Head Of Information Security

Head of Information Security About the role... Reporting to the Chief Information Officer you will be part of our Group Technology function at Guild Group.
The Head of Information Security ensures the Guild Group has the necessary cyber and information security (people, process and technology) policies, standards, controls/controls assurance and operating procedures in place to appropriately protect its' information assets, achieve compliance with all applicable regulations and ensure that Guild Group cyber, and information security risk is managed in line with risk appetite.
Key Responsibilities: Strategic Planning and Execution: Establish and manage the execution of the agreed cyber and information security maturity/capability uplift strategy and roadmap to achieve the agreed NIST targets through use of vendor partners (where appropriate) and/or internal staff.
Leadership and Mentorship: Guide and mentor the security team, aligning their efforts with business goals.
Policy Management: Review, update, and enforce information security policies, standards, and procedures.
Compliance Monitoring: Ensure adherence to security policies, procedures, and regulatory requirements.
Stakeholder Engagement: Represent the organisation in discussions with the board, executives, and stakeholders on security policies, risk management, and compliance.
Business Integration: Embed security practices into business processes and projects to mitigate risks effectively.
Risk Assessment: Conduct thorough cyber and information security risk assessments, identifying emerging threats and their potential impact.
Risk Mitigation: Develop and implement plans to mitigate risks, enhancing our capabilities in line with NIST CSF maturity targets.
Incident Response: Maintain an effective cyber incident response capability, regularly testing its efficacy.
Controls Assurance: Oversee the cyber and information security risk controls assurance framework, managing activities and resolving actions from audits and testing.
Vendor Management: Manage key security vendor partnerships to maximise strategic value and ensure SLA compliance.
Operational Oversight: Lead in-house security operations, fostering a culture of continuous improvement.
Support and Education: Assist information asset owners with vendor compliance and engage employees to enhance the organisation's cyber security culture.
Head of Information Security About the role... Reporting to the Chief Information Officer you will be part of our Group Technology function at Guild Group.
The Head of Information Security ensures the Guild Group has the necessary cyber and information security (people, process and technology) policies, standards, controls/controls assurance and operating procedures in place to appropriately protect its' information assets, achieve compliance with all applicable regulations and ensure that Guild Group cyber, and information security risk is managed in line with risk appetite.
Key Responsibilities: Strategic Planning and Execution: Establish and manage the execution of the agreed cyber and information security maturity/capability uplift strategy and roadmap to achieve the agreed NIST targets through use of vendor partners (where appropriate) and/or internal staff.
Leadership and Mentorship: Guide and mentor the security team, aligning their efforts with business goals.
Policy Management: Review, update, and enforce information security policies, standards, and procedures.
Compliance Monitoring: Ensure adherence to security policies, procedures, and regulatory requirements.
Stakeholder Engagement: Represent the organisation in discussions with the board, executives, and stakeholders on security policies, risk management, and compliance.
Business Integration: Embed security practices into business processes and projects to mitigate risks effectively.
Risk Assessment: Conduct thorough cyber and information security risk assessments, identifying emerging threats and their potential impact.
Risk Mitigation: Develop and implement plans to mitigate risks, enhancing our capabilities in line with NIST CSF maturity targets.
Incident Response: Maintain an effective cyber incident response capability, regularly testing its efficacy.
Controls Assurance: Oversee the cyber and information security risk controls assurance framework, managing activities and resolving actions from audits and testing.
Vendor Management: Manage key security vendor partnerships to maximise strategic value and ensure SLA compliance.
Operational Oversight: Lead in-house security operations, fostering a culture of continuous improvement.
Support and Education: Assist information asset owners with vendor compliance and engage employees to enhance the organisation's cyber security culture.
About you... We seek an Information Security leader with strong leadership skills to inspire a team and drive an uplift programme as well as continuous operational improvement.
You'll have demonstrable experience in both security governance and security operations.
We are seeking an experienced leader with a minimum of five years in information security roles, such as Head of Information Security, Information Security Manager, IT Risk Manager or Security Operations Manager.
The ideal candidate will have expertise with NIST CSF and other cybersecurity frameworks and experience of security risk and operations in an APRA-regulated or other highly regulated industry..
A strong background in IT and information security frameworks, risk management, disaster planning, and cryptographic protocols is essential for success in this role.
This would be a great career opportunity for someone who aspires to be a future Chief Information Security Officer (CISO).
Experience and qualifications we are looking for...Tertiary qualification in Computer Science, Information Systems or related field Proven experience as an Information Security Manager, IT Risk Manager or similar Experience working in a highly regulated industry or an APRA-regulated organisation Experience with NIST CSF and other Cyber Security Frameworks One or more of the following certifications: CISSP, CISM, CRISC, CISA, ISO 27001 LI/LA Why us? Guild Group is an equal-opportunity employer.
We celebrate diversity and are committed to creating an inclusive environment for all employees.
We pride ourselves on having an inclusive and productive workplace where we treat our people and our clients with fairness, dignity, and respect.
We offer: Dynamic, innovative, and high-performing team Staff discounts with leading retailers An innovative Employee Assistance Program that provides counselling and support to all staff members and their immediate family Wellbeing initiatives such as health checks and skin checks Hybrid working (we call this #Connect which reflects how we work remotely + in the office and = flexibility) Use the 'apply now' button to express your interest in this key role.
We review applications as we receive them, so don't delay and apply immediately to be one of the first to express interest.
Should you have any questions, please feel free to email Jason at We do not accept emailed applications, please apply via the 'apply now' button.
Advertised: 06 Sep 2024 AUS Eastern Standard Time Applications close: 13 Sep 2024 AUS Eastern Standard Time We will email you new jobs that match this search.
Ok, we will send you jobs like this.
The email address was invalid, please check for errors.
You must agree to the privacy statement Subscribe Recaptcha Privacy agreement Search results Position Location Closes Melbourne (CBD) 13 Sep 2024 This is a great role for an aspiring CISO.
You bring your security governance & security operations exp and we'll give you a great employer experience.
Let's Thrive Together.
Current Opportunities Position Location Closes Melbourne (CBD) 13 Sep 2024 This is a great role for an aspiring CISO.
You bring your security governance & security operations exp and we'll give you a great employer experience.
Let's Thrive Together.
Guild Group Conquest Recruitment Group - Melbourne, VIC Westpac Banking Corporation - Melbourne, VIC Promote local employment to your region, community or member organisation with a u Workin Talent Community.
Find out more.
#J-18808-Ljbffr