About the job Cyber security specialist
Job Description for Cyber Security Specialist in Melbourne/Sydney
A minimum of 10 years of experience in cyber security roles within major organizations, focusing on management of governance, risk, and compliance.
Relevant industry certification(s) such as CISSP, CISM, CRISC, CISA, ISO/IEC 27001 Lead Implementer/Auditor and/or relevant industry experience
Comprehensive understanding of industry-wide security standards and compliance frameworks such as ISO/IEC 27001, NIST, PCI DSS, HIPAA, GDPR etc.
Significant experience in the development and implementation of information security management systems, policies, and standards.
Significant experience in the development and implementation of security control assurance programs.
Significant experience in the development and implementation of supply chain risk assessment frameworks.
Demonstrated familiarity with contemporary security technologies and products.
Specific accountabilities for this role include:
· Support the delivery and continuous improvement of the Information Security Management System (ISMS), including governance policies, standards, and processes, to ensure that cyber security risks are appropriately managed.
· Conduct Cyber security self-assessment and controls assurance exercises designed to assess whether key controls are operating effectively and consistently, including auditing of internal cyber security controls and assessment of 3rd party/supply chain risk exposure.
· Undertake Cyber security risk advisory or strategy services designed to identify, evaluate, report on, and remediate cyber security risk.
· Cyber security risk management and reporting.