top 3 scores:
Autonomy
Hours flexibility
Work-life balance
Job Description
Security isn’t always the first thing that comes to mind when you think of BT, but when it comes to keeping everyone safely connected, We Are The Protectors. We deal with thousands of cyber-attacks every day, so that millions of people can safely go about their daily lives and run their businesses. We deliver vital work at scale, with real breadth and impact. We connect for good.
This is an opportunity to play your part and protect our company, our customers and our communities from cyberattack. Be part of a dedicated team and get ready to be challenged every day to make the most of your skills and experience. You’ll learn from those around you, and from outstanding training and development resources to become even better at what you do. With the best technology at your fingertips, you'll be part of a friendly and flexible working environment where your contribution is always valued.
Purpose of the Role
The Cyber Security Operations team’s goal is to detect, analyse, and respond to cybersecurity incidents using a combination of cutting edge technology and a strong set of processes. Cyber Security Operations staff work across the organisation, typically with incident response teams to ensure security issues are addressed quickly upon discovery.
As a manager of a Cyber Security Operations team you will ensure the Cyber Operations Centre operates effectively and service is maintained, 24x7 for our global and internal customers. You will be responsible for driving operational performance against defined SLAs and ensuring knowledge management within the SOC is maintained
Your Accountabilities
Lead the shift resources within the CySOC, ensuring operational workload is allocated and SLA’s are met
When required, participate in STAG, Triage and PIR calls to direct workload, manage risk and act as an escalation for CySOC tasks
Ensuring the analytical approach applied by all Security Analysts is thorough, considered and comprehensive and conduct regular case reviews
Customer engagement
Ensure knowledge management within the SOC is maintained and lived as part of the culture.
Maintain compliance with relevant security requirements based in BT Policies, CySOC Policies and ISO27001.
Deliver and verify plans for monitoring, maintaining and improving the integrity of security processes and systems.
Responsible for executing against the strategy of Global Commercial Cyber Operations to facilitate successful growth.
Responsible for contributing to the effective management of the global Commercial Cyber Operations cost base.
Identify automation opportunities and contribute to operational efficiency.
Key Skills
Mandatory 8 Years experience in Information Security
Knowledge of various security methodologies and processes and can apply these to incidents investigations and management.
Ability to consistently deliver to deadlines while prioritising competing demands for time, without sacrificing quality.
Good understanding of ITIL processes, including Change Management, Incident Management and Problem Management.
Customer-facing, with good report-writing skills and strong communication skills at all levels
Knowledge of at least one security methodologies as MITRE ATT&CK Framework.
Excellent management skills with the ability to build high performing, well motivated teams.
Experienced person with proven stakeholder management skills.
Should have worked on any SIEM like Qradar, ArcSight, Splunk, Securonix, etc.
Should have experience on any SOAR like Phantom, Azure Sentinel, etc.
Should have also worked on EDR tools like CrowdStrike, DarkTrace, Defender,etc.
Excellent management skills with the ability to build high performing, well-motivated teams.Knowledge of various security methodologies and processes and can apply these to incidents investigations and management
Customer-facing, with good report-writing skills and strong communication skills at all levels
Ability to consistently deliver to deadlines while prioritising competing demands for time, without sacrificing quality
Good understanding of ITIL processes, including Change Management, Incident Management and Problem Management
Willingness to share information, improve documentation, and train other analysts
Knowledge of at least one security methodologies as MITRE ATT&CK Framework.
Excellent management skills with the ability to build high performing, well motivated teams
Experienced person with proven stakeholder management skills.
Should have worked on any SIEM like Qradar, ArcSight, Splunk, Securonix, etc.
Should have experience on any SOAR like Phantom, Azure Sentinel, etc.
Should have also worked on EDR tools like CrowdStrike, DarkTrace, Defender,etc.
Security is one of the fastest growing parts of our global organisation. We are protecting our networks from more than 6,500 cyber attacks each day, investing over £40m in research each year - and in employing nearly 3,000 people, we’re also the largest private cyber employer in the UK. With incredible opportunities to learn, develop and grow your skills, we’ll invest in you, nurture your potential and shape your future – whatever your background or experience.
In today’s world, safe and secure digital connections have never been more vital. You’ll be joining a global company operating at the forefront of the information age: BT employs 90,000 people in 180 countries. With huge scale, we’re capable of achieving great things, striving to be personal, simple, and brilliant for our customers whilst creating an inclusive working environment where people from all backgrounds can succeed. Play your part. Make a difference. We are the Protectors.
A FEW POINTS TO NOTE:
Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.
DON'T MEET EVERY SINGLE REQUIREMENT?
Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.
