Head of Security Advisory & Architecture

Date: 03-Jul-2019

Location: Chesterfield, GB, S49 1HQ

Company: Royal Mail Group

Job reference number 102448

Head of Security Advisory & Architecture

Full time


Rowland Hill House


Job purpose

The Head of Security Advisory & Architecture is responsible for the provision of Security Advice & Architecture within Royal Mail. This role will interact with a variety of stakeholders and will support both Technology and non-Technology (e.g. Sales) activities. This hands-on role will lead the delivery and continual improvement of proactive and reactive support to Royal Mail.

Key accountabilities

  1. Develop and manage Security Advisory function that both meets and can adapt to the changing requirements of the business.
  2. Ensure accurate, pragmatic and timely Information Security advice & guidance is provided.
  3. Produce reporting to both demonstrate the volume of activity but also the value provided to Royal Mail.
  4. Proactive engagement with the business to develop a pipeline of Advisory activity.
  5. Develop a prioritization & resourcing model that will flex with the changing demands of the business
  6. Own the development and management of the Information Security Management System (ISMS).
  7. Develop and implement, while working closely with our Enterprise Architecture team, our strategy around Security Architecture.
  8. Lead and support the development of a suite of Information Security patterns and standards.
  9. Lead, deliver and support the necessary processes, policies, standards & patterns to support our agile ambitions.

Key dimensions

Budget or financial targets (indicate if directly accountable or advisory)

Budget responsibility up to £1M

Scales of impact (team, function, division, group wide)

  • This role provides services across Royal Mail Group.
  • This role will contribute to approx. £10M per month of existing or new revenue to Royal Mail.

Team size

This role will lead a team of up to 10 (permanent and contractors)

Key Skills

Key Skills

  • Strong Stakeholder Management
  • Able to take a pragmatic approach to Information Security by understanding and clearly articulating the risks.
  • Strong Information Security knowledge (ideally from technical experience)
  • Experience of performing risk identification activities.


  • Previous Information Security advisory experience essential.
  • Experience in advising on Cloud solutions.
  • Experience in leading and developing teams.
  • Implementing an ISMS based around ISO27001.
  • Experience of working in both an agile and non-agile environment.
  • Managing small to medium change projects.
  • Supporting an Enterprise wide Information Security Change programme.



CISSP / CISM / CCSP desirable not essential.


About Royal Mail:

The Royal Mail Technology team is passionate about delivering high-quality products and outstanding digital experiences to our customers. Technology is instrumental in helping us achieve our objective to be recognised as the best delivery company in the UK and across Europe

With a workforce of 150,000, our core network handles c.16 billion letters and c.1 billion parcels a year, delivering to more than 29 million addresses, 6 days a week. Our technology therefore needs to operate at scale. As a data driven business, with the largest PDA estate in the country, our systems need to handle more than 60m scan events and 1.4bn data points per day.

Royal Mail is committed to building an internal development and testing capability, driving digital innovation across the business enabling our business to transform at pace. You will be working for a brand that’s a household name and a critical part of the UK’s infrastructure.

Our technology vision is to “Enable, Digitise, Realise”:

- Enable - Create environments where open conversations are the norm and where teams work alongside each other to complement skills.

- Digitise - Utilise Technology to support the business. Making Technology thinking integral to the business. Increase the level of automation and implement connected systems.

- Realise - Invest in technology and keep taking all opportunities to consolidate systems. Focus on removing complexity within our systems and enable our cost base to decrease.

We are fully embracing Agile and DevOps, and using tools such as Alexa, Azure and Google Cloud, Chatbot, Microsoft .NET Core, Angular and mobile apps.  

Our priorities include:

Our postmen/women use 80,000 Android mobile devices and we are continuing to roll out new Apps all the time to help them to deliver a first class customer service.

International business is one of our fastest growing areas - our IT systems have to integrate with IT systems in over 200 different territories in order for customers to track their parcels around the world.

Continuously expanding our services to our customers, utilising predictive analytics and personalised services.

Transforming our customer’s digital journey’s through our website which is in the top 50 most visited UK websites – with 300m visits per annum, from 100m devices, resulting in 1bn page views, with 9.2m registered users, 20m unique visitors per month, and peaking at 7m visits per day during the Christmas peak.

We are an inclusive employer with equality, diversity and fairness at the heart of our values and we’re proud to be recognised in The Times Top 50 Employers for Women 2019 for a 6th consecutive year. We welcome applications from individuals from diverse backgrounds and are committed to promoting fair participation and equality of opportunity for all of our job applicants.


For more information on Royal Mail Group and our Values please click on the link (http://www.royalmailgroup.com/our-people).


Closing Date: 16/07/2019. Please note this advert may close early if the appropriate number of applications has been reached.

Job Segment: Architecture, Information Technology, IT Architecture, Information Security, Security, Engineering, Technology

Find similar jobs: