Offensive Security Manager

Job Req ID:

Posting Date:

Function:

Location:

Salary:

Why this job matters

The Offensive Security Manager manages teams contributing to all facets of penetration test governance including planning, test scoping, and engagements with project teams and external testing firms to ensure the BT Group's security capabilities withhold amidst a rapidly evolving cyber threat landscape.

What you'll be doing

1. Leads teams in the implementation, development and maintenance of security testing strategies, roadmaps, policies, processes, technology, and controls.
Manages the application security, vulnerability management and attack threat research teams driving red teaming, penetration testing, code scanning, and vulnerability management services across the BT Group.
Champions, continuously develops and shares with team knowledge on emerging trends and changes in security testing.
Coaches talent, and manages others, to develop capabilities and ensure performance through upskilling, development and recruitment.
Implements ways to improve working processes within the area of security testing.
Leads the development of red teaming, penetration testing, code scanning, and vulnerability management policies and procedures.
Leads the validation of security controls and incident response through offensive security operations.
Contributes to existing service offerings and security testing capabilities and conduct hands on technical testing focused on detection and response that necessitates continuously customised tooling to avoid AV (antivirus), EDR (endpoint detection and response), and other defensive tools and technologies.
Enhances and progresses security and penetration testing techniques to a wide range of projects.
Plans, coordinates, authorises and executes intel informed, scenario based, red and purple team operations, both in short and long duration.
Identifies and communicates findings and strategy effectively to client stakeholders, including technical staff, executive leadership, and legal counsel.
Delivers robust penetration test scopes that ensure penetration tests meet all certification and compliance requirements.
Facilitates synergy between application security testing, infrastructure vulnerability assessment, threat assessment and penetration testing technologies and processes to enhance detective and preventative security controls and capabilities.
Leads a team in the execution of threat, vulnerability and risk analysis, determines mitigating and remediation capabilities, provides guidance, assesses inherent and residual risks and articulate results.

The skills you'll need

Legal & Regulatory Environment and Compliance

Continuous Improvement

Security Testing

Web Testing

Penetration Testing

Security Assessment

Security Assurance

Data Analysis

Vulnerability Management

Requirements Management

Talent Management

Security Evaluation and Functionality Testing

Manual/Automation Testing

Decision Making

Growth Mindset

Performance Management

Inclusive Leadership

Our leadership standards

Looking in:
Leading inclusively and Safely
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.

Looking out:
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.

Looking to the future:
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.

With over 175 years of heritage, BT is now the flagship business brand of BT Group. We've brought together our best people and capabilities into a B2B powerhouse serving 1.2 million business customers internationally.

We're a global leader for secure connectivity and collaboration platforms for businesses of all shapes and sizes, from big household names and government departments, right through to sole traders and new start-ups. But it's not just the technology that matters, it's what it can do to help them build stronger, smarter, more secure businesses.

We value diversity and inclusion and believe in making a positive impact. We connect for good by championing digital inclusion and equipping people, businesses, and communities with digital skills to thrive.

As a member of our team, you will be part of an organisation that celebrates difference, fosters innovation and provides you with opportunities to be your best. With millions of businesses relying on us daily, joining BT means you can be part of a diverse and multi-skilled team that makes a significant impact to society.

A FEW POINTS TO NOTE:

Although these roles are listed as full-time, if you're a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

We will also offer reasonable adjustments for the selection process if required, so please do not hesitate to inform us.

DON'T MEET EVERY SINGLE REQUIREMENT?

Studies have shown that women and people who are disabled, LGBTQ , neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.