Information Security Principal

Tes is a global Edtech leader, on a mission to empower schools and educators to deliver impactful, inspiring learning experiences worldwide. We understand the unique challenges faced by schools, and our ecosystem is specifically designed to address these needs head-on.
Our intuitive technology streamlines complex tasks, enhances learning experiences, and alleviates the administrative burdens that often overwhelm schools.
By working closely with schools, we provide up-to-date resources, expert guidance, and a technology ecosystem dedicated to innovation and excellence in education. Whether simplifying administrative workflows, creating dynamic classrooms, or advancing professional development, Tes is the trusted partner for schools worldwide.
Join the hundreds of schools already benefiting from the Tes ecosystem. Together, we empower educators to achieve more, ensuring every student thrives in a supportive, well-managed learning environment.
We are looking for an experienced Information Security Principal for our Technology Governance department who will work with the Global Head of Security and Privacy.
**Key responsibilities will be**:

- Implementing and maintaining the organisation’s ISMS in line with ISO27001, NIST, CIS, and global security/privacy strategy.
- Managing information security risk assessments and supporting Technology teams in identifying and addressing risks.
- Assessing and guiding security controls across AWS, MS Azure, and GCP, ensuring security by design.
- Coordinating local incident response and supporting global investigations under the follow-the-sun model.
- Maintaining and testing incident response plans, and leading post-incident reviews and remediation.
- Ensuring compliance with security/privacy requirements, regulations, and standards, while supporting audits and third-party risk assessments.
- Promoting a positive security culture and delivering role-specific awareness training.
- Acting as a trusted advisor to senior stakeholders and integrating security into business processes.
- Monitoring emerging threats, vulnerabilities, and trends, and adjusting security posture proactively.
- Recommending and implementing continuous improvements to tools, processes, and technologies, while contributing to global initiatives.

What are we looking for?
- Experience in managing projects, and information security programmes
- Strong knowledge of ISMS frameworks (ISO27001, NIST CSF) and regulatory requirements (UK GDPR, Australian Privacy Principles)
- Hands-on expertise with cloud platforms and cloud security posture management
- Proficiency with security tooling (SAST, DAST, DevSecOps, Secrets Management, Dependency Tracking)
- Experience in vulnerability management, penetration testing, and incident response
- Background in disaster recovery and business continuity planning
- Ability to communicate security, risk, and compliance effectively to senior and non-technical stakeholders
- Skilled in developing security policies, procedures, standards, and awareness training
- In-depth knowledge of risk management, compliance, and cloud security practices
- Relevant certifications (CISSP, CISM, CISA) preferred
- Able to work within a global team - some flexible hours may be required at times to collaborate with colleagues in the UK

Being part of the Tes team will offer you a rewarding experience including:

- Flexibility and hybrid working environment for work-life balance
- Extra week annual leave - that's 26 days/year to enjoy
- Personal and professional development opportunities with learning allowances
- Working with a friendly and supportive team where our colleagues care as much as we do
- Enhanced Paid Parental Leave
- Retail/local area shopping discounts program
- State of the art city centre offices
- EAP (Employee assistance programme)
- Monthly Tes Social events
- Access to an extensive Learning and Development menu

This role is based working from our Hawthorn, VIC or Osborne Park office in WA. It’s a hybrid position - working 3 days from the office and 2 days from home.
If you are passionate about people and eager to make a meaningful impact on the company as well as the education industry and believe you have the enthusiasm and skills to be successful in this role, we invite you to join us at Tes.