Security Compliance Specialist

**About us**:
Established in 2007, CDC Data Centres is Australia's leading operator of sovereign, secure, world-class data centre facilities.

Headquartered in Canberra with multiple facilities in the ACT, NSW and New Zealand, CDC's diversified operations provide secure data centre configurations that support co-location, containerised and hyperscale compute environments with all campuses interconnected with high-speed carrier grade networks.

At CDC we are passionate about creating an inclusive workplace that promotes and values diversity. We believe that everyone's unique experiences enable us to deliver meaningful benefits for our people, our clients and communities. Our mission is to attract, retain and grow the world's best data centre team.

Our people are responsive, innovative and trusted in supporting our customers. Together, we configure the landscape to meet the security, reliability, connectivity and sustainability needs for today and tomorrow.

**About the role**:
We are looking for a Security Compliance Specialist to lead CDC's security assurance function for the business. CDC Data Centres operates high security environments which must comply with rigorous government security and industry standards. The Security Compliance Specialist will be responsible for security assurance programs across the entire lifecycle of our data centres, including pre-planning, design, construction, commissioning, and ongoing operations.

Key responsibilities include:

- Develop, implement, and oversee security compliance and assurance programs to ensure that all requirements are met.
- Assist the Senior Manager, Security, Resilience and Assurance in the development of security policy.
- Draft security compliance-related protocols, procedures and guidance material as required.
- Assist in the development and implementation of protective security design standards for pre-construction, construction and commissioning of new data centres and infrastructure in accordance with government, industry, and customer requirements.
- Be aware of pending changes to government, industry, and customer security requirements.
- Work closely with the Manager, Security Operations, and other relevant stakeholders to develop quality assurance measures for effective security operations within our data centres.
- Liaise with customers success managers, and where necessary customers directly to ensure customer security requirements are being met.
- Liaise with consultants and certifiers in relation to security-related certification and re-certification of data centres, and where necessary provide support to initial or ongoing certification requirements.
- Educate and train employees (including management) on security compliance related matters.
- Collaborating with internal and external audit providers or other professional advisors as and when required.
- Fostering a culture of continual improvement in protective security compliance within the business
- Mentor and impart knowledge on junior staff.
- Lead, attend and contribute to appropriate team and stakeholder meetings and committees as required and relevant to ensure excellent stakeholder engagement and communication.
- Embrace and model CDC's DNA and Leadership Fundamentals.
- Provide cultural and operational team leadership.
- Other duties as direction from time to time.

**About you**:

- 3+ years working in a high security environment, preferable in state or federal government.
- Sound understanding of either Australian Government's Protective Security Policy Framework (PSPF) or the Defence Security Principles Framework (DSPF).
- Experience with and direct exposure to applicable laws, regulations, and standards relevant to a large critical infrastructure provider, including Telecommunications Act 1997 (Cth), Security of Critical Infrastructure Act 2018 (Cth), Dept. Home Affairs' Hosting Certification Framework, SOC1 Type II and SOC2 Type II controls, PCI-DSS, ISO9001, ISO14001, ISO27001 and ISO 45001.
- Demonstrated experience in driving positive outcomes through high level communication, interpersonal ability and proactive stakeholder engagement.

**Essential**:

- Australian Citizenship and the ability to obtain and maintain AGSVA Security Clearance at Negative Vetting 1 level.

**How to Apply**:
If you are looking to own your career and take on a new challenge in a fast-growing Australian Technology company and be part of our amazing team, please submit your resume and cover letter by clicking Apply.