Head of Information Security
About the role…
Reporting to the Chief Information Officer you will be part of our Group Technology function at Guild Group. The Head of Information Security ensures the Guild Group has the necessary cyber and information security (people, process and technology) policies, standards, controls/controls assurance and operating procedures in place to appropriately protect its' information assets, achieve compliance with all applicable regulations and ensure that Guild Group cyber, and information security risk is managed in line with risk appetite.
Key Responsibilities: Strategic Planning and Execution: Establish and manage the execution of the agreed cyber and information security maturity/capability uplift strategy and roadmap to achieve the agreed NIST targets through use of vendor partners (where appropriate) and/or internal staff.Leadership and Mentorship: Guide and mentor the security team, aligning their efforts with business goals.Policy Management: Review, update, and enforce information security policies, standards, and procedures.Compliance Monitoring: Ensure adherence to security policies, procedures, and regulatory requirements.Stakeholder Engagement: Represent the organisation in discussions with the board, executives, and stakeholders on security policies, risk management, and compliance.Business Integration: Embed security practices into business processes and projects to mitigate risks effectively.Risk Assessment: Conduct thorough cyber and information security risk assessments, identifying emerging threats and their potential impact.Risk Mitigation: Develop and implement plans to mitigate risks, enhancing our capabilities in line with NIST CSF maturity targets.Incident Response: Maintain an effective cyber incident response capability, regularly testing its efficacy.Controls Assurance: Oversee the cyber and information security risk controls assurance framework, managing activities and resolving actions from audits and testing.Vendor Management: Manage key security vendor partnerships to maximise strategic value and ensure SLA compliance.Operational Oversight: Lead in-house security operations, fostering a culture of continuous improvement.Support and Education: Assist information asset owners with vendor compliance and engage employees to enhance the organisation's cyber security culture. Head of Information Security
About the role…
Reporting to the Chief Information Officer you will be part of our Group Technology function at Guild Group. The Head of Information Security ensures the Guild Group has the necessary cyber and information security (people, process and technology) policies, standards, controls/controls assurance and operating procedures in place to appropriately protect its' information assets, achieve compliance with all applicable regulations and ensure that Guild Group cyber, and information security risk is managed in line with risk appetite.
Key Responsibilities: Strategic Planning and Execution: Establish and manage the execution of the agreed cyber and information security maturity/capability uplift strategy and roadmap to achieve the agreed NIST targets through use of vendor partners (where appropriate) and/or internal staff.Leadership and Mentorship: Guide and mentor the security team, aligning their efforts with business goals.Policy Management: Review, update, and enforce information security policies, standards, and procedures.Compliance Monitoring: Ensure adherence to security policies, procedures, and regulatory requirements.Stakeholder Engagement: Represent the organisation in discussions with the board, executives, and stakeholders on security policies, risk management, and compliance.Business Integration: Embed security practices into business processes and projects to mitigate risks effectively.Risk Assessment: Conduct thorough cyber and information security risk assessments, identifying emerging threats and their potential impact.Risk Mitigation: Develop and implement plans to mitigate risks, enhancing our capabilities in line with NIST CSF maturity targets.Incident Response: Maintain an effective cyber incident response capability, regularly testing its efficacy.Controls Assurance: Oversee the cyber and information security risk controls assurance framework, managing activities and resolving actions from audits and testing.Vendor Management: Manage key security vendor partnerships to maximise strategic value and ensure SLA compliance.Operational Oversight: Lead in-house security operations, fostering a culture of continuous improvement.Support and Education: Assist information asset owners with vendor compliance and engage employees to enhance the organisation's cyber security culture.About you…
We seek an Information Security leader with strong leadership skills to inspire a team and drive an uplift programme as well as continuous operational improvement. You'll have demonstrable experience in both security governance and security operations. We are seeking an experienced leader with a minimum of five years in information security roles, such as Head of Information Security, Information Security Manager, IT Risk Manager or Security Operations Manager. The ideal candidate will have expertise with NIST CSF and other cybersecurity frameworks and experience of security risk and operations in an APRA-regulated or other highly regulated industry.. A strong background in IT and information security frameworks, risk management, disaster planning, and cryptographic protocols is essential for success in this role.
This would be a great career opportunity for someone who aspires to be a future Chief Information Security Officer (CISO).
Experience and qualifications we are looking for…Tertiary qualification in Computer Science, Information Systems or related fieldProven experience as an Information Security Manager, IT Risk Manager or similarExperience working in a highly regulated industry or an APRA-regulated organisationExperience with NIST CSF and other Cyber Security FrameworksOne or more of the following certifications: CISSP, CISM, CRISC, CISA, ISO 27001 LI/LAWhy us?
Guild Group is an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We pride ourselves on having an inclusive and productive workplace where we treat our people and our clients with fairness, dignity, and respect. We offer:Dynamic, innovative, and high-performing teamStaff discounts with leading retailersAn innovative Employee Assistance Program that provides counselling and support to all staff members and their immediate familyWellbeing initiatives such as health checks and skin checksHybrid working (we call this #Connect which reflects how we work remotely + in the office and = flexibility)Use the 'apply now' button to express your interest in this key role. We review applications as we receive them, so don't delay and apply immediately to be one of the first to express interest.
Should you have any questions, please feel free to email Jason at
We do not accept emailed applications, please apply via the 'apply now' button.
Advertised: 06 Sep 2024 AUS Eastern Standard Time
Applications close: 13 Sep 2024 AUS Eastern Standard Time
We will email you new jobs that match this search.
Ok, we will send you jobs like this.
The email address was invalid, please check for errors.
You must agree to the privacy statement Subscribe Recaptcha
Privacy agreement
Search results Position Location Closes
Melbourne (CBD) 13 Sep 2024
This is a great role for an aspiring CISO. You bring your security governance & security operations exp and we'll give you a great employer experience. Let's Thrive Together.
Current Opportunities Position Location Closes
Melbourne (CBD) 13 Sep 2024
This is a great role for an aspiring CISO. You bring your security governance & security operations exp and we'll give you a great employer experience. Let's Thrive Together. Guild Group
Conquest Recruitment Group - Melbourne, VIC
Westpac Banking Corporation - Melbourne, VIC
Promote local employment to your region, community or member organisation with a uWorkin Talent Community. Find out more .
#J-18808-Ljbffr
