Business Information Security Manager
4 weeks ago
Overview
The Business Information Security Officer (BISO) plays a critical role in leading the cyber and information security strategy for all Gallagher divisions in Australian and New Zealand (ANZ). Reporting to the Global Chief Information Security Officer (CISO), the BISO will work closely with divisional leaders, the Global Cyber and Information Security team, and other key stakeholders to identify, assess, prioritize, and manage information security risk within the region.
Key Responsibilities:
- Provide guidance to divisional CIOs and the Global CISO on existing divisional security gaps, associated risks, and prioritization of remediation activities.
- Coordinate with the Global Cyber and Information Security team, divisional IT Compliance Leads, and other divisional BISOs to ensure a consistent approach is followed during execution of information security processes and procedures.
- Raise awareness to technology and business application owners about relevant application security processes and provide oversight and assurance the division's application inventory is accurately captured and inventoried.
- Work with the SOC & Incident Response Team to assist in coordinating the overall response and recovery activities for security incidents that impact the division.
- Verify and distribute divisional cybersecurity metrics to the Global CISO, divisional CIOs, and executive teams around key divisional IT security and performance indicators.
- Ensure alignment with and promote the Global IT & Security Policy Manual (GITSPM), and corporate and regional standards, liaising between the divisions, enterprise cyber security team, and technology leads.
- Ensure all applicable regulatory, legal, compliance, and contractual obligations are properly interpreted and continuously met by the security program.
- Stay abreast of external requirements, trends, and best practices.
- Support the divisions and global CISO in seeking budget optimization by ensuring program costs and value are properly balanced.
- Drive divisional participation in global training and awareness campaigns for information security and data governance requirements.
- Work with the core business platform teams to help develop secure business requirements and security architecture that will integrate into the enterprise-level and divisional information security strategies and objectives.
- Provide divisional guidance through the identification, tracking, and remediation of divisional information security risks or other audit/regulatory findings.
- Counsel divisional IT management on security requirements for acquisitions and mergers and the vetting and procurement of new applications and technology platforms.
- Maintain an effective IT due diligence vendor risk management assessment program.
- Guide divisional IT software development and application teams in the use of GCIS application security tools for tracking and correcting vulnerabilities and code weaknesses.
- Acting as the CISO in region for satisfying Federal and State Government security requirements, ensuring updates to the ISM are implemented in a timely fashion.
- Take responsibility for Compliance Operations, including audit preparation and liaison with internal and external auditors, including internal FAIR assessments and external government IRAP assessments as needed.
- Support the Head of Global ISMS in the adoption of ISO27001 best practices across all ANZ divisions, contributing to the running of Division Cyber Committee meetings in region.
About You
Required:
- Minimum of 8 years or more year of experience in information security leadership role.
- Bachelor's Degree in Business, Information Technology, Computer Science, Engineering, related technical degree, or equivalent experience.
- Experience with international security and IT control standards and frameworks (ISO27001, GDPR, PCI-DSS, NIST, COBIT, COSO) and national security standards (APRA, ISM, NZISM etc).
- CISA, CISM, CISSP or equivalent IT security related certification (or willingness to pursue).
- Strong understanding of information security risk management methodologies and regulatory requirements pertaining to information security, and/or data security.
- Ability to manage multiple complex priorities and competing agendas.
- Ability to interpret and apply policies and regulations across a large, complex business.
- Knowledge in cloud computing platforms and capabilities.
- Demonstrated leadership of multiple projects or a portfolio of projects with cross-functional stakeholder groups.
Desired:
- Analytical aptitude with an emphasis on investigative, methodical critical questioning and logical thinking; a data-driven decision maker.
- Australian citizen either holding a AGSVA baseline clearance or the ability to gain this mandatory security clearance.
Compensation and Benefits
On top of a competitive salary, great teams, and exciting career opportunities, we also offer a wide range of benefits. Below are the minimum core benefits you'll get, depending on your job level these benefits may improve:
- 4 weeks annual leave plus up to 2 weeks additional purchased Lifestyle Leave.
- Novated Leasing opportunities.
- Two paid volunteer days annually.
- Health Insurance Discounts with our Group Insurance Plan.
