MyPage is a personalized page based on your interests.The page is customized to help you to find content that matters you the most.

I'm not curious

Data Security Ops

Location Bengaluru, India
Posted 28-June-2022
About this role

The Data and AI Delivery Unit is using innovative ways of leveraging BTs data such as AI and Machine Learning techniques to make better data driven decisions and to drive revenue in both our on-prem and Google Cloud Platform estates. As part of this ambition, it is key to deliver safely, protecting the data at every stage. The data in GCP will be a huge and valuable asset to BT and in response BT must deploy key processes, measurements and capabilities to protect this data. This role is required to ensure the right defence mechanisms are in place and that these are effective within GCP and where necessary the wider BT estate.

Youll have the following responsibilities

The Data Security Ops must:

Understand the role of data in relation to Business process and systems

Classify the data and apply the appropriate controls

Responsible for ensuring that data is protected appropriately whilst at rest and as part of its journey into and through GCP

Code pipeline reviews

2nd Line SecOpsworking with the GCP Core SecOps Team to mitigate any identified risks

Incident Management

Running the Security Guide, Trust, Verify Model to ensure empowerment of users whilst helping them to comply and checking to ensure they do. This will incorporate 1st Line Assurance - Accountable for ensuring the effectiveness of security controls as they apply in CDH

Taking the squads from DevOps to a DevSecOps Model

Opensource adoption in GCP

Responsible for the assessment of new code pipeline patterns to ensure there are no security risk such as the potential for sql injection

Create a change network that builds consensus and momentum for change with join purpose, learning, decision making and accountability across different teams.

Stay up to date and on top of the latest cyber security threats in BT and the industry.

Spotting of automation opportunities within the security space.

Clear communication and engagement plans with stakeholders

Youll have the following skills & experience

You will have a DevSecOps mindset, with security being job number one

Understanding Data and how to leverage its value in a safe way. Industries where this is key could be Banking or Telcos.

Excellent knowledge of Regulation and Industry Standards and Legislations, e.g. GDPR and PECR and applying the right controls to comply. Also

Expertise in applying the right security controls in an Analytics environment to ensure balance is maintained between securing the data and retaining the utility of the data. This will include techniques such as Encryption, Fine Grained Access Control, Tokenisation and Retention

Stakeholder Management: Managing expectations and the level of stakeholder engagement. Ability to manage to complex political relationships in a variety of business and technical situations. Influence and engage with stakeholders in decisions based on analysis of their needs, interests and impact. Use empathy and the right language to avoid misunderstanding.

Design and Architecture Experience

Security Experience: Experience is needed within several areas, such as Security Architecture, DevSecOPs and Vulnerability Scanning.

Problem Solving: Uses judgement & experience to solve often highly complex and abstract problems across the domain, such as launching new products and services, solving customer experience problems. Includes defining and alignment to business strategy.

Automation: Have an eye for automation opportunities to save man hours and costs.

Experience you would be expected to have

Data Knowledge: How to get the best out of the data whilst ensuring its safety

DevSecOps: working in an agile environment that delivers using DevSecOps

Security Expert: Expert knowledge of IT Security policies, objectives, controls and remediations and significant experience in a senior IT Security role.

Technical Solutions: Demonstrates a breadth of technical acumen and commercial insight to determine how to solve problems through the use of technology and innovation including in Google Cloud

Customer Experience: Experience in understanding the fundamental customer experiences that drive NPS, customer satisfaction and churn.

Cloud Certified: Experience of working in Cloud Environments. The preference is that a Cloud Security Certification will be held.

Security Certified: CISSP or equivalent is preferred

Awards & Accolades for MyTechLogy
Winner of
Top 100 Asia
Finalist at SiTF Awards 2014 under the category Best Social & Community Product
Finalist at HR Vendor of the Year 2015 Awards under the category Best Learning Management System
Finalist at HR Vendor of the Year 2015 Awards under the category Best Talent Management Software
Hidden Image Url