Information Security Manager

**About us**

Founded in 2017, Q-CTRL has grown to become the global leader in quantum. We’re using control to solve the hardest problems facing quantum technology, improving hardware performance and accelerating pathways to useful quantum computers and other technologies. As a product-led company, we bring together diverse teams such as product, design, engineering and research to help achieve our mission of making quantum technology useful. Join us to help shape the quantum future.

**As one of the fastest growing companies in the quantum sector, we’ve had a number of key milestones**:

- In November 2023, we announced an industry-first partnership with IBM Quantum Services, natively integrating our performance management software with all IBM quantum computers. Building off of this relationship, in September 2024 we started offering two services via IBM’s new Qiskit Functions Catalog as an inaugural partner.
- Designed and moved our Global HQ offices and lab space into the first purpose-built (and award winning) commercial and research facility for a quantum technology company in Australia.
- Continued to deliver real world outcomes across the quantum sectors, with our work with Australian Defence on software-ruggedized quantum sensing for navigation without GPS, as featured in the New York Times.
- In October 2024, we announced our record breaking expansion of our Series B funding round to USD $113M, with $59M USD of new capital.
- Grew our global presence to include Los Angeles, Berlin, and Oxford - as well as the recently announced office in San Francisco.

From educating the workforce on how quantum computing works, to building the next generation of quantum sensors, to delivering massive performance gains for end-users, it all starts with hiring the right talent. If you want to help us build the Quantum future, read on.

**About the role**

The Information Security Manager is a newly created role responsible for the management of Q-CTRL’s rapidly growing Information Security Management System (ISMS). Having already attained ISO 27001 and Cyber Essentials certifications, NIST 800-171 compliance, and DISP membership, Q-CTRL is looking for a highly process-driven and detail-oriented individual to maintain its high levels of security governance, risk management, and compliance. This is a pivotal role accountable for continuously improving Q-CTRL’s overall security posture, maintaining the trust, and exceeding the expectations, of our partners and customers.

**What you’ll be doing**:
- Developing and maintaining information security policies and procedures.
- Implementing and maintaining frameworks and standards.
- Conducting risk assessments to identify and mitigate threats.
- Monitoring and responding to security incidents.
- Leading internal and external audits and compliance reviews.
- Managing and supporting security awareness training for all staff.
- Conducting vendor security reviews.
- Managing and supporting vendor access reviews.
- Supporting business continuity planning and disaster recovery efforts.
- Collaborating with stakeholders across all departments to ensure they are fulfilling their security obligations.
- Staying current with the latest security trends, threats, and Q-CTRL’s legal, regulatory, and contractual requirements.
- Reporting regularly to senior leadership on Q-CTRL’s security posture and continuous improvement initiatives.

**Ideally you’ll have**:
- Experience with ISO/IEC 27001:2022, NIST 800-171, Cyber Essentials and/or DISP.
- One or more relevant ISO/IEC 27001:2022 certifications from BSI, including Requirements, Awareness, Briefing, Implementation, Lead Implementer, Internal Auditor, Lead Auditor, and/or Risk Management.
- One or more relevant certifications from ISC2, including Security Administrator, Cloud Security, Governance, Risk and Compliance, Secure Software Development, Security Architecture, Security Engineering, and/or Security Management.
- A Negative Vetting 1 (NV1) security clearance issued by the Australian Government Security Vetting Agency (AGSVA), or the eligibility and suitability to obtain one.

**It would be fantastic if you have these skills/experience but not essential**:
- Experience with ISO 9001, SOC 2 and/or GDPR.
- Experience using Vanta to manage compliance.

**Why Q-CTRL?**

**Flexibility**: We embrace workplace flexibility so you worry more about your impact vs a rigid work schedule.

**Attractive salary**: You’ll get to have the start-up impact without the start-up wages.

**Equity**: We want people to have a sense of ownership in what they do and offer the potential for equity share and annual bonuses.

**Cash bonus**:We recognize exceptional performance and impact by offering annual discretionary cash bonuses.

**Resources**: We are well funded by the world’s best technology investors, letting us chase our ambitions with mínimal constraints.

**Parental support**: We offer paid parental leave to support you and your loved ones.

**D