Senior Manager, Agile Delivery - Security and ThreatCo

Job Description

Job Details

Job title

Head of Security Engineering

Team

International Security

Career Level

C

Reports into

CISO, International

Hours

Full Time

No. Direct Reports

6

Location(s)

India

About BT

BT Group is the UK’s leading communications group and the holding company behind some of the country’s most recognised brands – including BT, EE, Openreach and Plusnet. Our purpose is as simple as it is ambitious: we connect for good. Our customers include consumers, small, medium and large businesses, public sector organisations and other communications providers.

BT Group’s role is about setting direction, unlocking value and creating the conditions for our brands and businesses to thrive.

Having come through the most capital-intensive phase of our fibre investment, our focus now is on what comes next – simplifying how we operate, using technology and AI to work smarter, and organising ourselves to serve customers better and grow sustainably. Group teams shape strategy, policy, brand, capital allocation and transformation, helping the whole organisation perform at its best.

We have a singular culture that unites all our people: we are customer-first challengers, who are committed, clear and connected. These behaviours unite us as one team to deliver for our colleagues, our customers, our stakeholders and the country. Joining BT Group means working at the heart of a business that matters to the UK, with the opportunity to shape decisions, influence outcomes and help set the future course of one of the country’s most important companies.

About the role

At BT International, our purpose is to keep the world connected. As part of BT, we build on almost 180 years of innovation and expertise to deliver secure connectivity and digital services to some of the world’s leading multinational businesses and organisations. Our customers trust us to safeguard their data, drive their digital transformation and keep their businesses running.

With colleagues on the ground across the world and supporting customers wherever they need to operate, BT International offers a truly global experience. Whether it’s about providing cloud connectivity, helping organisations collaborate, or enabling innovation in cybersecurity and digital services, you’ll be part of a team that shapes how businesses succeed in a world that is being transformed by AI.

• The security of International’s products and platforms underpins our mission to be the market leader in secure multi-cloud connectivity for our customers. This role is accountable for the Security Engineering within International and helping to shape the strategic direction of the wider engineering community. With specific responsibility to deliver capabilities underpinning our customer security propositions and International’s internal security needs, coordinationing with cross-functional stakeholders to ensure we deliver continual value as part of our platform engineering culture.

What you will be doing (Role Accountabilities)

• Provides operational excellence and discipline in security engineering, leveraging latest agile and platform engineering approaches to maximise the effectiveness of the security engineering team.
• Ensures team standards of engineering and operational excellence are upheld, establishing metrics and processes for regular assessment and improvement through the creation and implementation of processes and tools supporting multiple platforms
• Drives an engineering culture that supports innovation and creativity while delivering high quality products with predictability and reliability
• Builds 'best-in-class' engineering for services by ensuring that the services and the components are well-defined and modularised, secure, reliable, diagnosable, actively monitored and reusable
• Drives a culture of automated software testing, behaviour driven development and ensuring security is front of mind to ensure our security capabilities are exemplars of compliance to our security standards and guidance
• Manage delivery across squads to meet roadmap and release milestone dates; liaise with release planning teams and Delivery Office leads.
• Own implementation of strategies for International’s security capabilities and technical roadmaps. Agreeing with all stakeholders.
• Review and validate technical and security designs produced by architects; elaborate user stories and low level technical designs with security controls embedded.
• Lead security engineering activities across delivery lifecycle: threat modelling, secure design reviews, security requirements derivation, static/dynamic code analysis integration, and remediation tracking.
• Integrate and drive automated security testing into CI/CD (SAST, DAST, SCA, container/image scanning, dependency checks) and incorporate results into Definition of Done.
• Work with network engineering to ensure secure network design, secure connectivity between components, firewall rules, micro segmentation, VPNs, and monitoring of network telemetry.
• Ensure platform acceptance into service with security and operational readiness , handoverto 2nd/3rd line support including runbooks, runbooks, playbooks, monitoring/alerting, and incident response handover.
• Manage capacity/priorities across squads; ensure clear SLAs and escalation paths.
• Ensure JIRA hygiene, traceability of security requirements, and structured evidence foraudits and compliance.
• Drive continuous improvement: post release security reviews, KPIs (vulnerabilities remediated, mean time to remediate, deployment frequency), root cause analysis and process enhancements.

