Cyber Security DevSecOps Chapter Lead

Role Purpose

• Technology and Tools Planning: Develop and execute technology and tools planning strategies that align with local, global, and regulatory standards.
• Network Security Architecture: Collaborate with architecture teams to ensure network security designs are compliant with security standards.
• Secure by Design (SBD): Oversee the Secure by Design initiatives from a cybersecurity perspective, ensuring all new designs comply with security standards
• New Products and Services: Evaluate and recommend new and emerging security products and technologies to enhance Vodafone VF-EG IT network security
• Capacity Planning: Maintain and expand capacity planning for all cybersecurity tools, ensuring scalability and efficiency

Role Profile

1.    IT Network Security  

• Plan , design, implement and evaluate security-focused tools and services including project leadership roles to Vodafone IT Network Security 
• Participate in security compliance efforts (e.g., PCI DSS, SOX)
• Contribute in vendor risk assessment 
• Evaluate and recommend new and emerging security products and technologies to security   
•  VF-EG IT network
• Participate in security incident handling
• Ensure that all streams running on the right track and fulfilling their main objectives.
• Ensure VF-EG internet resources security and take all the needed measures to maintain its availability.
• Ensure VF-EG IT published services by design (i.e. Vodafone Web site, payment services and cloud infrastructure)

2.    Optimize Network Quality    

•  Study the effect of SW/HW upgrade plans on IT Network Capacity.
• Study the effect of new service/promotion on network Capacity.
• Generate Weekly, Monthly Report to Keep Track on Security KPI.
• Study of new Security Systems / Tools or Features.
• Study of new Security Management Systems / Tools.
• Develop and implement software tools to monitor the Security systems and to provide useful statistics, Trend Analysis using Historical data to capture the Subscriber behaviour/Profile across different seasons and occasions.

3.    Technology development   

• Alignment with Vodafone Group plans.
• Liaise with overall Technology Strategy.
• Provide the state of art for the IP and security evolution that enable VF-EG as best & secure service provider.

4.    Cross function, support and communication    

• Maintain a close liaison with all departments within Vodafone.
• Supports Marketing, product & services, Radio and core in network connectivity and new services. 
• Case investigation closely with Corporate Security teams to close any gap from Technology side.
• Provide Operation with the necessary symptoms required for troubleshooting
   

Competencies

• Excellent teamwork skills
• Results oriented, high energy, self-motivated
• Ability to manage expectations of stakeholders 
• Strong communication and presentation skills
• Comfortable working in a project based / client serving model.
   

Qualifications and Technical Skills

• B.Sc. Communication/Computer Engineering or Computer science is a must
• Minimum of 5 years’ experience in Application Security positions and 2 Years’ in Development positions

Technical skills:

• Strong Knowledge with DevOps technologies like Jenkins, Github, Docker and Kubernetes  
• Strong knowledge in different infrastructure technologies (virtualization, containers, Infrastructure as Code (IaC), ..) in addition to microservices concepts and the ability to secure these environments
• Good Development background in different languages like Java, javascript, angular,..etc  
• Experience of delivering technology solutions using agile methodologies Such as Scrum and Kanban
• The ability to implement DevOps practices such as CI/CD, automated testing, monitoring and alerting
•  A board understanding of security practices such as penetration testing, threat modelling, vulnerability management, (SAST) static and (DAST) dynamic application security testing
• Understanding of Cyber security industry resources such as OWASP projects, vulnerability lists,..etc
• Understanding of the SDLC as well as knowledge of the component of a secure SDLC
•  Ability to design and implement secure coding to practice and provide guidance to development teams
• Experience in designing secure network architectures, virtualization technologies, identity and access management principles, application security, encryption technologies, DNS and web applications
• Basic knowledge with security compliance standards
• Good knowledge in payment solutions security
• Deep understanding of business dynamics and the agility to adapt to changes quickly and effectively.

Not a perfect fit?

Worried that you don’t meet all the desired criteria exactly? At Vodafone we are passionate about empowering people and creating a workplace where everyone can thrive, whatever their personal or professional background. If you’re excited about this role but your experience doesn’t align exactly with every part of the job description, we encourage you to still apply as you may be the right candidate for this role or another opportunity.

Who we are

We are a leading international Telco, serving millions of customers. At Vodafone, we believe that connectivity is a force for good. If we use it for the things that really matter, it can improve people's lives and the world around us. Through our technology we empower people, connecting everyone regardless of who they are or where they live and we protect the planet, whilst helping our customers do the same.

Belonging at Vodafone isn't a concept; it's lived, breathed, and cultivated through everything we do. You'll be part of a global and diverse community, with many different minds, abilities, backgrounds and cultures. ;We're committed to increase diversity, ensure equal representation, and make Vodafone a place everyone feels safe, valued and included.

If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, please refer to https://careers.vodafone.com/application-adjustments/ for guidance.

Together we can.