
• Information Security Strategy
• Application Security
• Enterprise Security Architecture
• Stakeholder Management
• Security Assessment
• Solution Design
• Vulnerability Management
• Agile Methodologies
• Customer Relationship Management
• DevSecOps
• Cyber Resilience
• Technical Security Architecture
• Security Evaluation and Functionality Testing
• Decision Making
• Growth Mindset
• Inclusive Leadership
• Incident Management
• Zero Trust Architecture
• Access Control

About BT Group

BT Group was the world's first telco and our heritage in the sector is unrivalled. As home to several of the UK's most recognised and cherished brands - BT, EE, Openreach and Plusnet, we have always played a critical role in creating the future, and we have reached an inflection point in the transformation of our business. Over the next two years, we will complete the UK's largest and most successful digital infrastructure project - connecting more than 25 million premises to full fibre broadband. Together with our heavy investment in 5G, we play a central role in revolutionising how people connect with each other. While we are through the most capital-intensive phase of our fibre investment, meaning we can reward our shareholders for their commitment and patience, we are absolutely focused on how we organise ourselves in the best way to serve our customers in the years to come. This includes radical simplification of systems, structures, and processes on a huge scale. Together with our application of AI and technology, we are on a path to creating the UK's best telco, reimagining the customer experience and relationship with one of this country's biggest infrastructure companies. Change on the scale we will all experience in the coming years is unprecedented. BT Group is committed to being the driving force behind improving connectivity for millions and there has never been a more exciting time to join a company and leadership team with the skills, experience, creativity, and passion to take this company into a new era.

Looking in: Leading inclusively and Safely I inspire and build trust through self-awareness, honesty and integrity. Owning outcomes I take the right decisions that benefit the broader organisation. Looking out: Delivering for the customer I execute brilliantly on clear priorities that add value to our customers and the wider business. Commercially savvy I demonstrate strong commercial focus, bringing an external perspective to decision-making. Looking to the future: Growth mindset I experiment and identify opportunities for growth for both myself and the organisation. Building for the future I build diverse future-ready teams where all individuals can be at their best.