Senior Technical Advisor - Cyber Security

Key Responsibilities include

• Support the roll out, management and monitoring of a programme promoting the adoption of the new legislation underpinning the TSR. This will include maintaining and supporting a compliance monitoring regime that will provide annual report to the SOS (Secretary of State) for DCMS . This will include, supporting the development and drafting a “code of Practise”, compliance guidance, and requesting evidence to support CP assessment including carrying out and/or managing compliance assessments against that “code” .

• Work with other members of the team in responding to and assessing telecoms and digital infrastructure company responses to security and resilience incidents that occur in their infrastructure which are reported to Ofcom.

• Work with colleagues in Ofcom investigations teams to provide technical support in relation to any enforcement activity.

• Work with industry stakeholders, Government and other relevant agencies to ensure policy goals are aligned and effectively coordinated. 

Essential Skills/ Experience

• Experience and understanding of conducting security assurance  assessments and audits and managing remediation plans, within the Communication Provider/Telco and mobile sector.

• Understanding of the types of threat actors that would target Ofcom’s regulated sector and cyber security threats they present.

• Experience with evaluating technical vulnerabilities and identifying reasonable and appropriate control measures.

• Experience across all cyber security risk management domains (strategy; governance and risk management; protection, detection, response, recovery and resumption of services; situational awareness; testing).

• Understanding of network topologies including fixed and mobile

• Experience in practical application of leading practice cyber standards and guidance, such as 10 Steps to Cyber Security.

• Maintaining an ongoing awareness and understanding of current and emerging telecoms technologies, including via: ongoing training, industry liaison and identifying, commissioning and managing specific external technical research projects

• Written and oral communication skills including clear and effective presentation to both internal and external audiences.

• Appreciation of and desire to promote Ofcom's values of excellence, agility, empowerment and collaboration.

• Maintaining an ongoing awareness and understanding of current and emerging telecoms technologies, including via: ongoing training, industry liaison and identifying, commissioning and managing specific external technical research projects.

Desirable Skills/ Experience

• Experience and understanding of managing and monitoring security assurance programmes.

• Experience of project management including developing and delivering against plans, managing risks and issues along the way.

• Experience and understanding of some of these technical areas:

  • Virtualisation of telecoms networks functions

  • Telecoms signalling systems

  • Supply chain management and vendor contractual arrangements

  • Third party network access

  • User identity management

  • Asset management

  • Auditing and testing

• Knowledge of the regulatory environment.

• Worked in a communications provider or a technology-based consultancy for a number of years.

Qualifications

• Preferable educated to degree level (or equivalent).

• Relevant professional qualifications