Security Policy & Standards Technical Professional (Assembly, Bristol, United Kingdom)

Why this job matters

The Security Policy and Standards Professional plays a critical role in ensuring the security and compliance of our operations, policies, and procedures. In this role, you will be working closely with the team to directly assist with the creation, maintenance, and operation of the entire security policy and standards landscape. Your contribution will be key to ensuring our guidelines are up-to-date, clearly communicated, and consistently applied across the business. Our policy and standards are the essential framework that allows our organisation to operate securely and effectively. They translate our mission into action, ensuring legal compliance, mitigating risk, and driving efficiency, helping us unlock new business opportunities, protect customer data, and build the trust: providing the foundation for a culture of accountability and trust that underpins our brand. As part of the Security Policy and Standards team, you will help keep BT safe and secure, empowering our colleagues with clear guidance and controls. This role is a fantastic opportunity for those looking to build their career in governance, risk and compliance while making a real difference to the security and resilience of BT.

This role is hybrid (3 days in office) in one of the following: Bristol, London, Manchester​

What you’ll be doing

Supporting the creation, maintenance, and improvements to BT Security Policy and Standards and associated processes Supporting the definition of metrics for measuring compliance to security policies and standards, working in collaboration with the Risk, Governance, and Assurance teams to ensure they align to the risks the business faces and providing regular reports on compliance metrics Tracking effectiveness of the delivery of content with various KPIs and metrics, as well as, implementing continuous improvement. Use data to inform decisions, ensuring metrics are clear, unambiguous, and data-driven, with a focus on compliance and assurance. Developing and maintaining educational and training materials to ensure compliance with regulatory and contractual obligations. Work collaboratively with other members of the Secure in Operation function to drive an integrated and supportive culture. Acting as an energised and engaged team player , championing a security-conscious mindset through your actions and collaboration. You will be responsible for executing the day-to-day administrative duties that form the foundation of our risk management and compliance programs.

Skills Required for the Role

Presentation skills. Strong communication skills. Experience of stakeholder management and influencing skills A thorough approach to your work, with the ability to maintain a high level of attention to detail on routine but critical tasks. Basic understanding of cyber security Basic understanding of security risk Excellent written communication skills, with experience creating formal documentation or reports.

Experience Required for the Role

MANDATORY

1-3 years of professional experience in a Cyber Security, Information Security, or a related technical role with demonstrable security responsibilities. Ability to translate complex, technical problems into easy-to-understand language Good understanding of and passion for cyber security best practice. Familiarity with the core principles of GRC (Governance, Risk, and Compliance) within a technology environment. Computer literacy (with focus on PowerPoint and Excel).

PREFERRED

Bachelor’s degree in computer science, Information Security, Compliance, or a related field Genuine passion for cyber security and a strong desire to learn and develop in the field. Excellent problem-solving skills and the ability to think critically under pressure. Hands-on experience supporting compliance assessments, such as by gathering evidence, tracking findings, or helping to prepare reports on control effectiveness. Experience contributing to security risk management activities, such as helping to identify threats, assess potential impacts, and document risks in a risk register. A relevant foundational security certification is highly preferred (e.g., CompTIA Security+, ISC2 Certified in Cybersecurity (CC), GIAC GSEC).

Benefits

On target 10% on target bonus​ BT Pension scheme, minimum 5% Employee contribution, BT contribution 10%​ From January 2025, equal family leave: receive 18 weeks at full pay, 8 weeks at half pay and 26 weeks at the statutory rate. It’s for all parents, no matter how your family is made up.​ Enhanced women’s health support: including help with menopause symptoms, cancer screenings, period care and more.​ 25 days annual leave (not including bank holidays), increasing with service​ 24/7 private virtual GP appointments for UK colleagues​ 2 weeks carer’s leave ​ World-class training and development opportunities​ Option to join BT Shares Saving schemes.

About us

BT Group was the world’s first telco and our heritage in the sector is unrivalled. As home to several of the UK’s most recognised and cherished brands – BT, EE, Openreach and Plusnet, we have always played a critical role in creating the future, and we have reached an inflection point in the transformation of our business. Over the next two years, we will complete the UK’s largest and most successful digital infrastructure project – connecting more than 25 million premises to full fibre broadband. Together with our heavy investment in 5G, we play a central role in revolutionising how people connect with each other. While we are through the most capital-intensive phase of our fibre investment, meaning we can reward our shareholders for their commitment and patience, we are absolutely focused on how we organise ourselves in the best way to serve our customers in the years to come. This includes radical simplification of systems, structures, and processes on a huge scale. Together with our application of AI and technology, we are on a path to creating the UK’s best telco, reimagining the customer experience and relationship with one of this country’s biggest infrastructure companies. Change on the scale we will all experience in the coming years is unprecedented. BT Group is committed to being the driving force behind improving connectivity for millions and there has never been a more exciting time to join a company and leadership team with the skills, experience, creativity, and passion to take this company into a new era.

A FEW POINTS TO NOTE:

Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

We will also offer reasonable adjustments for the selection process if required, so please do not hesitate to inform us.

DON'T MEET EVERY SINGLE REQUIREMENT?

Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.