- Employee Stock Purchase Program.
- Paid parental leave.
Other benefits include:
- Flexible and hybrid work arrangements.
- Mental Health and Wellbeing Support for yourself and immediate family members.
- Employee Recognition Awards and Service Milestone Recognitions.
- Peer Support Program.
- Annual flu vaccinations.
- Access to Reward Gateway – discount offers at over 350 retailers.
Location
This position can sit in Sydney, Melbourne, Brisbane, Adelaide, Perth, and Auckland.
-
Business Information Security Manager
4 weeks ago
Brisbane, Queensland, Australia Gallagher Full timeAbout the RoleThe Business Information Security Officer (BISO) plays a critical role in leading the cyber and information security function for Gallagher divisions in Australia and New Zealand (ANZ). Reporting to the Global Chief Information Security Officer (CISO), this position is responsible for managing the APAC GCIS team in supporting enterprise-level...
-
Business Information Security Officer, ANZ
1 month ago
Brisbane, Queensland, Australia Gallagher Full timeAbout the RoleGallagher is seeking a highly skilled Business Information Security Officer to lead our cyber and information security efforts in Australian and New Zealand. As a key member of our global security team, you will be responsible for managing information security risk, developing and implementing security strategies, and ensuring compliance with...
-
Business Information Security Leader for APAC
2 weeks ago
Brisbane, Queensland, Australia Gallagher Full timeAbout the RoleAs the Business Information Security Officer for APAC, you will play a pivotal role in shaping Gallagher's cyber security strategy and leading the execution of information security processes and procedures. Reporting to the Global Chief Information Security Officer (CISO), you will be responsible for managing the APAC GCIS team in supporting...
-
Business Information Security Officer, ANZ
4 weeks ago
Brisbane, Queensland, Australia Gallagher Full timeAbout the RoleThe Business Information Security Officer (BISO) is a critical role within Gallagher, responsible for leading the cyber and information security strategy for all divisions in Australian and New Zealand. This position reports to the Global Chief Information Security Officer (CISO) and works closely with divisional leaders, technology teams, and...
-
Business Information Security Officer, ANZ
4 weeks ago
Brisbane, Queensland, Australia Gallagher Full timeAbout the RoleThe Business Information Security Officer will serve as the cyber and information security leader for all Gallagher divisions in Australian and New Zealand. This role will manage the APAC GCIS team in supporting both enterprise-level and divisional information security strategies, objectives, and obligations.Key ResponsibilitiesProvide guidance...
-
Strategic Information Security Business Analyst
2 weeks ago
Brisbane, Queensland, Australia Talent International Full timeTalent International is seeking a skilled Business Information Security Analyst.This exciting Information Security Program position focuses on ensuring the alignment of business processes with information security standards.Key Responsibilities:Analyse and document business requirements for ISO 27001 certification projects.Collaborate with stakeholders to...
-
Senior Business Information Security Analyst
3 weeks ago
Brisbane, Queensland, Australia Talent International Full timeWe are seeking a highly skilled Business Analyst to join an exciting Information Security Program with a leading QLD-based commercial organisation. The successful candidate will play a pivotal role in analysing and documenting business requirements for ISO 27001 compliance, with the potential to support additional compliance initiatives, including SOC 2.The...
-
Senior Information Security Business Analyst
1 week ago
Brisbane, Queensland, Australia Talent International Full timeInformation Security Business AnalystThe successful candidate will play a pivotal role in analysing and documenting business requirements for ISO 27001 compliance.Key Responsibilities:Analyse and document business requirements for ISO 27001 certification projects.Collaborate with stakeholders to ensure that project objectives align with business...
-
Senior Information Security Business Analyst
4 weeks ago
Brisbane, Queensland, Australia Talent International Full timeWe are seeking a highly skilled Business Analyst to join an exciting Information Security Program with a leading QLD-based commercial organisation. The successful candidate will play a pivotal role in analysing and documenting business requirements for ISO 27001 compliance, with the potential to support additional compliance initiatives, including SOC 2.Key...
