Cyber Security Consultant - AWS

Job Description

Recruiter: Daniel McCarthy

Career Grade: C

Internal Closing Date: 16/1/26

Why this job matters

The Cyber Security Consultancy Principal leads a range of information security, data protection, governance, risk and compliance activities including client assurance, policy compliance, vulnerability management, risk assessments and incident response.

What you’ll be doing

1. Leads the development and implementation of the Cyber Security strategy, developing and maintaining a current road map including new features and subservices required to meet commercial demand as well as changes to the security landscape, the sector and technologies.
2. Leads the deployment, integration and configuration of the most complex security solutions and enhancements to existing security solutions in accordance with standard best operating procedures.
3. Leads the execution of threat modeling and security assessments, determining security requirements and specifications, and developing security solutions to satisfy design requirements.
4. Leads the provision of information and cyber security advice and guidance to key stakeholders across the BT Group including multiple senior stakeholders.
5. Leads the creation of policy for the Cyber Security function relating to the compliance, validation and assessment of major information technology systems, developing and providing security and governance reviews.
6. Leads the design and implementation of information and cyber security controls and change initiatives across the BT Group.
7. Leads the reporting of the status of risk exposure and control maturity against the relevant policies and standards.
8. Operates as an SME in cyber security, providing expertise and analysis in the development of the Business Continuity Management Programme and Disaster Recovery Plan.
9. Ensures product compliance with applicable security standards, group policies and industry best practices.
10. Mentors and coaches experienced professionals to develop current and future team capabilities and ensure performance.
11. Leads the implementation of continuous improvement opportunities to improve cyber security processes.

Experience Required

• Leading complex security and assessments with measurable risk reduction outcomes.
• Implementing DevSecOps practices within modern engineering pipelines, including automated security testing and controls.
• Designing and governing enterprise‑scale security architectures across multi‑domain technology estates.
• Delivering secure end‑to‑end solution designs that balance security, operability, performance and business needs.
• Establishing security governance frameworks aligned to policy, risk, and compliance requirements in regulated environments.
• Managing complex security incidents, coordinating stakeholders, and driving lessons‑learned and systemic improvements.
• Working in agile delivery environments, translating security requirements into technical epics, guardrails and acceptance criteria.
• Hands‑on experience with AWS cloud security architectures, landing zones, guardrails and platform controls backed by certifications.
• Knowledge of data governance practices to ensure data quality, security, and compliance.
• Demonstrates a comprehensive understanding of ethical considerations related to artificial intelligence and possesses the capability to develop and implement fair and responsible AI solutions.
• Research skills to stay up-to-date with the latest trends and continue to learn new techniques.

The skills you’ll need

Compliance Monitoring and Controls TestingInformation Security StrategyApplication SecurityEnterprise Security ArchitectureStakeholder ManagementSecurity AssessmentSolution DesignVulnerability ManagementAgile MethodologiesCustomer Relationship ManagementDevSecOpsCyber ResilienceTechnical Security ArchitectureSecurity Evaluation and Functionality TestingDecision MakingGrowth MindsetInclusive LeadershipIncident ManagementZero Trust ArchitectureAccess ControlAI in SecuritySecurity of AI

Our leadership standards

Looking in:
Leading inclusively and Safely
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.

Looking out:
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.

Looking to the future:
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.

About us

BT Group was the world’s first telco and our heritage in the sector is unrivalled. As home to several of the UK’s most recognised and cherished brands – BT, EE, Openreach and Plusnet, we have always played a critical role in creating the future, and we have reached an inflection point in the transformation of our business.

Over the next two years, we will complete the UK’s largest and most successful digital infrastructure project – connecting more than 25 million premises to full fibre broadband. Together with our heavy investment in 5G, we play a central role in revolutionising how people connect with each other.

While we are through the most capital-intensive phase of our fibre investment, meaning we can reward our shareholders for their commitment and patience, we are absolutely focused on how we organise ourselves in the best way to serve our customers in the years to come. This includes radical simplification of systems, structures, and processes on a huge scale. Together with our application of AI and technology, we are on a path to creating the UK’s best telco, reimagining the customer experience and relationship with one of this country’s biggest infrastructure companies.

Change on the scale we will all experience in the coming years is unprecedented. BT Group is committed to being the driving force behind improving connectivity for millions and there has never been a more exciting time to join a company and leadership team with the skills, experience, creativity, and passion to take this company into a new era.

A FEW POINTS TO NOTE:

Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

We will also offer reasonable adjustments for the selection process if required, so please do not hesitate to inform us.

DON'T MEET EVERY SINGLE REQUIREMENT?

Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.