3 Easy Steps

  • 1Search for courses by Study Area, Level and Location
  • 2We deliver you all the matched results
  • 3Choose one or more course providers to contact you
Industry

Distance from location (kms)

Exact 5 10 25 50 100

Posted since

All 2 Days 1 Week 2 Weeks 1 Month

Sort results by

Relevance Date

28

May

Head Of Cyber Strategy & Governance

UNSW - Sydney, NSW

IT
Source: uWorkin

JOB DESCRIPTION

This Job is based in Australia

  • Continuing role
  • Attractive salary


Position Summary

The Head of Cyber Security Strategy and Governance is responsible for the development, delivery and oversight of enterprise-wide cybersecurity practices, cybersecurity policies, procedures, compliance and strategy in line with direction set by the Chief Information Security Officer (CISO) / Director of Cyber Security. This will include the development of strategies to assure the protection of corporate information and assets from attacks, unauthorised access, misuse, disclosure, interruption or alteration in order to maintain the confidentiality, integrity and availability of information. The role requires broad strategic thinking and significant engagement with the senior stakeholders across the University.

The Head of Cyber Security Strategy and Governance reports directly to the Director Cyber Security | CISO.

Specific Accountabilities For This Role Include
  • Manage the delivery and continuous improvement of the Information Security Management System (ISMS), including governance processes, policies, standards, and procedures, to ensure that cyber security risks are appropriately managed.
  • Provide strategic leadership and advice in the development and execution of cyber security strategies and roadmaps designed to manage the University’s exposure to cyber security risks.
  • Manage key relationships with senior University stakeholders and align governance practices with relevant University-wide stakeholders (HR, Fin, Proc, Risk, Legal, Etc..)
  • Manage the delivery and continuous improvement of:
    • Cyber security risk advisory services designed to identify, evaluate and report on cyber security risk.
    • Cyber security controls assurance services designed to assess whether key controls are operating effectively and consistently, including auditing of internal cyber security controls; assessment of 3rd party/supply chain risk exposure; and penetration testing of ICT systems and infrastructure.
    • Cyber security risk reporting, and associated compliance metrics.
    • Cyber security risk awareness and education services.
  • Manage the recruitment, performance, and development of a team of high performing experienced cyber security professionals
  • Manage the procurement and delivery of managed security services
  • Coordinate and support the independent audit of cyber security controls
  • Collaborate with the Enterprise Security Architect and other stakeholders


Skills And Experience
  • A minimum of 10 years of experience in cyber security roles within major organisations, focusing on management of governance, risk and compliance.
  • Relevant industry certification(s) such as CISSP, CISM, CRISC, CISA, ISO/IEC 27001 Lead Implementer/Auditor and/or relevant industry experience (highly desirable)
  • Experience with industry-wide security standards and compliance frameworks such as ISO/IEC 27001, NIST, PCI DSS, HIPAA, COBIT 5, GDPR etc.
  • Demonstrated familiarity with contemporary security technologies and products.
  • Excellent communication and strong, demonstrable leadership skills, with the ability to handle high demand situations with management and key stakeholders.
  • Ability and capacity to direct and monitor the implementation and effectiveness of strategic programs of work.
  • Demonstrated ability to lead and influence other senior technical and business stakeholders, without these people being direct reports.
  • Strong analytical and problem-solving skills, ensuring that the underlying problem is understood, and a robust approach / solution is developed.

Please apply online (CV + Cover letter – the completion of the selection criteria is not required) applications will not be accepted if sent to the contact listed.

Contact

Ralph Hitti, Talent Acquisition Consultant
E: ralph.hitti@unsw.edu.au
Applications close: 6th June 2021, 11:55pm

Find out more about working at UNSW at your Faculty/Division web address

UNSW is an equal opportunity employer committed to diversity