Head of Information Security

Head of Information Security

**Head of Information Security**

**Job Number**:
493552

**Work type**:
Full Time Permanent

**Location**:
Melbourne (CBD)

**Categories**:
Technology

**Head of Information Security**

**About the role...**

Reporting to the Chief Information Officer you will be part of our Group Technology function at Guild Group. The Head of Information Security ensures the Guild Group has the necessary cyber and information security (people, process and technology) policies, standards, controls/controls assurance and operating procedures in place to appropriately protect its' information assets, achieve compliance with all applicable regulations and ensure that Guild Group cyber, and information security risk is managed in line with risk appetite.

**Key Responsibilities**:

- **Strategic Planning and Execution**:Establish and manage the execution of the agreed cyber and information security maturity/capability uplift strategy and roadmap to achieve the agreed NIST targets through use of vendor partners (where appropriate) and/or internal staff.
- **Leadership and Mentorship**: Guide and mentor the security team, aligning their efforts with business goals.
- **Policy Management**: Review, update, and enforce information security policies, standards, and procedures.
- **Compliance Monitoring**: Ensure adherence to security policies, procedures, and regulatory requirements.
- **Stakeholder Engagement**: Represent the organisation in discussions with the board, executives, and stakeholders on security policies, risk management, and compliance.
- **Business Integration**: Embed security practices into business processes and projects to mitigate risks effectively.
- **Risk Assessment**: Conduct thorough cyber and information security risk assessments, identifying emerging threats and their potential impact.
- **Risk Mitigation**: Develop and implement plans to mitigate risks, enhancing our capabilities in line with NIST CSF maturity targets.
- **Incident Response**: Maintain an effective cyber incident response capability, regularly testing its efficacy.
- **Controls Assurance**: Oversee the cyber and information security risk controls assurance framework, managing activities and resolving actions from audits and testing.
- **Vendor Management**: Manage key security vendor partnerships to maximise strategic value and ensure SLA compliance.
- **Operational Oversight**: Lead in-house security operations, fostering a culture of continuous improvement.
- **Support and Education**: Assist information asset owners with vendor compliance and engage employees to enhance the organisation's cyber security culture.

**About you...**

This would be a great career opportunity for someone who aspires to be a future Chief Information Security Officer (CISO).

**Experience and qualifications we are looking for...**
- Tertiary qualification in Computer Science, Information Systems or related field
- Proven experience as an Information Security Manager, IT Risk Manager or similar
- Experience working in a highly regulated industry or an APRA-regulated organisation
- Experience with NIST CSF and other Cyber Security Frameworks
- One or more of the following certifications: CISSP, CISM, CRISC, CISA, ISO 27001 LI/LA

**Why us?**

Guild Group is an equal-opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We pride ourselves on having an inclusive and productive workplace where we treat our people and our clients with fairness, dignity, and respect. We offer:

- Dynamic, innovative, and high-performing team
- Staff discounts with leading retailers
- An innovative Employee Assistance Program that provides counselling and support to all staff members and their immediate family
- Wellbeing initiatives such as health checks and skin checks
- Hybrid working (we call this #Connect which reflects how we work remotely + in the office and = flexibility)

**Advertised**: 06 Sep 2024 AUS Eastern Standard Time
**Applications close**: 13 Sep 2024 AUS Eastern Standard Time

Job ID 493552