Cyber Risk & Security Architect

Cyber Risk & Security Architect

In our world things change by the millisecond.
We build the technology that creates amazing moments and better connects our customers. Ready to play your part? Join us and Be Phenomenal. Working towards the same shared goal of better connectivity, our tech teams enjoy a high degree of autonomy. We love hearing ideas and seeing them come to life. With great resources, you’ll get to be part of the leading team at the foundations of the transformation of our business. Who knows what the next innovation will be? That’s what makes a career at Three so exciting.

Since we set foot in Ireland, we’ve done things differently.
Investing in infrastructure, we built a network that now connects 2.2 million customers nationwide, carrying more data than all of our competitors combined. We take the script and rip it up, we’re a big-hearted energetic bunch, striving for a better connected life. We encourage our employees to face their weaknesses, to really open themselves up to new challenges and projects in a super-charged and rich learning environment. We want you to become the best version of yourself.

Three Ireland is looking for a Cyber Risk & Security Architect. This is a senior role requiring a high level of strategic leadership and technical Information Security skills. This person will be responsible for ensuring that Three Irelands IT and Network systems and services are delivered and operated to the highest security standards, consistent with industry best practice and adhering to the Three Ireland Security policy.

What else it involves:

• You will be a technical leader, able to draw upon your record of success and use a wide range of relevant technical experience to help shape our success.
• Design and implement enterprise-wide security architecture aligned with business and regulatory requirements.
• Develop security standards, best practices, and architectural frameworks for systems, applications, and networks.
• Your role encompasses all aspects of the technical delivery of Cyber Security Solutions from requirements capture and support of vendor selection, to supporting the High- and Low-Level design documentation as well as supporting the Operations team during deployment or network issues.
• Definition of the strategy for Technology Security, updating and managing Three’s Technology Security requirements, baselines, and standards
• Reporting & governance of Information Security and Data Protection risks within the Technology area. Collaborating closely with teams in Technology to manage and mitigate these risks.
• Ownership of the security incident response processes, including the communication processes with internal stakeholders during recovery operations within technology.
• Management of research activities around security threats and incidents
• Reviewing the outcome of security risk assessments and advising on the implementation of any recommendations
• Promoting security awareness initiatives and activities within the Technology directorate.
• Oversee the security assessment of Technology projects and planned changes, ensuring that information security risk management is maintained to a high level.
• Establishing and maintaining strong relationships with Managed Service Providers, oversee and manage security metrics, holding MSPs to account for their Security deliverables, monitoring and advising on their Business Continuity plans, and ensuring compliance with Three’s Security standards.
• Oversee, monitor, and advise on business continuity readiness within technology to support the business continuity plans already completed.
• Building strong relationships within the Technology Security Team and personnel of the other functions within the Technology area as well as key stakeholders across the business

The skills we are looking for:

• The candidate should have at least 5+ years’ experience in an Information Security Governance, Risk and Compliance lead role within a technology organisation.

• Strong understanding of Cyber Security Design and the ability to clearly articulate best practices.

• Ability to present to Senior Management distilling technical cyber security risks & information into well-curated executive summary slides with supporting materials that highlight the main objective.
• Proficient in standard security assessment and testing tools
• Proficient in threat response and responding to security incidents
• Knowledge of common application security issues and remediation techniques
• Experience in working with cloud infrastructures.
• Ability to develop effective partnerships with peer organizations
• Strong written and verbal communication skills. Strong interpersonal skills, resourceful, responsive with strong follow through
• Stay informed of emerging cyber threats and technology trends to continuously improve security posture.
• Ensure compliance with relevant frameworks and regulations (e.g., NIST, ISO 27001, GDPR).
• Evaluate and recommend security tools, technologies, and processes.
• Data Protection and Personal Data Governance.
• Payment Card Industry (PCI).
• Enterprise Risk Management.
• Lead incident response and forensic investigations when needed.
• Create and maintain documentation including security architecture diagrams and procedures
• Vendor security governance, risk, and compliance management.
• Technical knowledge of large-scale Information Systems, WAN and LAN Networks.
• Mobile Network Technologies including Mobile CORE, RAN and Transmission networks.
• Ability and desire to drive change through high-energy, can-do attitude; comfortable working in a high-performance, entrepreneurial, open-door environment.
• Must be an outstanding communicator and team player who demonstrates attention to detail, and who also understands how to ensure finance initiatives that support the long-term strategy of the business.
• Ability to collaborate with IT & Network design teams to embed security throughout the design & implementation stage.
• Strong analytical and problem-solving skills
• Ability to work autonomously
• Attention to detail / detail oriented
• ISO-27001 Certified Implementer and/or Auditor
• Certified Data Protection Professional
• PCI Qualified Security Assessor
• ISACA Certified Information Security Manager (CISM)
• ISACA Certified in Risk and Information Control (CRISC)
• ISC2 Certified Information Systems Security Professional (CISSP). 

Benefits of Working at Three

• Flexible working with our new Hybrid model, our employees will enjoy more flexibility working from home and our office locations (3 days per week office based). Please see job description for the office location of this role.
• Competitive salary, annual performance bonus & pension contribution
• 25 days holidays plus 2.5 company days
• Annual Leave buy or sell (buy or sell up to 5 days AL each year)
• Healthcare Insurance through our flexible benefits programme
• Life assurance, phone & laptop, subsidized canteen
• Access to learning & development
• Free on-site parking

You may think you know us, but we’re full of surprises. Intrigued? Join us and Be Phenomenal. #Jobs Apply now at: https://www.three.ie/careers

Three Ireland is proud to be an equal opportunities employer. If you do not ‘tick every box’ in the job description above, there are likely other valuable attributes and skills you have that would make you a great fit for the team. If you feel this role is for you, then please apply! We are committed to equal employment and growing a diverse workforce.
We embrace those of any race, gender identity, sexual orientation, age, religion, disability, marital status, family status, civil status or membership of the traveler community, and we want our teams to reflect this!

If you require reasonable adjustments at interview, please let us know when scheduling your interview, or alternatively please email recruitment.support@three.ie

Benefits of Working at Three

• Flexible working with our new Hybrid model, our employees will enjoy more flexibility working from home and our office locations (2/3 days per week office based). Please see job description for the office location of this role
•  Competitive salary, annual performance bonus & pension contribution
•  25 days holidays plus 2.5 company days
•  Annual Leave buy or sell (buy or sell up to 5 days AL each year)
•  Healthcare Insurance through our flexible benefits programme
•  Life assurance, phone & laptop, subsidized canteen
•  Access to learning & development tools such as LinkedIn Learning
•  Free on-site parking

You may think you know us, but we’re full of surprises. Intrigued? Join us and Be Phenomenal. Apply now at: https://www.three.ie/careers

Three Ireland is proud to be an equal opportunities employer. If you do not ‘tick every box’ in the job description above, there are likely other valuable attributes and skills you have that would make you a great fit for the team. If you feel this role is for you, then please apply! We are committed to equal employment and growing a diverse workforce.

 We embrace those of any race, gender identity, sexual orientation, age, religion, disability, marital status, family status, civil status or membership of the traveler community, and we want our teams to reflect this!

 If you require reasonable adjustments at interview, please let us know when scheduling your interview, or alternatively please email recruitment.support@three.ie