What you’ll need to succeed (Skills & Experience)

Essential

• 5+ years delivering platform or complex software products in Agile environments with cross squad coordination.

• Strong DevOps/CI CD experience: pipeline design and implementation (Jenkins, GitLab CI, Azure DevOps), IaC (Terraform/CloudFormation), container orchestration (Kubernetes).
• Demonstrable hands on security engineering experience: threat modelling, secure architecture, SAST/DAST/SCA tooling, vulnerability management and remediation workflows.
• Network engineering knowledge: TCP/IP, routing, firewalls, VPNs, load balancers, micro segmentation, and secure connectivity patterns for cloud and on prem.
• Experience embedding security gates into release processes and enforcing compliance requirements (PCI/DSS, ISO27001, NIST, orequivalent).
• Familiarity with secrets management, PKI, IAM, RBAC, and least privilege access models.
• Strong release and delivery management skills: milestone management, release gating, environment management, rollback strategies.
• Solid experience with test automation, environment provisioning, and operational readiness practices.
• Excellent communicator capable of translating technical security risks to business stakeholders.
• Proven leadership/mentoring skills and a continuous improvement mindset.

Desirable

• Experience with cloud security controls on AWS/Azure/GCP and managed networking/security services (NSGs, Security Groups, WAF, VPC/VNet designs).
• Certifications: CISSP, OSCP, CEH, CCNP/CCIE (network), Certified DevOps or cloud security certs (e.g., AWS/Azure/GCP security).
• ITIL/service transition, incident response, orSOC integration experience.
• What success looks like
• Repeatable, secure release process with measurable reduction in security incidents and vulnerabilities in production.
• Automated CI/CD pipelines with integrated security testing and demonstrable improvement in mean time to deploy and to remediate vulnerabilities.
• Stable, compliant platform accepted into operational support with clear runbooks, monitoring, and SLAs.
• Strong cross team collaboration, JIRA hygiene, and traceable evidence for audits.

BT Group’s Behaviours

Customer First

Prioritize customer needs in every decision and action.

Challengers

Challenge the status quo and bring innovative ideas to life.

Committed

Own outcomes and deliver with integrity.

Clear

Communicate openly and simply, ensuring alignment.

Connected

Collaborate across teams to achieve shared goals.

About the role

The Senior Planning & Delivery Manager drives capacity planning, resource management and programme increment planning, empowering Agile practices, ensuring alignment with strategy and BT Group objectives.

What you’ll be doing

1. Operates as an SME in Planning & Delivery management, setting the development, implementation and maintenance of the project work plan, including approval for the project's estimated schedule, effort, and cost.
2. Directs and empowers teams in the planning and implementation of solutions centered on Agile methodologies driving BT Group's overall transformation agenda.
3. Manages overall project/programme risks, adjusting as necessary and obtaining buy-in from senior management for critical project plans, commitment and changes.
4. Articulates strategic direction to all change management activities for project or programmes.
5. Ensures understanding of stakeholder goals and expectations, addresses misalignments, monitors programmes to meet/exceed the agreed expectations and communicates with concerned stakeholder groups.
6. Envisions strategies for control and governance structures to ensure desired outcomes across projects.
7. Oversees a complex delivery portfolio, monitoring, escalating, and resolving delivery issues internally.
8. Mentors, coaches, and manages a team to develop current and future team capabilities and ensure performance.
9. Leads the implementation of continuous improvement opportunities to improve Planning & Delivery processes.

Essential Skills / Experience

Desirable Skills / Experience

Our Package