Privileged Access Management Solution Designer

Location - London and Birmingham

Why BT Digital?

We are in an incredibly competitive industry and it’s not just the technology that’s important, but the world of promise it creates for our customers. We live and work in a connected world where people want seamless service, great products and the best connectivity there is, as well as continually expecting more and more from us, and rightly so. Technology is BT’s powerhouse, with our expert technologists, we have a unique position in BT. By bringing together our technical and commercial expertise, and our insight and passion for customer experience, we help BT stand out from the competition. With the best networks and smart innovative products, combined with a personal experience, it sets us apart from the pack. 

Innovation drives everything we’ve done since BT started in 1846. Coming up with new ideas and developing new technologies is central to our future. We want to improve people’s lives for the better in welcome, relevant and affordable ways and we’ll be fast to market with an effortless experience to match. We will continue to focus on developing our converged network capabilities which will give customers seamless connectivity. Our skilled people will lead this technological revolution, not only for our customers but for the industry across the Globe, truly making customers our heartbeat. 

Why this Job Matters?

This is a Solution Designer role in a security team, namely BT’s Privileged Access Management (PAM) security team in Digital’s Corporate Units. The core purpose of this team is to protect BT’s systems from Cyber security threats, both internal and external, and we take this responsibility very seriously. We run and manage security platforms which control across to the whole of BT and EE. We protect privileged identities and manage administrator access to most of BT’s estate, across IT and Networks. To do that, we work with market leading technologies (CyberArk) in a fast-evolving security landscape.

We are growing fast and would welcome committed and enthusiastic technical individuals with the right skill set and attitude to join us.  You will join a diverse and multi-skilled technical team and you will play a key role in securing BT’s assets and customer products and services. If you are passionate about security and want to work with market leading technologies, we want to hear from you.

Specific Job Requirements

To work with internal IT and Network teams, security architects and platform owners from BT’s different Lines of Business in order to map and understand the security challenges they face around the management of privileged identities, human or machine, in their specific areas. To design and deliver security solutions utilising existing capabilities and/or expanding what currently exists, in order to address their requirements and keep BT’s systems and information secure

What I'll be doing – your accountabilities?

Undertake detailed technical feasibility studies in the wider Privileged Identity Management (PIM) security domain. 

Liaise with stakeholders, understand and analyze their PIM-related security requirements and produce security solution designs which address the customer requirements and cover all the related technology, process and people aspects. 

Ensure the proposed security solutions: a) comply with BT's various Security and Compliance Frameworks b) align with BT’s strategic security architecture and principles c) re-use/expand where necessary BT's existing security platforms and capabilities and d) they can be supported and maintained in Life, making full use of automation and zero touch processes, minimizing in Life IT maintenance costs.
 
Lead the implementation of end-to-end security solutions, working with matrixed teams including PAM Engineers and Operations teams, Network Designers and teams, Architects and Programme/Project managers.  

Finally, you will provide technical leadership and consultancy within your area of expertise to complex technical and architectural initiatives in the wider Identity and Access management security domain.  

Capabilities/Skills required for the job

Product and service knowledge - You demonstrate subject matter expertise in complex, technical infrastructure, products and services. You develop bespoke solutions to meet short, medium and long-term customer needs.
Technology design - You partner with the business to understand and analyse user requirements and inform the architecture design for software, systems and networks.
Be agile - You identify opportunities to use collaborative approaches and continuous improvement. You contribute to projects as a subject matter expert or content owner.

Specific Technical Subject Matter Expertise in the following areas

Solid knowledge and understanding of key security concepts and related security technologies in the wider Identity and Access Management technology domain (indicative: Privileged Access Management, Secrets Mgt, Authentication Technologies (Modern Auth/Azure AD, Network Auth technologies  (Radius, TACACS+), IGA and RBAC)

Good IT and Networking knowledge and experience (preferably in the areas of Windows/Unix administration, DBA knowledge, IP Networking)

Good understanding of access control mechanisms for Operating systems and Databases and other potential targets or endpoints for a typical PAM solution

Experience with AWS, GCP or Azure a plus

Security certifications preferable (e.g. CISSP, CISM, CISA, etc) but not essential

Connected Behaviours

•  Solution focussed achiever - You deliver and coordinate activities and respond positively to challenges.
•  Collaborative partner - You develop great working relationships with stakeholders, sharing knowledge and collaborating.
•  Change agent - You support change initiatives locally, adapting quickly and delivering change effectively.

Experience you would be expected to have

Handled at least 2 projects as technical lead role involving key activities such as architecture, detailed design, implementation, integrations of various infrastructure platforms for security/IAM use cases

Excellent communication skills. Able to facilitate technical workshops, and clearly communicate ideas and solutions through various means (written, presentation and in person). Able to explain complex technical and architectural issues to a business audience

Confident approach, delivering with minimal supervision/guidance. Good stakeholder management skills

Made decisions in ambiguous situations using incomplete information or differing opinions (e.g. unclear deliverables, conflicting requirements, challenging stakeholders). 

Aligned project plans and objectives with company strategy and values

What you'll get

•    Competitive salary
•    25 days annual leave (plus bank holidays)
•    10% on target bonus
•    Life Assurance
•    Pension scheme if you pay in 5% BT will pay in an additional 10%
•    Option to join the Healthcare Cash Plan or other benefits such as dental insurance, gym memberships etc.
•    50% off EE mobile pay monthly or SIM only plans
•    Exclusive colleague discounts on our latest and greatest BT broadband packages
•    BT TV, including TNT Sport and the NOW Entertainment membership, and 25% off NOW Sport, Cinema and Kids
•    30% discount for friends and family on EE mobile pay monthly and SIM only plans