-
Senior Business Information Security Specialist
2 weeks ago
Brisbane, Queensland, Australia Talent International Full timeBusiness Analyst Job DescriptionWe are seeking a highly skilled Business Analyst to join our Information Security Program with Talent International. The successful candidate will play a pivotal role in analysing and documenting business requirements for ISO 27001 compliance, with the potential to support additional compliance initiatives, including SOC 2.Key...
-
Information Security Specialist
6 days ago
Brisbane, Queensland, Australia Talent International Full timeAbout the Role:We are seeking a seasoned security professional to support strategic solutioning across key security and compliance projects.This role focuses on aligning initiatives with critical security standards and certifications, ensuring that security architecture meets both regulatory and business requirements.You will be a trusted advisor, guiding...
-
Information Security Officer
4 weeks ago
Brisbane, Queensland, Australia FCM Travel Full timeJob DescriptionAt FCM Travel, we're seeking a highly skilled Information Security Officer to lead our Security, Compliance, and Assurance activities globally. As a key member of our team, you'll be responsible for managing security risks, implementing compliance and assurance programs, and ensuring the security of our organization's information assets.Key...
-
Senior Information Security Manager
3 weeks ago
Brisbane, Queensland, Australia Queensland Government Full time**Job Summary**The Queensland Government is seeking an experienced Senior Systems Integrity Officer to lead IT security, governance, and risk management initiatives within the Architecture and Planning branch in the Technology and Analytics Division.Key Responsibilities:Lead in IT security, governance, audit, and risk management initiativesImplement and...
-
Information Security Specialist
1 month ago
Brisbane, Queensland, Australia FCM Travel Full timeJob Title: Information Security OfficerAt FCM Travel, we're committed to creating a secure and compliant environment for our customers and employees. We're seeking an experienced Information Security Officer to lead our security, compliance, and assurance activities.Key Responsibilities:Develop and implement a comprehensive security risk management program...
-
Information Security Leadership Role
1 day ago
Brisbane, Queensland, Australia FCM Travel Full timeAbout Flight Centre Travel GroupAt FCM Travel, our purpose is to provide unparalleled travel experiences for our customers. We strive to be a leader in the industry by offering innovative solutions and exceptional service.Job SummaryWe are seeking an experienced Senior Information Security Specialist to join our team. As a key member of our security...
-
Senior Information Security Specialist
2 weeks ago
Brisbane, Queensland, Australia FCM Travel Full timeAbout the Role:We are seeking a highly skilled Senior Information Security Specialist to join our team at FCM Travel. As a key member of our security operations team, you will play a crucial role in identifying and managing business risks in support of our growth objectives.Key Responsibilities:Engage in complex and challenging projects to maintain the...
-
Senior Information Security Specialist
4 weeks ago
Brisbane, Queensland, Australia FCM Travel Full timeAt FCM Travel, we're committed to creating a secure environment for our customers and employees. As a Senior Information Security Specialist, you'll play a crucial role in identifying and managing business risks to support our growth objectives.Key Responsibilities:Engage in complex projects to maintain the confidentiality, integrity, and availability of FCM...
-
Senior Information Security Specialist
3 weeks ago
Brisbane, Queensland, Australia FCM Travel Full timeAt FCM Travel, we're committed to creating a secure environment for our customers and employees. As a Senior Information Security Specialist, you'll play a crucial role in identifying and managing business risks in support of our growth objectives.Key Responsibilities:Engage in complex and challenging projects to maintain the confidentiality, integrity, and...
-
Senior Information Security Specialist
4 weeks ago
Brisbane, Queensland, Australia FCM Travel Full timeAt FCM Travel, we're committed to creating a secure environment for our customers and employees. As a Senior Information Security Specialist, you'll play a crucial role in identifying and managing business risks to support our growth objectives.Key Responsibilities:Engage in complex projects to maintain the confidentiality, integrity, and availability of our...
-
Senior Information Security Specialist
2 months ago
Brisbane, Queensland, Australia FCM Travel Full timeAbout the RoleWe are seeking a highly skilled Senior Information Security Specialist to join our team at FCM Travel. As a key member of our security operations team, you will play a critical role in identifying and managing business risks to support our growth objectives.Key ResponsibilitiesEngage in complex projects to maintain the confidentiality,...
