Manager - Protective Security Risk Threat & Vulnerability Location:Melbourne
Posted Date: 25/03/2024
Who is Araza:
Araza is a leading Australian based consulting and services organisation. We partner with our clients to improve their business performance through the implementation and delivery of business and technology projects.
Our people are our biggest asset and we want to continue building on our success.
At the beginning of the business in 2013, it was our mission to build an IT consulting firm that was GREAT.
In 2024 we are still working hard at being great. With more than 300 consultants Australia wide (and counting), we are proud to be a consulting firm that is growing fast, focused on outcomes and still in touch with our values.
Manager, Protective Security Risk Threat & Vulnerability
Location: Melbourne
Role Responsibilities:
# Provide risk, threat, and vulnerability management subject matter expertise to support the CISO and Protective Security Team, across all areas of protective security – governance, personnel, information and physical.
# Direct and oversee the management of Protective Security Risk, Threat, and Vulnerability Management Team responsible for day-to-day protective security risk, threat, and vulnerability management advice. For example, day-to-day operations includes risk assessments, third party risk assessments and threat and vulnerability management, risk register, treatment plans etc.
# Manage and implement an effective protective security risk, threat and vulnerability management plan, schedule, and roadmap, including stakeholder engagement and support, processes, and documentation.
# Management and implement protective security risk, threat, and vulnerability deliverables – e.g. internal and external audit items, Protective Security Implementation Plan deliverables annual PSPF Self-assessment and ASD Cyber Survey.
# Preparation of executive level presentation packs, briefings, papers and reports to various internal and external governance bodies and stakeholders.
# Develop, oversee, and review protective security policies, procedures, processes, guidelines, forms and templates relating to protective security and day to day protective security operations.
# Identify vulnerable processes and systems and provide advice and support for the remediation of security risk and reduce exposure to security threats to support the rollout of new assets.
# Engage with and work collaboratively with stakeholders across the Bureau and externally, in relation to risk, threat and vulnerability management obligations, e.g. PSPF and ASD Cyber Survey (Essential 8).
# Other relevant tasks, as required.
Key Experience:
# A degree or diploma of an Australian educational institution, or a comparable overseas qualification, which is appropriate to the duties; OR other comparable qualifications, which are appropriate to the duties.
# Security specific certifications appropriate to the duties – e.g. CISM, CISSP, CRISC.
# Have or, be able to obtain and maintain a Baseline Security Clearance.
# Extensive experience in protective security risk, threat, and vulnerability management, including senior management of a risk, threat, and vulnerability management team.
# Extensive working knowledge and application, including control application, of protective security under the Protective Security Policy Framework (PSPF), Essential Eight and Information Security Manual (ISM) – governance, personnel, information, including cyber and physical.
# Ability to travel, as required.
# Experience working within government is highly desirable.
What You Get
A company that cares for their people. It's that simple. You will work with truly talented switched on and collaborative team members that help each other to succeed. We promote gender equality and are a national leader in diversity.
Our people are our biggest asset, so in 2024 we want to continue to build on our success. Who wouldn't want to be a part of a company that is consistently recognised as a leader in the ICT field?
- 2022 CRN Impact Awards - Emerging Innovator Winner
- 2020 Financial Review Fast 100
- 2020 Financial Times High-Growth Companies Asia-Pacific
- 2020 AWSN Women in Security Awards - Best Place to Work for Women in Security Finalist
- 2019 EY Winning Women Program Winner
- 2019 Cisco Diversity Initiative Award Winner
We thank you in advance for your application and advise that only candidates that meet the position requirements and have Australian full working rights will be contacted.
#J-18808-Ljbffr
