The Company
This enterprise-sized, rapidly growing organisation in Newcastle is undergoing a huge digital transformation and is in the process of building up their IT team and practice. With this transformation being driven from the top, there's nothing to slow or stop an exciting change within a well-established organisation.
The Role:
As the Cyber Security, Governance and Risk Manager you will be critical in delivering complex cyber security, governance programs and initiatives that underpin the organisations strategic goals. Specifically, you will be accountable for maintaining a pre-emptive and proactive security alert status within the IT department, both to keep systems and services secure from security threats, unauthorised access and to ensure systems and services comply with regulatory requirements and controls through log analysis, scanning, assessments and investigation.
Specific responsibilities will include:
- Lead and coordinate security incident response efforts to prevent and contain any known security threats.
- Develop and implement a cyber security program and roadmap to drive process improvement in alignment with strategy.
- Ensure the information and cyber security strategic plan aligns with the Information Security Operating Model in accordance with EISA and ISO/IEC.
- Identify and address a full range of issues from structure and policy, through to assisting in specific areas such as data privacy; data leakage prevention / monitoring; information rights management; third party security and cryptography.
- Lead and coordinate security incident response efforts to prevent and contain any known security threats.
- Support stakeholders with both onsite and remote access.
- Day to day management of in place vulnerability assessment technology.
- Day to day management of risks and cyber security threats (following principles, standards and regulations).
- Maintain awareness of new threats and act to protect the organisation.
- Manage the cyber security infrastructure such as firewall, switches and rules.
- Conduct penetration testing when required.
- Manage cyber security and risk policies.
Essential Skills & Experience
- Bachelor's Degree in Information Technology, Computer Science, Software Engineering or a related qualification, and/or demonstrated capability through past employment experience.
- Qualifications in, or working towards CISA, CISP, CISM, ISO 27001 Certified Lead Auditor or equivalent.
- Experience in information security including areas of cybersecurity, incident response, investigations and/or security operations.
- Experience with cloud-based services, technologies and providers.
- Experience in application security involving secure software deployment.
- Demonstrated ability to address multiple assignments simultaneously, with strong ability to prioritise tasks, and respond to dynamic priorities.
- Demonstrated experience working in infrastructure, networking or application security.
- Experience in building strong relationships with internal and external stakeholders.
Benefits
This is a rare permanent opportunity to be part of a large and ongoing transformation with an organisation that is very visible and touches many aspects of everyday life. For your efforts you'll enjoy a great work life balance and unique benefits including a 35-hour work week and flex time.
If you are ready for a change and tired of the Sydney commute this is the perfect opportunity to make your move.
If interested in this role or For more information or a confidential discussion, please contact Richard Bissitt on Richard.Bissitt@peoplebank.com.au>quoting Job reference; 196976
