Information Security

**Job no**: 941922

**Work type**: Permanent / Full time

**Location**: Support Office - Docklands

**From humble beginnings in downtown Bendigo to supporting Australian communities far and wide
- Myer has always been a special place, transcending beyond just a place to work**.

**Myer is a place for finding life-long friendships, a safe space with a big heart. Here, you’re encouraged to be yourself, share your ideas and are entrusted to deliver your very best. Some might even say it feels like being “right at home”.**

Myer is looking for a **Senior Manager - Cyber Security Operations** who will provide visible leadership to the cyber security operations function. Reporting to the National Information Security & Digital Risk Manager, you will be responsible for leading Myer’s security operations team, and any external cyber security operations providers to ensure Myer’s digital and information are protected from threats both internal and external.

This pivotal role will ensure the management of security systems and team members, implementation of the latest security measures, continuous monitoring of security infrastructure, planning and execution of effective cyber-incident responses. This role also involves collaborating with various departments to maintain and uphold security protocols and practices throughout Myer.
- Exciting opportunity to lead our Cyber Risk team
- Play a key role in our advancing our security initiatives, which continues to increase in importance in the new digital era
- Flexible hybrid working model - work from our Docklands office and the comfort of your home

**About the role**:

- Build and inspire best practice cyber operations support in incident handling, vulnerability management, threat detection and assurance across Myer.
- Direct and manage Myer’s Security Operations and Risk Team
- Direct and manage Myer’s external Security Service Providers such as the Security Operations Centre (SOC) team, ensuring they are at all times prepared and informed to detect and respond to cybersecurity incidents efficiently.
- Plan and oversee the team’s tasks and priorities. Monitor and analyse cyber threats and be responsible for incident detection, log analysis and monitoring
- Work with National Information Security and Digital Risk manager to develop and implement comprehensive cybersecurity strategies that align with the Myer’s goals and risk tolerance.
- Foster a culture of continuous learning and improvement, training and mentoring junior staff and enhancing their skills in cybersecurity practices.
- Develop and implement automated metrics and reporting from security continuous monitoring and improvement processes across the university.
- Oversee and ensure the effectiveness of Myer’s cyber incident response plans, adjusting strategies as needed to mitigate threats in real-time.
- Effectively lead cyber incident response activities.
- Manage relationships with external suppliers and vendors to ensure that they comply with the Myer’s cybersecurity protocols and standards.
- Enforce and update security policies and procedures to align with industry standards and regulations. Work with Risk Lead to conduct regular assessments of cybersecurity risks and vulnerabilities, proposing and implementing appropriate mitigation strategies.
- Maintain clear communication with upper management on the status, issues, and security metrics of the SOC.
- Role model high performance in stressful circumstances, foster positive attitudes to change, turn challenging situations into opportunities and coach others through adversity.

**About you**:

- Strong understanding of firewalls, VPN, data loss prevention, IDS/IPS, web-proxy, and security audits.
- Ability to analyse and resolve complex security issues in high pressure situations.
- In-depth knowledge of popular security frameworks like NIST, ISO 27001, PCI-DSS
- Proven track record in managing or leading a security operations team and dealing with complex cybersecurity incidents.
- Exceptional interpersonal and communication skills to interact with team members, stakeholders, and vendors.
- Degree in Computer Science/Cybersecurity: A bachelor's or master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- Relevant certifications such as CISSP, CISM, or equivalent are preferred

**Benefits to you**:

- Generous team member discounts on all Myer products, including team-member exclusive discounts
- Access to lifestyle leave and volunteer leave - arrange work around your life, not life around work
- A supportive leadership and team network to set you up for success
- Career growth and succession opportunities across the business

We’d love to hear from you even if you don’t meet all the criteria listed above.

**Here, you’re not only an employee. You’re a valued Team Member with real dreams that we want to help you chase, no matter how big or small. At Myer, we’re all about making