Cyber Threat

**Be the inventor and enabler of our business**
Where else will you get the chance to build products from scratch? Products that impact the lives of millions of people in the everyday. At Cuscal, our tech team are the hands and heart for what we do best. They’re the inventors, the creators, the enablers of our business. They turn ideas into reality. They test. They refine. They perfect.

Instead of being pigeon-holed, you’re supported to follow your ideas and bring them to life. But you don’t need to be a payments nerd to thrive here. You just need to be curious. You need to be motivated. And you need to be inspired to do bigger, better.

**We are looking for a Cyber Threat & Vulnerability Specialist to join our growing Technology team.**

**About The Role**
I In this newly created role, as a Cyber Threat & Vulnerability Specialist you will have the opportunity to help and support Cuscal in developing and implementing key security controls to improve current security maturity within the Enterprise Technology Services, to support large complex projects. You will play a crucial role in helping understand our client’s security requirements and deliver next generation of services.
- Key responsibilities include_
- Establish and subsequently manage the threat & vulnerability management program, including developing the framework, policy, processes, and procedures.
- Providing security expertise on multiple client engagements, managing large technical programs, developing, coordinating, and delivering all aspects of customer IT security needs.
- Identify and communicate current and emerging security threats.
- Assist in designing security architecture elements to mitigate threats as they emerge.
- Implementing security controls in corporate ICT environments using systems engineering methodologies.
- Identify security design gaps in existing and proposed solutions and recommend changes or enhancements.
- Test security systems to ensure they behave as expected.
- Regularly communicate vital information, security needs and priorities to management.
- Facilitating workshops and review sessions with stakeholders to manage their feedback and expectations.
- Provide incident response support as required
- Provide risk-based recommendations for remediation activities

**Essential**
- At least 3 years of experience in Information Security coupled with tertiary qualifications in Information Technology/IT Security or a related discipline.
- A hands-on can-do team player.
- Successfully managed security vulnerability management solutions in production environments.
- Be able to navigate the challenges of a varied role in a dynamic organisation.
- Ability to identify tasks and activities required to meet project requirements and to set goals and priorities in line with business objectives.
- A high standard of presentation, customer service and strong interpersonal skills.
- Experience in implementing and aligning to industry security standards (PCI, ISO, ASD E8, COBIT, and APRA etc.)
- Ability to define processes and document procedures (essential).
- Understanding of industry security architecture frameworks and methodologies.

**Desirable**:

- Payments industry, ATM/EFT/POS technology, cards and finance or other regulated industries and/or 24x7 mission-critical environments.
- Knowledge of security frameworks and standards such as ISO 27001, NIST, ASD Essential 8 etc.
- Understanding of legal and regulatory privacy and security matters associated with the Banking and Finance Industry.

**Why Cuscal?**
We are in the rapidly evolving world of payments, and we are committed to providing a diverse and inclusive workplace where the very best talent in Australia chooses to work. We support our colleagues with flexible work arrangements through our hybrid model whilst also offering a wide range of educational, financial, lifestyle, health & wellbeing benefits.

**Next Step**
- ._