About the Company
My client is one of the largest organisation within the NSW Government, who aim to deliver excellence in customer service, digital leadership and innovation in government services, and safe and secure markets.
About the role
You will be responsible for:
- Analyse and assess cyber threats to identify vulnerabilities and potential risks the systems and networks.
- Develop and implement policies and procedures to mitigate cyber risks and ensure compliance with industry standards and regulations.
- Monitor and assess the effectiveness of our GRC program to identify areas for improvement and make recommendations for changes.
- Measure maturity of overall security operations in alignment with business priorities and its tactical/strategic objectives.
- Presentations and written reports.
Skills & experience
- Extensive experience applying security architecture to design of information technology infrastructure and information systems.
- Experience with reviews, assessments and system implementations based on industry/regulatory requirements such as ISO 27001, NIST Cybersecurity Framework, GDPR, SOC2/SSAE-18, Australian ISM, etc.
- Experience managing GRC engagements and developing cyber/information security strategy, and strategy execution.
- Experience managing audits (internal & external) and auditors.
- Ability to align Cyber Security objectives with key business goals.
- Industry certifications such as CISSP, CISM or equivalent are highly desirable.
- Broad expert knowledge of strong IT technical knowledge across different environments such as Networking Cloud / containerisation technologies / API / applications.
How to apply
Click APPLY or contact Elsa on elsaa@thenetworkit.com for a confidential discussion.
