Security Compliance Manager

United Kingdom
Full Time
Posted
1 year ago

Develop and support the ISO27000 certification strategy for Mobile and Fixed  environment within Vodafone UK.
Implement the changes to the new version of ISO27001 within the business areas and the ISMS, whilst managing the impact to Synergi.
Lead and support coordination across all areas of Vodafone in scope and implement a control framework that includes control testing and facilitate required improvements to ensure effective design and operation.
Challenge, support and raise awareness with senior leaders from Enterprise, Technology and Group to respond to and remediate identified security risks.  Ensure risks are raised where necessary.
Drive simplification and remove duplication across the Security Assurance team, including process improvement and management of dashboards for Senior Management detailing progress and status reports on certification status/progress and metrics. 
Align with internal audit, Group compliance  and TSR delivery to maximise effectiveness of delivering ISO compliance.
Understand the TSR regulation requirements and assess compliance levels against these.
Drive stakeholders to demonstrate TSR compliance levels to evidence to Ofcom.
Manage, and improve effective and concise reporting for key Technology control effectiveness within Synergi.
Understand and interpret the section 105A of the Communications Act and the regulatory requirements for Vodafone 
Engage with delivery forums/stakeholders across Vodafone UK and Group to identify further services coming into scope for the NIS directive.  
Support the compliance of Vodafone UK to any security requirements mandated by the Beacon agreement with Telefonica.