About the Team

Giffgaff is mobile network operator unlike any other. Through close online collaboration and a generous reward scheme, its members help to run and grow the business doing things like answer other member`s queries and distributing SIM cards.

Although the business is owned by Telefonica UK (and uses the O2 network) it is operated as an independent entity and is responsible for its own IT and billing systems.

The Privacy Manager at giffgaff will provide leadership and strategy to the business for data privacy governance, regulatory compliance and data protection, responsibility for our data privacy policies, and maintaining awareness for security and privacy standards.

About the role

The cyber security incident manager is responsible for leading the business through cyber incidents, investigating events with the CERT team, and response best practice.  You will be responsible for developing the incident management playbooks and managing incident exercises such as first responder training, tabletop exercises, capture the flag and simulated attacks/red teaming activities.  Working closely within the CERT team, you will provide incident root cause analysis for the business in technical and non-technical settings.  Continually developing the CERT process, and evolving the Security Incident management framework, you will be tasked with assisting the Cyber Security team in developing and maintaining the incident knowledge base.  You will drive close relationships with the product technical teams to ensure any security defects/pen test results are reviewed fully and mitigated where required within a reasonable timeframe.  You will strive to continually lower cyber risk and work closely with the risk management team to ensure the correct technical security measures are in place for the protection of member data.  

Key Responsibilities

• CERT and Security Incident Management Processes
• Corrective actions following Internal/External cyber security audits
• Ensuring compliance with privacy regulations such as PECR/GDPR where cookies and similar technologies are used
• Management of giffgaffs security budget
• Security vendor management including supplier reviews and annual audits
• Establishment of a SOC
• Leading the implementation of continual improvement activities
• Leading the review of cookies and use of similar technologies within the business ensuring the compliance of GDPR and the ePrivacy directive
• Own and manage the giffgaff security incident management process including ownership of third party and internal security incidents
• Chair and own the CERT reviews monthly to understand business risk and review risk appetite for the business.
• Drive incidents to a conclusion based on SLAs and criticality level.
• Define improvement over incident playbooks
• Coordinate the activities of analysis and 3rd parties external to the Cyber Defence Team involved incident response.
• Oversee all aspects of the Security incident management process from evaluation to resolution
• Evaluating Security factors and risks that impact on services, operational processes, resources, and strategic direction to enable the most appropriate route of change.
• Creation and implementation of new processes/procedures dependent on business requirements/needs.
• Accountable and responsible for supporting Security with the automated threat detection pipeline.
• Chair Post-mortems when the business experiences a critical incident with financial or brand impact to all levels of the business (CEO, CTO and all key SLT members) required to asses impact.
• Develop giffgaff’s problem and defect management process to drive continual service improvement internally and via partner relationships.
• Reduction of member cases that are caused on the back of bugs being introduced via our automated change pipeline
• Collaboration with the Help product team to review the current Help strategy to reduce at least 30% of member cases be raised which could have been self-served
• Align with the head of Product engineer to review the Development best practice guide on quality of code being introduced into production
• Being responsible for the supplier management and service reviews of external and internal technical suppliers. Managing the key SLAs, contracts, credits, SIPs etc

What We Need from You:

Essential Skills:

• Have a solid understanding of security practices like ISO27001 and frameworks
• Relevant professional qualification or experience in Cyber Incident Management and security implementation (CSIRM, CIIP etc.)
• A thorough knowledge of IT Service management, including experience in managing third party relationships
• Experience within compliance, focused on information security, risk management, privacy, and controls, with additional experience in project or program management
• A clear aptitude to evaluate risks to the company and articulate issues simply and clearly, while working mutually to achieve the desired outcome (we don’t just say ‘no’!)
• Ability to mentor those around you to become more experienced in cyber security techniques and awareness. 
• Willing and able to go above and beyond, keep calm in a crisis and navigate through the most critical of incidents

Finally...

This is a chance to work for one of the most sought-after UK companies, highly regarded for its community model. In return for your outstanding efforts, you’ll be rewarded with a competitive salary and excellent benefits. We believe that hard work should be supported and recognised. This position plays an important role across the business, allowing you to work cross functionality, take on more responsibility and gain experience, which will greatly benefit you in the future.