Offensive Security Manager

Job Req ID: 47091

Posting Date: 22 May 2025

Function: Security

Unit: Digital

Location:

RMZ Ecoworld, Devarabeesanahal, Bengaluru, India

Salary: Competitive

Recruiter: Mounika Nagabhiru

Hiring Manager: Tony Ramlakhan

Career Grade: D level

Internal Closing Date: 29th-May-2025

Why this job matters

BT is obliged to report financial compliance under the Internal controls over financial reporting (ICOFR) and Indian Companies Act (ICA) (amongst others).
The role is pivotal in ensuring that technology is compliant with ICOFR & ICA IT General Controls, as well as ensuring that new ICOFR transformational projects aligns to both, in terms that controls are designed and operated correctly and subsequently right first time. We are adopting automation to eliminate manual effort and risk on the controls. Providing independent (first line) assurance that they are operating effectively. An adverse ICOFR or ICA audit report could result in reputational damage to BT.

What you’ll be doing

• Role is vital to delivering our ICOFR compliance including our ITGC commitments, not only will it undertake the actual reconciliations and ensure operation of our key financial and customer experience controls, but this role will also have to face in to the 1st and 2nd line of defence internal and our external auditors.
• The role will be responsible for ensuring key ICOFR control activities are executed, such as:
o Updating all of the ITGC Risk and Control Matrices (RACMs)
o Project Managing/ Coordinating simplification across the ICOFR framework to work with our automation suppliers to simplify our controls end two end and ensure that manual effort and risk is eliminated.
o Providing (first line) assurance that automations of IT controls are designed, implemented and effectively operated for BT to comply with regulatory ICOFR & ICA IT Control obligations.
o Using expert knowledge to provide the senior managers responsible for controls (MDs, Platform Directors and Senior Management Team Members) with the most current guidance on the applicable control requirements
o Ensuring that simplification requirements, timelines, systems knowledge are all understood and delivered by chosen automation partners.

Skills required for the job

Expert knowledge of security, compliance and control requirements and the frameworks to ensure assurance through the three lines of defence model.
Expert knowledge of IT Control frameworks (including SAP) and the critical dependencies between IT controls as a building block to financial reporting control and how they impact to BTs overall business controls & processes.
Understanding of the scoping requirements and outcomes of ISAE 3402 reports.
Expert knowledge to identify clearly the specific aspects of internal control requirements and the additional matters that indirectly impact and are covered by financial reporting standards.
Have a good knowledge of financial control frameworks in general (including SAP), and ICOFR and India Companies Act requirements, in order to ensure that IT controls are managed in a balanced and appropriate manner, consistent with industry best practise.
Comprehensive expert knowledge of IT control objectives or significant experience in applying risk assessment and management principles and processes.
Experienced in providing expert knowledge to the senior owners of control issues, supporting them to deliver optimum level of assurance against issues raised by audit for the lowest cost. (MDs, Platform Directors and Senior Management Team Members).
Expert knowledge of risk management and BT Enterprise Risk Management practices including the three lines of defence model.
Professional audit qualifications would be desirable (CISA preferred)
Strong project management knowledge.
EE SAP knowledge

Our leadership standards

Looking in:
Leading inclusively and Safely
I inspire and build trust through self-awareness, honesty and integrity.
Owning outcomes
I take the right decisions that benefit the broader organisation.

Looking out:
Delivering for the customer
I execute brilliantly on clear priorities that add value to our customers and the wider business.
Commercially savvy
I demonstrate strong commercial focus, bringing an external perspective to decision-making.

Looking to the future:
Growth mindset
I experiment and identify opportunities for growth for both myself and the organisation.
Building for the future
I build diverse future-ready teams where all individuals can be at their best.

With over 175 years of heritage, BT is now the flagship business brand of BT Group. We’ve brought together our best people and capabilities into a B2B powerhouse serving 1.2 million business customers internationally.

We’re a global leader for secure connectivity and collaboration platforms for businesses of all shapes and sizes, from big household names and government departments, right through to sole traders and new start-ups. But it’s not just the technology that matters, it’s what it can do to help them build stronger, smarter, more secure businesses.

We value diversity and inclusion and believe in making a positive impact. We connect for good by championing digital inclusion and equipping people, businesses, and communities with digital skills to thrive.

As a member of our team, you will be part of an organisation that celebrates difference, fosters innovation and provides you with opportunities to be your best. With millions of businesses relying on us daily, joining BT means you can be part of a diverse and multi-skilled team that makes a significant impact to society.

A FEW POINTS TO NOTE:

Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

We will also offer reasonable adjustments for the selection process if required, so please do not hesitate to inform us.

DON'T MEET EVERY SINGLE REQUIREMENT?

Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.

Provider	Description	Enabled
Vimeo	Vimeo is a video hosting, sharing and services platform focused on the delivery of video. Opting out of Vimeo cookies will disable your ability to watch or interact with Vimeo videos. Cookie Policy Privacy Policy Terms and Conditions
YouTube	YouTube is a video-sharing service where users can create their own profile, upload videos, watch, like and comment on videos. Opting out of YouTube cookies will disable your ability to watch or interact with YouTube videos. Cookie Policy Privacy Policy Terms and Conditions

Provider	Description	Enabled
Google Tag Manager	Google Tag Manager is a tag management system for conversion tracking, site analytics, remarketing and more. Privacy Policy Terms and Conditions
LinkedIn	LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions