Head of Cyber Assurance

**About the Role**

Accountable for leading our cyber-security assurance and governance team within digital and transformation, you will develop and drive icare’s Cyber Security posture and maturity against required policies and standards and uplift compliance of our partners and third-party suppliers. You will use your professional cyber expertise, leadership and communication skills to elevate, inspire and drive outcome-oriented cyber transformation in a dynamic, people-centric organisation. Develop forums with internal and external stakeholders to maximise the impact of cyber security, providing reporting and briefings on trends, issues and opportunities in alignment with our cyber strategy, compliance requirements and industry best practise.

**Benefits**
- A corporate wellbeing program with subsidised gym membership, free flu vaccinations and health check programs
- icare day - access to an extra day’s leave
- Comprehensive learning and development support aligned to icare’s Core Capabilities.
- Our People Awards - On-the-spot Recognition, Quarterly Values Awards & Our People Annual Awards
- Access to our Employee Assistance Program

**Duties**

It’s an exciting time at icare where no two days are the same; as a Head of Cyber Assurance and Governance you will:

- Develop and evolve a comprehensive cybersecurity assurance framework to address the mandatory requirements of the NSW Cyber Security Policy and ISO27001 and develop a strategic pathway for alignment and ultimately compliance with CPS234.
- Drive uplift in icare’s cyber-security capability, identifying opportunities and developing solutions to elevate our cyber security posture and maturity against the NSW Cyber Security Policy and industry best practise.
- Provide strategic guidance, supporting roadmaps and advice to senior management and key stakeholders on cybersecurity assurance activities, aligned to our compliance requirements, cyber strategy and associated risks and objectives.
- Manage and develop cyber assurance capabilities to optimise and uplift proactive risk management in alignment with cyber risk appetite, business needs and the broader supplier assurance / risk management frameworks.
- Advise on compliance of proposed initiatives against relevant policies, standards, and industry-best practices, work with Cyber, D&T and business stakeholders to identify gaps and opportunities for improvement.
- Develop and lead cyber security uplift governance forums and enablement initiatives, including but not limited to a cross-functional cyber security working group focussed on cyber maturity uplift and develop and provide regular reports to executive leadership team on cyber-security compliance maturity, risks and opportunities.
- Own and develop a roadmap for supplier assurance uplift with input from peers, direct reports, and internal external stakeholders.
- Lead and develop a high-performing team, fostering a culture of excellence, collaboration, and continuous improvement.

**Skills & Experience**:

- Minimum 10 years’ experience in Information / Cyber Security industry with at least 5 years’ experience in comparative organisations developing and running cyber compliance / maturity programs and related continuous improvement initiatives.
- Skilled in analysis of complex issues, strategic problem solving and attention to detail.
- Excellence in communicating insights, risks and opportunities from technical / digital concepts, data and problems into clear, actionable recommendations.
- Demonstrated expertise in managing cyber security and/or, third party / supplier risk and implementation and management of ISO27001, NSW Cyber Security Policy or CPS234 assurance programs.
- Development of business plans, and implementation of comprehensive strategies and supporting metrics, reports, insights and dashboards.
- Thinks commercially and systematically with proven ability to think outside the box and provide creative solutions.
- Highly motivated and engaging individual with exceptional stakeholder management skills, who will listen, consult, and work in close partnership with stakeholders
- Ability to obtain Australian Government Security Clearance at the level Negative Vetting 1 (NV1 formerly called Secret) or above.

**Culture**

We know our strength comes from the diversity of our people and would encourage people with different experiences and backgrounds to apply. We are committed to our people’s development so the people of NSW can thrive.

About the Company

We care for the people of NSW, building confidence and trust so our communities can thrive. We make the complex simple, so our schemes deliver better outcomes for people and communities. Whether a person is severely injured in the workplace or on our roads, icare supports their long-term care needs to improve quality of life, including helping people return to work.
- For more information about icare visit our website
- icare operates a direct sourcing model so no ag