Manager - Cyber Security - Sydney

Whitehaven Coal is the dominant player in Australia’s only emerging high quality coal basin. With a culture based on our values of Safety, Teamwork, Respect, Integrity, Value and Excellence, our reputation for excellence in project delivery and safe, efficient and environmentally responsible operations continues to grow.

About the Role
The Manager Cyber Security plays a central role in maintaining and building a solid security posture to protect our company's digital assets. Key responsibilities include planning, establishing, maintaining and enforcing security policies, security technologies and architecture and developing plans to mitigate and respond to cyber threats and attacks. The role requires a deep understanding of security principles, frameworks, regulations, cyber operations and technical expertise. The ability to advise and collaborate with IT teams, OT teams and the broader business on Cyber security matters is crucial, as is the ability to effectively manage several external specialist Cyber Vendors.
This is a Sydney CBD based role and occasional site visits and travel to Brisbane, Newcastle and our regional mine sites will be required, as part of managing key relationships and projects.

What You’ll Do
- Cybersecurity Planning - In both Information technology (IT) and Operating Technology (OT), identify and assess potential security risks, vulnerabilities and threats and implement measures to address them. Remain current with the latest trends, emerging threats and the newest security technologies. Monitor Vendor security offerings and continuously challenge the status quo regarding existing technologies and partners
- Security Operations - manage security operations to ensure a laser focus on the detection, response and implementation of corrective cyber security actions. This includes managing the critical tasks of our Cyber partners, including the external Security operations centre (SOC)
- Compliance and Regulatory - ensure compliance with relevant cyber security laws. Maintain security policies, procedures and guidelines in line with industry best practises
- Vendor and Third-Party Management - Assess the security posture of our key Vendors and third-party partners and monitor their compliance with security requirements. Collaborate with the legal and procurement teams to include security requirements in contracts and agreements
- Security Awareness and Training - promote a strong security culture through regular awareness campaigns, training and actual life simulation events
- Incident Response and Business Continuity - develop and test incident response and disaster recovery plans in the event of a security breach or catastrophic event
- Monitor and Report on the maturity and performance of Cyber Security delivered through agreed metrics (SLAs, KPIs). Ensure key suppliers are actively managed and monitored
- Manage operational and capital budgets related to Cyber Security
- Develop action plans and projects to improve our cyber posture. Engage and manage external suppliers that can help deliver these cyber improvements
- Lead a team of IT Cyber professionals, including external suppliers and contractors

What You’ll Bring
- Minimum 10 year’s experience in Cyber Security
- Cyber Security, Computer Science or IT-related degree
- Extensive experience in operating, managing and supporting Cyber Security in a complex IT and OT environment
- Experience with security technologies such as firewalls, IDS/IPS, SIEM, DLP, endpoint protection
- Strong understanding of Information security principles, best practices and frameworks (ISO27001, NIST, Essential 8)
- Industry certifications such as CISSP, CISM or GIAC are highly desirable
- Proven track record of leading and managing security incidents and resolving complex security issues
- Experience with outsourced Cyber services and the management of these services
- Ability to get ‘hand on’ when required with simple fixes and problem-solving
- Commitment to continuous service improvement.
- Strong communication, influencing and negotiation skills
- Extensive stakeholder management skills
- Well-developed organisational skills and the capacity to be flexible in balancing priorities

Why Whitehaven Coal?
- Career Development, Mentorship and Coaching
- Full Relocation Packages available if not in Sydney
- Access to Salary Packaging Including Novated Leasing
- Salary Sacrifice Opportunities
- Employee Referral Scheme - $4000 for Successful Referrals
- 26 Weeks Paid Parental Leave

Whitehaven Coal is committed to increasing the representation of women and Aboriginal and Torres Strait Islander peoples in the workplace. We are striving for an inclusive workplace that brings people from diverse backgrounds and welcomes applicants of diversity of gender, culture and experience.
Whitehaven Coal is an endorsed Circle Back Initiative Employer.
To be considered for this position you must have the right to work in Australia.
Reward. Opportunity. Re