Security Administrator - Full time permanent role - Sydney CBD as a base location Base salary of $75k plus super and NFP salary packaging benefits About the role This role is responsible for ensuring that Uniting has the right level of security controls in place to remediate Uniting's audit, risk and issue, and compliance requirements. This role is also responsible for ensuring that these controls are designed and operated effectively.
You will be an integral member of the Security team in the Technology Department through the following:
Establishes, manages and administers Uniting security policy and procedures. Identify security threats and minimise the risk of internal and external security threats. Implement and maintain Uniting's security strategy and roadmap. Identify security threats, risks and vulnerabilities and ensure the remediation of these is included in the security programme. Implement security initiatives to improve Uniting's security control environment. Perform security risk assessments of new and existing systems including the recommendation of mitigation strategies and designing practical business processes and technical solutions. Manage external security providers. Maintain Uniting's security risk register and security exemptions register, ensuring all risks and exemptions are current, relevant, appropriate and approved. Monitor the effectiveness of implemented controls to maintain compliance with Uniting's risk appetite and security policies. Investigate and remediate security incidents and breaches using the agreed Incident Response procedures. Monitor compliance with Uniting policies and procedures and investigate, assess and resolve incidents of non-compliance. Ensure all systems changes being planned meet or exceed Uniting's security requirements. Actively manage Uniting's Managed Security Service Providers (MSSP) to ensure they meet their agreed deliverables and service levels and review monthly reports. Update and maintain Uniting's policies to ensure they are current, relevant, ISO27k compliant and understandable. Provide both technical and non-technical advice on Security to internal and external stakeholders. Advise internal teams and third-party providers on security control requirements and improvements required. These Role accountabilities align with the following skills from the Skills Framework for the Information Age (SFIA): Information Security (SCTY) – level 5 Security Administration (SCAD) – level 5 Incident Management (USUP) – level 4 Information Assurance (INAS) – level 5 Specialist Advise (TECH) – level 4 in Information Security Business Risk Management (BURM) – level 5 About you in the role: As a staff member of Uniting you will celebrate diversity and welcome all people regardless of lifestyle choices, ethnicity, faith, sexual orientation or gender identity.
Individual leadership Improving performance - Works with others and offers suggestions to find ways of doing the job more effectively. Owning the job - Takes ownership for all responsibilities and honours commitments within their own role and strives to achieve goals with a "can-do" attitude to levels of excellence. Perseverance - Remains committed to completing the job in the face of obstacles and barriers. Timeliness of work - Sets achievable timeframes and works to complete projects, tasks and duties on time. Business Acumen Organisational Operation - Displays awareness of Uniting's business objectives and understands how personal objectives relate to those objectives. Organisational Objectives - Has broad awareness of Uniting's vision and values and how they apply to issues in the team. Develops and Grows the Business – Understands team and organisational goals and works collaboratively with Team Members to achieve organisational goals. Makes Sound Decisions – Analyses problems, seeks input from relevant people and then takes appropriate action to implement the most effective solution in a timely manner. Qualifications and experience Bachelor qualification in a relevant field or equivalent experience.
Typically, this role will require 6 or more years' experience in your field of expertise. You will have excellent written and verbal communication skills, be organised, systematic, thorough, accurate and disciplined. You will be continuing to develop in your area of expertise and be expected to provide innovative ideas to solve problems in your discipline. It is expected that you will be developing good skills at navigating a complex organisation, forging relationships, and managing through influence rather than direct authority as required.
Detailed working knowledge of NIST, ISO27001 and other Security Frameworks. Experience managing security vendors, partners and providers. Demonstrable experience in continuously improving the technology and services for which you are responsible. To apply, please send your CV and cover letter - applications reviewed upon receipt - apply today! What We Offer You A rewarding career with a leading human services organisation. Up to $18,550 NFP salary packaging available. Access to our U rewards program with exclusive discounts. Flexible work hours for work-life balance. Access to Fitness Passport – Live your best life. A supportive and inclusive and collaborative work environment. Opportunities for professional growth. Purchase of additional leave. When you're part of Uniting NSW.ACT, you're part of a diverse, purpose-led team of people who are really making a difference to the world around them. We contribute to the work and mission of the Uniting Church in NSW and the ACT through social justice advocacy, community services and spiritual care. We provide care and support for people through all ages and stages of life, with a focus on people experiencing disadvantage and vulnerability. Our purpose is to inspire people, enliven communities and confront injustice.
#J-18808-Ljbffr
