VodafoneThree - Security Assurance Coordinator

Working hours: Full time 37.5 hours per week - Monday to Friday The Security Assurance Coordinator is responsible for coordinating and overseeing the end\u2011to\u2011end security testing and assurance lifecycle across systems, applications, and services operating in high\u2011assurance environments. The role works with delivery teams, service owners, and approved third\u2011party suppliers to plan, track, and report assurance activities, ensuring risks are visible, remediation is progressed, and evidence is maintained to meet policy, regulatory, and customer requirements. Coordinate the planning, scheduling, and delivery of security assurance activities, including penetration testing and vulnerability assessments, ensuring alignment to delivery plans, customer requirements, and applicable security policies. Act as a central point of contact between project teams, service owners, and approved third\u2011party testing providers to define scope, prerequisites, timelines, and dependencies. Review and quality\u2011check security testing outputs, supporting the translation of technical findings into clear, business\u2011focused risk information for a range of stakeholders. Track identified vulnerabilities through agreed remediation processes, monitoring progress to closure, supporting retesting where required, and maintaining accurate assurance and remediation records. Maintain assurance evidence and artefacts to support audit, accreditation, and compliance activities, contributing to reporting against relevant standards, policies, and regulatory requirements. Support the continuous improvement of security testing coordination, reporting, and tracking processes to enhance consistency, transparency, and delivery efficiency. Working knowledge of penetration testing approaches, vulnerability management processes, and common application and infrastructure risks (e.g. OWASP Top 10), sufficient to coordinate assurance activity and interpret findings. Experience in a coordination, assurance, or delivery\u2011support role within IT or Cyber Security, managing multiple workstreams, dependencies, and stakeholders in parallel. Strong communication skills, with the ability to engage effectively with technical teams, suppliers, and senior non\u2011technical stakeholders, translating technical outputs into clear risk\u2011based insights. Knowledge of recognised security standards and frameworks (e.g. ISO 27001, NIST, NCSC CAF, JSP440) and experience supporting compliance, audit, or assurance activities. Ability to attain and maintain UK Security Vetting (DV) and operate effectively in regulated or high\u2011assurance environments requiring discretion, accuracy, and strong governance.