Information Security and Compliance ManagerZircoDATA is one of Australia's leading providers of information management solutions to the Australian market. We provide a wide range of services including records management, paper storage, vital records archive storage, data protection services, document destruction and document translation. We are seeking an IT Security and Compliance Manager to oversee and coordinate information security activities.Key responsibilities of this role include:Implementing and delivering the objectives within the IS&D strategy and further enhancing the security programs that identify and address privacy risks, systems, and security requirements.Coordinating the process of gathering, analysing & assessing the current & future information security and privacy threats to the company.Maintaining, monitoring, and improving the information security best practices/posture as they evolve.Specific responsibilities of this role include:Collaborating with the IS&D director and senior managers to enhance the information security program, addressing risks and compliance requirements.Assessing current and future threat landscapes, providing realistic risk and threat overviews to the IS&D director.Leading and preparing institutional Information Security and External IT audits.Monitoring, enforcing, and reporting on compliance with security policies and stakeholder requirements.Reviewing and updating policies, procedures, and audit logs for efficiency and regulatory compliance.Coordinating security incident management, including detection, response, and reporting.Managing IT Security Assurance Plans, operational effectiveness, and security tools in collaboration with IT teams and providers.Partnering with internal teams to maintain a secure and robust IT environment.Driving cyber security awareness programs and maintaining ISO27001 certification.The successful candidate will have the following qualifications, skills and traits:Bachelor's degree in IT, Computer Science, or equivalent experience, with industry certifications (e.g., ISACA, ISC2, GIAC, EC Council).5+ years of experience in information security, including developing policies and plans.Expertise in digital/technology transformations, security platforms, and tools (e.g., SIEM, vulnerability assessment, threat intelligence, GRC).Strong knowledge of ICT infrastructure, cloud-based services, and security standards (e.g., ISM, PSPF, NIST CSF, Essential 8).Proficient in system security testing, project management methodologies, and Microsoft applications.Effective communicator, capable of simplifying complex ideas for diverse audiences.Skilled in influencing, persuading, and driving consensus without direct authority.Experience collaborating across all organisational levels and 3 lines of defence to strengthen operational risk frameworks.Deep understanding of IT Security risk management and its role in ORMF and related processes.Proven accountability, professionalism, and teamwork, with a focus on delivering high-priority outcomes.Ability to work independently, develop objective views on IT Security risks, and partner effectively with senior leaders.Please Note:A National Criminal Record Check will be conducted on the successful applicant and must return a result that is satisfactory to ZircoDATA.Your application will include the following questions:How many years' experience do you have as a Security and Compliance Manager?Do you have a current Police Check (National Police Certificate) for employment?Which of the following statements best describes your right to work in Australia?What's your expected annual base salary?How much notice are you required to give your current employer?
#J-18808-Ljbffr