At Google, we have a vision of empowerment and equitable opportunity for all Aboriginal and Torres Strait Islander peoples and commit to building reconciliation through Google's technology, platforms and people and we welcome Indigenous applicants. Please see ourReconciliation Action Plan for more information.Note:
By applying to this position you will have an opportunity to share your preferred working location from the following: Sydney NSW, Australia; Canberra ACT, Australia.
Minimum qualifications:
Bachelor's degree in Cybersecurity, Computer Science, Risk Management, Auditing, a related field, or equivalent practical experience.
15 years of experience in a technical project management or a customer-facing role.
10 years of experience in information security, compliance, IT audit, or risk management.
Successful candidates will be required to obtain NV1 clearance under the Australian Government Protective Security Policy Framework (PSPF).
Preferred qualifications:
Existing NV2 clearance or above under the Australian Government Protective Security Policy Framework (PSPF).
Professional certifications including CISSP, CISA, CIPP, GIAC or related information security certifications.
Experience in implementation of large-scale cloud or software projects in corporate environments.
Experience translating regulatory and compliance requirements into operational and technical control objectives.
Knowledge of cloud security compliance and infrastructure.
Ability to drive complex programs across business and engineering teams with high collaboration and leadership.
About the job
As the Head of Regional Risk and Compliance (CISO Defence) Australia, you will be primarily responsible for managing the Defence Industry Security Accreditation Program (DISP) Uplift and begin the development of the Google Distributed Cloud (GDC) air-gapped security plan. In addition, you will be responsible for establishing and maintaining a comprehensive information security program that will allow to protect Defence Industry business and unblock agreements, by representing Google Cloud's security compliance posture to external parties.Google Cloud accelerates every organization's ability to digitally transform its business and industry. We deliver enterprise-grade solutions that leverage Google's cutting-edge technology, and tools that help developers build more sustainably. Customers in more than 200 countries and territories turn to Google Cloud as their trusted partner to enable growth and solve their most critical business problems.
Responsibilities
Partner with Public Sector Go-To-Market (GTM), customer security, risk and compliance functions to help them navigate the journey to cloud usage, remove blockers and address any concerns.
Manage, coordinate and facilitate security and compliance programs to ensure that Google Cloud meets regulatory and contractual requirements and compliance risks are managed.
Oversee the running of security operations which are used to process classified information.
Contribute to the identification of cloud related security and compliance design/development/deployment friction points from the customers perspective and collaborate across functional and product areas to resolve them.
Help shape Google Cloud security and compliance, and support the wider community of Google Cloud security and compliance professionals.
Google is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See alsoGoogle's EEO Policy andEEO is the Law. If you have a disability or special need that requires accommodation, please let us know by completing ourAccommodations for Applicants form.#J-18808-Ljbffr