Principal Security Authority - UK (Cybersecurity)

TL;DR

Principal Security Authority (Cybersecurity): Establishing and maintaining threat models for International strategic products and platforms with an accent on network, software, and cloud security. Focus on implementing interventions from threat modeling and assurance activities, promoting secure by design across engineering teams and suppliers, and acting as a security advocate for modern approaches like zero trust.

Location: GBR Ipswich - Orion Building (onsite)

Company

BT International delivers secure connectivity and digital services to multinational businesses, leveraging 180 years of BT expertise in cloud, collaboration, cybersecurity, and AI transformation.

What you will do

• Act as the security authority for strategic products and platforms, establishing and maintaining threat models central to threat-led security.
• Implement and oversee interventions from proactive threat modeling or reactive assurance like penetration testing, driving activity across BT teams and supply chain for Secure by Default.
• Promote strong security culture in engineering teams and suppliers using modern, agile-aligned approaches.
• Serve as security advocate and authority for technical approaches, engaging external stakeholders to demonstrate thought leadership and best practices.
• Coach wider security community on threat-led secure by design, zero trust, and talent development.

Requirements

• Deep expertise in network security, IT infrastructure, and data protection, especially in Telco and SaaS/PaaS environments.
• Strong communications and influence skills for agile teams, director-level strategy, and external partners/suppliers.
• Proven threat modeling and secure by design capabilities, including design assessment, mitigation controls, in-life risk evaluation, and automated testing.
• Commercial acumen to balance technical/procedural approaches with business goals.
• Curious, self-learning mindset with extensive knowledge of security methodologies, large-scale network engineering, 3rd party solutions, vulnerability assessment, and AI techniques.
• Ability to influence hirify.global security strategy at director level and drive security improvements.

Culture & Benefits

• Customer First: Prioritize customer needs in decisions.
• Challengers: Innovate and challenge status quo.
• Committed: Own outcomes with integrity.
• Clear: Communicate openly for alignment.
• Connected: Collaborate across teams for shared goals.