Information Assurance Professional

Job Description

Location: Budapest or Debrecen

Why this job matters

• Maximise the chances of BT winning and retaining profitable, high-quality business.
• Convince Customers that BT can be entrusted with their information assets and, further, that BT is the best supplier into which to put that trust.
• Mitigate the risk that BT signs contracts to deliver products and services obligating BT to deliver security services which it cannot deliver or has not costed for. This results in the erosion of margin or outright financial loss. It is also likely that intangible assets such as the BT brand and customer goodwill will also be jeopardised and their value eroded.
• Evidence Security Information Assurance compliance in-life and achieve formal certification/accreditation where required.
• Evidence Security Obligations are satisfied taking a risk based approach to compliance to ensure maximum profit potential.

What you’ll be doing

• Responsible for supporting measures to ensure the Account & Service teams fully understand and appreciate their Security contractual obligations in respect of Information Assurance.
• Responsible for the maintainence of the agreed governance framework as outlined in the IA Workbook in order to evidence BT’s compliance to our external customers.
• Responsible for assisting with the completion of assigned information assurance work packages to meet the agreed time/cost/quality measures.
• Responsible for managing and supporting the agreed controls and audit schedules to evidence BT’s compliance with the Information Assurance obligations.
• Accountable for undertaking the agreed audits to confirm compliance against applicable controls.
• Responsible for liaising with BT Internal Audit teams and external auditors to ensure that the related compliance audit requirements for the contract are met and the audits are supported.
• Accountable for management and maintenance of the IA Security Risk register and the related Corrective and Preventative Actions log.
• Responsible for supporting the established business relationships with customers, suppliers and stakeholders to ensure effective provision of information assurance services.
• Responsible for ensuring the compliant delivery of the BT Products and Services required to meet the customer’s Contractual Security requirements.
• Accountable for the provision of progress reports against assigned IA work packages in a simple, clear and timely manner to the contract lead.

Skills required for the job

• Policies and Standards: Knowledge of policies and standards within an organisation or across a range of clients. Understanding of Information Security standards to support decisions & ensure compliance.
• Compliance: Basic knowledge and understanding of the legal & regulatory compliance regime that BT operates under and how this can be tested and evidenced.
• ISO27001: Basic level of understanding of primary controls and how to implement requirements.
• Data Protection: Awareness of core requirements in respect of Data Protection (re.EU GDPR)
• Information Assurance Framework: Awareness and basic understanding the CIISEC Skills Framework.
• Auditor: Appreciation and understanding of core internal information security audit requirements.
• Threat Awareness: Appreciation of the internal and external threat landscape and options to mitigate.
• Incident Management: Basic knowledge of how to report, review and implement a viable approach to security incident management.
• Information Risk Assessment: Ability to review and interpret the requirements of information security management to assess current and future risks.

Experience you would be expected to have

Mandatory:

• Appreciation of, or exposure, to roles that require governance & compliance input (e.g Audit, Risk Management, Policy & Standards)
• Basic level understanding or appreciation of ISO27001
• Hold and maintain adequate security clearance
• Basic Excel/Powerpoint/Word skills
• Able to demonstrate problem solving skills
• Evidence of the ability to work independently
• Good written & verbal communication skills

Preferred:

• Familiarity with Auditing tools and techniques
• Commercial awareness

About us

BT is part of BT Group, along with EE, Openreach, and Plusnet.

Millions of people rely on us every day to help them live their lives, power their businesses, and keep their public services running. We connect friends to family, clients to colleagues, people to possibilities. We keep the wheels of business spinning, and the emergency services responding.

We value diversity and celebrate difference. ‘We embed diversity and inclusion into everything that we do. It’s fundamental to our purpose: we connect for good.’

We all stick to the same values: Personal, Simple, and Brilliant. From day one, you’ll get stuck in to tough challenges, pitch in with ideas, make things happen. But you won’t be alone: we’ll be there with help and support, learning and development.

This is your chance to make a real difference to the world: to be part of the digital transformation of countless lives and businesses. Grab it.

A FEW POINTS TO NOTE:

Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

DON'T MEET EVERY SINGLE REQUIREMENT?

Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.