Chief Information Security Officer

Overview

Geoscience Australia acknowledges the Traditional Custodians of Country throughout Australia and recognises the continuing connection to lands, waters and communities. We pay our respects to Aboriginal and Torres Strait Islanders Cultures, and to elders past and present.

About us Geoscience Australia is Australia's pre-eminent public sector geoscience organisation. We are the nation's trusted advisor on the geology and geography of Australia. We apply science and technology to describe and understand the Earth for the benefit of Australia. We apply our diverse professional expertise, our deep and trusted knowledge, our national-scale Earth observation infrastructure and our strong partnerships, to the opportunities and challenges that face our nation.

Our culture Our strength lies in our people, including our diversity in backgrounds, skills and experiences, and the way we work together to respond to the emerging needs of our work. We value diversity in gender, backgrounds, culture, and experiences of our employees and are committed to providing an inclusive workplace culture that ensures everyone has equal opportunity to contribute, participate and progress. Applications from people who reflect this diversity are encouraged.

Our workplace is committed to the health, safety and wellbeing of our employees and offers a variety of flexible working arrangements to enhance flexibility, including remote working arrangements.

What we can offer you When you work at Geoscience Australia you will have access to a range of benefits and the opportunity to experience a workplace culture that truly values and promotes diversity, inclusion, equity and belonging. More information on our competitive salary, free onsite parking, generous flexible working arrangements and the role you can play in growing our culture is available on our website.

Our team Security manages governance and operations across personnel, cyber and physical security. It is a multidisciplinary team of security professionals who identify, quantify and minimise risk in partnership with business owners. It monitors our security environment including detecting and responding to suspicious and malicious cyber security events and activities ensuring compliance with government standards.

The key duties of the position include

The Chief Information Security Officer provides strategic leadership, advice and oversight of our organisation's security posture. The role supports the Chief Security Officer and Chief Information Officer to identify, measure and make recommendations for minimising security related risks. The Chief Information Security Officer leads a multi-disciplinary team who embed security into decision-making, operations and manage compliance with the Protective Security Policy Framework (PSPF), Information Security Manual and Essential 8 strategies to mitigate cyber intrusions.

In this role you will:

- Lead a multidisciplinary team performing specialist personnel security and cyber security functions including managing security incidents and insider threat cases.
- Manage and be a key decision maker in our Insider Threat Program, in accordance with the requirements of the PSPF and Top Secret Privileged Access Standard.
- Foster a strong security culture through identifying and managing recommendations for treating security related risks in a complex operating environment.
- Lead the development and implementation of security project initiatives and programs to improve security maturity, resilience and compliance with mandatory government policies.
- Provide expert advice to the Executive and the Chief Security Officer that contributes to and supports our organisation's strategic direction on security strategy, operations and compliance.
- Maintain a high level of knowledge of the PSPF and other relevant government policy and report on compliance where applicable.
- Manage budget and resources efficiently in alignment with organisational priorities, agreed work plans and government policy.

To be successful in the role you will demonstrate:

- Proven leadership and ability to negotiate and engage with an Executive team, staff and stakeholders to achieve strategic objectives.
- Strong technical and communication skills including the ability to communicate highly complex matters in plain language.
- A pragmatic, solution-focused approach that links security to broader strategic objectives.
- A strong understanding of cyber security risks, controls and best practice frameworks and the ability to communicate risk in a complex environment.

Required skills, knowledge, experience and/or qualifications

- Highly desirable

- Certified Information Security Manager or Certified Information Systems Professional qualification (or equivalent).

- Experience leading a cyber security function in a complex operating environment.

- Demonstrated expertise in managing cyber security risks and controls, frameworks and practices.

- Strong communication and stakeholder engagement skills to foster a positive cyber security culture.

#J-18808-Ljbffr