For this role you must have a strong knowledge of communication providers and you will be expected to support the delivery of a new telecoms security framework for Communications Providers and offer technical insights in this role.
For a number of years, our client has been in charge of communications network security and resilience; more recently, they have been given additional responsibilities in this regard.
Primary Responsibilities:
Join forces with the other team members to respond to and evaluate telecommunications and digital infrastructure companies’ responses to security and resilience issues that happen in their infrastructure and are reported to our client. Ensuring that there is sufficient data to produce a reliable security risk assessment.
Assist the implementation, administration, and oversight of a programme encouraging the adoption of the new laws supporting the TSR. As part of this, a compliance monitoring system that will provide an annual report for the Secretary of State (SOS) for DCMS will be maintained and supported. This will entail helping to create and construct a “code of practise,” compliance advice, and requests for documentation to support CP assessments, as well as conducting and/or managing compliance evaluations in accordance with that “code.”
Work with your colleagues in the investigations teams to provide them technical support in relation to any enforcement activity.
Working with different stakeholders to ensure policy goals are coordinated and aligned.
Who are you?
Knowledge of organising remediation programmes and executing security assurance evaluations and audits within a communications provider (mobile, fixed, internet).
Understanding the different threats which could target our client and the potential security threats.
Knowledge of vendor risk assessment and evaluation. Expertise analysing technological vulnerabilities and developing acceptable and effective control mechanisms.
Telecoms-related expertise in fixed and mobile signalling (from GSM to 5G) as well as virtualisation.
Experience across all cyber security risk management domains (strategy; governance and risk management; protection, detection, response, recovery and resumption of services; situational awareness; testing).
Understanding of fixed and mobile architectures, standards and GSMA deployment guidance.
Sustaining awareness and comprehension of current and developing telecommunications technologies, especially by continual training, industry engagement, and locating, appointing, and overseeing certain external technical research initiatives.
Awareness of the human and physical security components of telecom security, especially when they are a potential threat or mitigation.
