Skip to main content
Job ID Date Posted Location
1901N7 07/24/2019 Maidenhead
Work Location Job Type Contract Type
Maidenhead Office (Star House) Professional Full-time
Hours Per Week Shift Pattern Closing Date
37.5 Standard 23/08/2019


This role leads a team of Security professionals that are accountable for ensuring Technology Risk is managed and that Technology & Operations are compliant to legal and regulatory standards.

Accountable for the planning and implementation of Technology and Operations processes and procedures for the management of risk to the success or integrity of the business. Specifically risks arising from the use of information technology, reduction or non-availability of energy supply or inappropriate disposal of materials, hardware or data.

Accountable for continually identifying, assessing and reducing risks within levels of tolerance with partners in the delivery and operation of technology.
Accountable for leading the Technology & Operations specific organisational procedures for the internal or third-party assessment of an activity, process, product or service, against recognised criteria, across the organisation and partners.

A typical planning cycle is monthly and should also align to the corporate risk planning cycle managed by LCR.

  • Develops plans for review of management systems, including the review of implementation and use of standards and the effectiveness of operational and process controls.
  • May manage the review, conduct the review or manage third party reviewers.
  • Carries out risk assessment across Technology and Operations feeding outputs into Enterprise Risk function.
  • Uses consistent processes for identifying potential risk events, quantifying and documenting the probability of occurrence and the impact on the business.
  • Refers to domain experts for guidance on specialised areas of risk, such as architecture and environment.
  • Co-ordinates the development of countermeasures and contingency plans.
  • Ensures an integrated platform is used to manage IT risk and compliance monitoring and incorporate a high degree of process automation.
  • Uncovers emerging issues and/or needs and identifies potential causes related issues, key stakeholders and barriers.
  • Support the business wide Security Risk strategy and solutions which in turn will safeguard Three, its customers, brand, reputation and assets.
  • Identify, own and drive mitigation activity at Three.
  • Assessment and management of Technology risks, threats and vulnerabilities across all areas of Tech & Ops

  • Must have experience of managing and mitigating risks within a Telecommunication environment
  • Demonstrable experience of ensuring risk management against industry standards frameworks, e.g. NIST SP800-53, ISO27001, Cyber Essential
  • Candidates must be SC Cleared or SC/DV clearable for this role.
  • Experience of working with and influencing various levels of management, building relationships and influence across teams and a wider community of other leaders and managers. A clear communicator.
  • Ability to lead, make decisions, problem solve and work within teams. Can demonstrate flexibility and agility to move between role types within teams.
  • Will have clear subject matter experience of their area (both technical and commercial) and ability to connect and work across multiple domains. Can demonstrate knowledge of their area articulated through key operating elements of people, process and technology.
  • Ability to contribute to the development of strategies (and/or service strategies) within their area and understand the importance of the customer experience and how this can be affected by service impacts.
  • Will have a high level, broad end to end understanding of our business and it’s operational performance and be able to demonstrate knowledge of working in a service orientated environment.
  • Will be passionate about the use of data and insight to make informed decisions, solve problems and input to operational and strategic plans. Can demonstrate the ability to gather, analyse and present information in business terms for management and leadership consumption.
  • Ability to work in a fast paced changing environment that shows flexibility, resiliency, self-awareness and ability to support other team members.
  • Will have experience of working directly with partners to successfully deliver outcomes and will demonstrate an awareness of partner contracts.
  • For this role, candidates should also demonstrate:
  • Experience of best practice frameworks ITIL/COBIT.
  • Proficient in the use of Office 365
  • Industry or academic credentials in security or risk management, e.g. CISM, CISSP or relevant graduate degree

Can’t find the job you’re looking for?