Lead Security Systems Engineer

Department: Technology

Team: Security

Location: London

Position type: Contract until Dec 2024

Reporting to: Technical Security Director

What the hiring manager says

“Cyber-attacks continue to increase in sophistication and volume against mobile networks. Set against a background of the roll out of 5G and evolution of legacy technology to cloud native, the need for strong international co-ordinated security has never been stronger. GSMA plays a central role in the mobile industry both as a thought leader and also as a focal point for GSMA industry member to develop industry security standards. This role will be key in ensuring security of GSMA’s ongoing development of next generation OpenGateway APIs and other GSMA service technologies.

I am looking for a team player who can share their ideas and experiences, joining us at what is both an exciting and challenging time in mobile cyber security ”.

Alex Leadbeater. GSMA Technical Security Director

About the GSMA

The GSMA represents the interests of mobile operators worldwide, uniting more than 750 operators with over 350 companies in the broader mobile ecosystem. Our mission is to further the strategic, commercial, technological, developing world and advocacy interests of our members. The GSMA produces industry-leading events such as Mobile World Congress, Mobile World Congress Shanghai, Mobile World Congress Americas and the Mobile 360 Series conferences.

Every day we work to harness the power of mobile to achieve our industry purpose – Connecting Everyone and Everything to a Better Future – through four main activities:

• We provide strategic direction and thought leadership to our members.

• We drive collaborative industry programmes aimed at maintaining operator relevance in the digital world.

• We advocate for the industry to regulators, policymakers, and society as a whole.

• We convene the broad mobile communications ecosystem and adjacent industry sectors at our industry-leading events.

About GSMA Industry Security Team

The GSMA Industry security team is the mobile industry’s focal point for the mobile network security. The team is responsible for coordinating GSMA member security working groups, leading industry wide security initiatives and engaging with global regulators to ensure security is an enabler and not a barrier to next generation mobile services. 

About the Role

The role will focus on GSMA Open Gateway which represents a paradigm shift in the way the telecoms industry designs and delivers services in an API economy world. It’s a framework of common network APIs designed to provide universal access to operator networks for developers.

GSMA Open Gateway helps developers and cloud providers enhance and deploy services rapidly across operator networks via single points of access to the world’s largest connectivity platform. https://www.gsma.com/solutions-and-impact/gsma-open-gateway/  

The role will be the security lead for Open Gateway within GSMA and assist both the GSMA technology team and GSMA member task forces in developing appropriate API security guidelines.

Beyond Open Gateway, the role with also support security aspects of other GSMA service technologies and member lead initiatives linked for GSMA Fraud and Security Group FASG.

Key Responsibilities

• Lead security aspects of GSMA Open Gateway.

• Review and develop treat model for Open Gateway.

• Ensure security capabilities of Open Gateway adequately address threat model.

• Champion the use of Open Gateway from a security perspective.

• Work with GSMA working groups (including FASG) and Open Gateway partners (including Linux Foundation) to develop appropriate API security guidelines.

• Support security aspects of wider GSMA service technologies and support GSMA working group security standards activities.

About You

You will be enthusiastic to make this Open Gateway and other GSMA service technologies a success, especially from a security perspective.

You will have;

• Experience of Cyber Security as applied to mobile network design and operation

• Knowledge of SS7, Diameter and other legacy mobile interconnection protocols, including areas subject to vulnerability and fraud

• Experience of API developing security controls

• Experience of 3GPP, ETSI, GSMA or other standardisation development

• Experience of Linux and API software development

• Knowledge of Mobile Network architectures for 2G, 3G 4G and 5G

• Knowledge of Mobile Network O&M systems

• Knowledge of privacy and security by design

• Knowledge of IMS, VoLTE, RCS, AI, Cloud, and Zero Trust desirable

You will already have;

• Excellent communication skills, with the ability to engage effectively with, and present technical work analysis to a broad stakeholder and customer base (including none-technical audience) through written reports and verbally

• Self-motivated, able to work independently and collaboratively as part of a wider, virtual team

• A multi-tasker and problem-solver, who can prioritise and produce work to a high standard with excellent attention to detail

• Fluency in written and spoken English is essential

• Fluency in Spanish or other languages is desirable

• A positive and flexible attitude to change

• Ability to travel internationally

Contract type

Worker type

What We Offer

Working at the GSMA offers you unparalleled access to the mobile industry. We offer a chance to truly shape the direction of mobile, whatever your role. By joining the GSMA, you will be exposed to a fast-paced rapidly evolving environment, working on global solutions, genuinely fascinating and industry-changing projects and a stimulating and dynamic environment designed to enable you to flourish.

In addition to architect-designed offices and competitive compensation, our benefits include fantastic learning & development opportunities, generous holiday allowances, four additional days off for professional development and many others.

To learn more about the GSMA, visit our career site, our LinkedIn page and our Twitter page.

Being You at the GSMA

We are one of the most diverse companies you will ever come across, we care deeply about equality and inclusivity and aspire to be the best at it. Your well-being and work/life balance is important so if you prefer to work flexi-time or a day from home, just ask. We’re keen to ensure everyone is equal, represented and connected so we particularly encourage applications from all demographics. The success of the GSMA year on year will continue to be contributed by people from all walks of life.

GSMA Values

Our values not only drive our culture – they shape how we work and interact inside and outside our global organisation.

Passionately driven

We approach everything we do with unparalleled capability, tenacity and commitment, knowing that the challenging scale, pace and complexity of our work is what leads to its world-changing impact.

Insightful leaders

We continually develop and engage our expertise, insight and creativity so that we’re always ready to respond to the changing landscape with authority, agility and nuance.

Stronger together

We lean on each other so the industry can lean on us, embracing our diversity by actively seeking out perspectives and skill sets beyond our own, fuelling each other’s successes and constantly asking how we can help.

Underpinning our values is our collective mindset to show up purposefully as good human beings every day, in every situation. When we’re at our best – we are collaborative, considerate and compassionate to others, and we create a safe space for one another to thrive, assuming positive intent in our colleagues. And if we aren’t at our best and the pressure is on – we feel free to be ourselves but still remain curious, lean into the tough stuff and we are always respectful to others and accountable for the part we play.