Share this Job

Business Resilience & Security Manager

Posting Country:  United Kingdom
Date Posted:  17-Oct-2021
Full Time / Part Time:  Full Time
Contract Type:  Permanent

At Vodafone, we’re working hard to build a better future. A more connected, inclusive and sustainable world. As a dynamic global community, it's our human spirit, together with technology, that empowers us to achieve this. 

We challenge and innovate in order to connect people, businesses, and communities across the world. Delighting our customers and earning their loyalty drive us, and we experiment, learn fast and get it done, together.

With us, you can be truly be yourself and belong, share inspiration, embrace new opportunities, thrive, and make a real difference.

Business Resilience & Security Compliance Manager

Safety Notice: To ensure candidate and employee safety, we are continuing with our virtual hiring and onboarding processes until further notice. 


Vodafone UK Corporate functions work within the heart of our business, providing professional expertise, support and guidance across all operations, revolutionising our digital growth by always moving, always adapting, to be ready for the future.
 
  
What will you be doing?  


To provide assurance that Vodafone mitigates security and resilience risks business-wide in accordance with ISO27001, the Telecoms Security Requirements as well as resiliency risks captured in Synergi, major incidents and crisis activity.  

Protect Vodafone UK from brand impacting crisis activity by being aware of potential crises, engaging with stakeholders across major incident teams, supporting the invocation process and helping to facilitate the output of crisis meetings.

• Develop and deliver the security compliance audit plan using the ISO27001 standard, audit results and security risks to execute and lead security audits across the entire organisation. Collaborate closely with wider team, Cyber Security, Risk and Privacy and Compliance teams.
• Propose recommendations, agree corrective actions with senior management, and track these through to completion. Support the implementation of best-practice policies, procedures and controls across the organisation.
• Support the Crisis Management (CM) processes and facilitate invocation of the UK crisis community, including delivering crisis management duty cover on a regular basis.
• Help prepare regular reports to senior management on the status of business continuity, crisis management and the security audits
• Define and support delivery of the Business Continuity (BC) ISO22301 throughout Vodafone UK ensuring delivery of a robust Business Continuity Management System (BCMS).
• Work with functional areas to mentor, validate and exercise appropriate Business Impact Assessments (BIAs) and Business Continuity Plans (BCPs).


Who are we looking for?   


• Knowledge and understanding of implementing and auditing against ISO27001 certification and/or regulatory requirements. 
• Knowledge of ISO27001 / ISO22301 controls or equivalent in a Telecommunications organisation or major incident background would be an advantage.
• Ability to influence senior stakeholders and manage sensitive discussions is a necessary skill. This is often an F and E band facing role.
• Must be able to think and act in a wider risk context rather than just “tick box” compliance.
• Professional certification to 27001 Lead Auditor, ISO22301 lead auditor, CISM, CISSP, COBIT, CISA, CGEIT, CIA, CIPP/E, CIPM or equivalent is an advantage.
• Project management experience would be an advantage

Vodafone is committed to attracting, developing and retaining the very best people by offering a motivating and inclusive workplace in which talent is truly recognised and rewarded. We are committed to promoting Inclusion for All with the belief that diversity plays an important role in the success of our business. We actively encourage everyone to consider becoming a part of our journey.