Security isn’t always the first thing that comes to mind when you think of BT, but when it comes to keeping everyone safely connected, We Are The Protectors. We deal with thousands of cyber-attacks every day, so that millions of people can safely go about their daily lives and run their businesses. We deliver vital work at scale, with real breadth and impact. We connect for good.
This is an opportunity to play your part and protect our company, our customers and our communities from cyberattack. Be part of a dedicated team and get ready to be challenged every day to make the most of your skills and experience. You’ll learn from those around you, and from outstanding training and development resources to become even better at what you do. With the best technology at your fingertips, you'll be part of a friendly and flexible working environment where your contribution is always valued.
Purpose of the Role
The Cyber Security Operations team’s goal is to detect, analyse, and respond to cybersecurity incidents using a combination of cutting edge technology and a strong set of processes. Cyber Security Operations staff work across the organisation, typically with incident response teams to ensure security issues are addressed quickly upon discovery.
As a manager of a Cyber Security Operations team you will ensure the Cyber Operations Centre operates effectively and service is maintained, 24x7 for our global and internal customers. You will be responsible for driving operational performance against defined SLAs and ensuring knowledge management within the SOC is maintained
Your Accountabilities
Lead the shift resources within the CySOC, ensuring operational workload is allocated and SLA’s are met
When required, participate in STAG, Triage and PIR calls to direct workload, manage risk and act as an escalation for CySOC tasks
Ensuring the analytical approach applied by all Security Analysts is thorough, considered and comprehensive and conduct regular case reviews
Customer engagement
Ensure knowledge management within the SOC is maintained and lived as part of the culture.
Maintain compliance with relevant security requirements based in BT Policies, CySOC Policies and ISO27001.
Deliver and verify plans for monitoring, maintaining and improving the integrity of security processes and systems.
Responsible for executing against the strategy of Global Commercial Cyber Operations to facilitate successful growth.
Responsible for contributing to the effective management of the global Commercial Cyber Operations cost base.
Identify automation opportunities and contribute to operational efficiency.
Key Skills
Mandatory 8 Years experience in Information Security
Knowledge of various security methodologies and processes and can apply these to incidents investigations and management.
Ability to consistently deliver to deadlines while prioritising competing demands for time, without sacrificing quality.
Good understanding of ITIL processes, including Change Management, Incident Management and Problem Management.
Customer-facing, with good report-writing skills and strong communication skills at all levels
Knowledge of at least one security methodologies as MITRE ATT&CK Framework.
Excellent management skills with the ability to build high performing, well motivated teams.
Experienced person with proven stakeholder management skills.
Should have worked on any SIEM like Qradar, ArcSight, Splunk, Securonix, etc.
Should have experience on any SOAR like Phantom, Azure Sentinel, etc.
Should have also worked on EDR tools like CrowdStrike, DarkTrace, Defender,etc.
Excellent management skills with the ability to build high performing, well-motivated teams.Knowledge of various security methodologies and processes and can apply these to incidents investigations and management
Customer-facing, with good report-writing skills and strong communication skills at all levels
Ability to consistently deliver to deadlines while prioritising competing demands for time, without sacrificing quality
Good understanding of ITIL processes, including Change Management, Incident Management and Problem Management
Willingness to share information, improve documentation, and train other analysts
Knowledge of at least one security methodologies as MITRE ATT&CK Framework.
Excellent management skills with the ability to build high performing, well motivated teams
Experienced person with proven stakeholder management skills.
Should have worked on any SIEM like Qradar, ArcSight, Splunk, Securonix, etc.
Should have experience on any SOAR like Phantom, Azure Sentinel, etc.
Should have also worked on EDR tools like CrowdStrike, DarkTrace, Defender,etc.
Security is one of the fastest growing parts of our global organisation. We are protecting our networks from more than 6,500 cyber attacks each day, investing over £40m in research each year - and in employing nearly 3,000 people, we’re also the largest private cyber employer in the UK. With incredible opportunities to learn, develop and grow your skills, we’ll invest in you, nurture your potential and shape your future – whatever your background or experience.
In today’s world, safe and secure digital connections have never been more vital. You’ll be joining a global company operating at the forefront of the information age: BT employs 90,000 people in 180 countries. With huge scale, we’re capable of achieving great things, striving to be personal, simple, and brilliant for our customers whilst creating an inclusive working environment where people from all backgrounds can succeed. Play your part. Make a difference. We are the Protectors.
A FEW POINTS TO NOTE:
Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.
DON'T MEET EVERY SINGLE REQUIREMENT?
Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.
Company benefits
We asked employees of BT Business what it's like to work there, and this is what they told us.
Working at BT Business
Company employees
Gender diversity (male:female)
Currently Hiring Countries
Australia
Brazil
Colombia
Hungary
India
United Kingdom
United States
Office Locations