Head of Cyber Strategy

**Head of Cyber Strategy & Advisory** - **Sydney**

Accountable the continuous improvement and delivery of cyber and information security strategy and advisory services.
- Responsible for alignment of cyber & information security strategy to business objectives
- 10 yrs’ experience in comparative organisations & support to achieve ISO27001 certification.
- Permanent Role| Location: Sydney CBD

**About the Role**

Use your professional cyber expertise, leadership and communication skills to elevate, inspire and drive outcome-oriented cyber transformation in a dynamic, people-centric organisation. Accountable the continuous improvement and delivery of cyber and information security strategy and advisory services, you will optimise our cyber resilience and enable icare to deliver high-quality, trusted digital services. Bring your leadership qualities to grow a high performing team of cyber security advisors, collaborating with D&T project and product delivery teams to enhance and integrate cyber maturity practises and guidelines, aligned to the strategic direction of information and cyber security.

**Benefits**
- Contribute to the care and well-being of the people, business and communities of NSW.
- A corporate wellbeing program with subsidised gym membership, free flu vaccinations and health check programs
- icare day - access to an extra day’s leave
- Comprehensive learning and development support aligned to icare’s Core Capabilities.
- Our People Awards - On-the-spot Recognition, Quarterly Values Awards & Our People Annual Awards
- Access to our Employee Assistance Program

**Duties**

It’s an exciting time at icare where no two days are the same; as a **Head of Cyber Strategy & Advisory** you will:

- Develop and evolve a comprehensive cybersecurity strategy aligned with business objectives and industry standards.
- Drive innovation in cybersecurity practices and technologies to maintain a robust defence posture.
- Provide strategic guidance and advisory services to senior management and key stakeholders on cybersecurity-related matters.
- Develop and own icare’s Cyber ‘Security by Design’ capability, ensuring the development and integration of cyber-threat/risk assessment processes with broader D&T process for developing and assessing the cyber-security posture of digital and information solutions, processes, third-party vendors and service providers to ensure they meet cyber security requirements.
- Establish and support applicable cyber security governance forums, including but not limited to cyber security working group focussed on supporting resolution of decisions according to icare’s Cyber risk Appetite and risk management framework.
- Formulate cyber-risk management strategies tailored to business needs, risk appetite and compliance objectives to uplift and embed cyber security by design in line with compliance requirements, policies and standards.
- Advise on compliance with relevant regulations, NSW Cyber Security Policy, standards, and industry best practice, developing applicable policies, standards and guidelines to ensure currency and alignment.
- Collaborate with Cyber Leadership to establish governance frameworks for cybersecurity policies, procedures, and controls.
- Prepare and present regular reports to executive leadership and board members on cybersecurity posture, threats, and mitigation efforts.
- Lead a team of cybersecurity professionals, fostering a culture of excellence, collaboration, and continuous improvement.
- Mentor and develop team members, ensuring their skills align with organisational goals and industry trends.

**Skills & Experience**:

- Minimum 10 years’ experience in comparative organisations and with supporting organisations to achieve ISO27001 certification or compliance with equivalent cyber security standards and frameworks, with at least 5 years’ experience in Information / Cyber Security leadership roles.
- Demonstrated strength in managing challenging interdependent programs and initiatives with multiple, invested stakeholders.
- Analysis of complex issues, strategic problem solving.
- Excellent communication skills, with ability to translate cyber outcomes and strategy to technology teams and business leaders.
- Highly motivated and engaging individual with exceptional stakeholder management skills, who will listen, consult, and work in close partnership with stakeholders.
- Development of business plans, policies and guidelines and implementation of comprehensive cyber security strategies.
- Thinks commercially and systematically with proven ability to think outside the box and provide creative solutions. \
- Ability to obtain Australian Government Security Clearance at the level Negative Vetting 1 (NV1 formerly called Secret) or above.

**Culture**

We know our strength comes from the diversity of our people and would encourage people with different experiences and backgrounds to apply. We are committed to our people’s development so