Principal Security Advisor

We're never just satisfied with how things are - because we know how things could be. And it's our expert Technology team who forge ahead every day to make those 'what ifs' a reality.

Welcome to a place where you can chase real progress and drive real change. And that includes your own career. Being a part of Technology at Suncorp Group means being switched on, endlessly curious and always adaptable. In return, you'll be supported to bring your own ideas to the table and challenge conventions - with the aim of making life a little brighter, simpler and better for our customers and each other.

An opportunity is now available for a Principal Security Advisor to join our team within the Cyber Security and Risk domain at Suncorp. This role involves providing technical leadership, consulting and advice to the security domain ensuring our technology compliance with cyber security principles, policies and standards are robust and our security domain strategies and roadmaps are aligned to our business objectives.

As Principal Security Advisor you will provide industry leading expertise and lead the continuous improvement and development capability within the Cyber Security and broader domains. You will ensure our security standards and policies are fit for purpose and ensure technology adherence to security architecture governance and enterprise architecture principals.

This is a wonderful opportunity in which you can showcase your Security Advisory skills and experience, collaborate within high performing teams, and establish relationships within the broader Cyber Security and Risk domain.

**What you'll do**:

- Lead the maintenance and ongoing optimization of Security Controls Testing Framework and processes.
- Provide expert Security Consulting and advisory services to technology and business stakeholders.
- Contribute to maintenance of Security Domain strategies and roadmaps.
- Creation of Security Domain high level solution architectures supporting the Cyber Security Program of Work.
- Participate and contribute towards Cyber Security architectural governance process.
- Engage the broader technology community to ensure adherence and alignment of services with security policy, standards and controls.
- Contribute to the maintenance and development of Security Frameworks, Policies, Standards and Guidelines.
- Facilitate the introduction of new security technologies, change, opportunity and innovation that securely enable business objectives.
- Work with Project and Delivery Managers to architect and implement new Security Capabilities.
- Identify improvements and significant changes required to existing security platforms.

**What you'll bring**:

- 5 Years' experience in Security advisory or consulting, security architecture or related disciplines.
- 5 + years security experience in large enterprises, preferably financial services.
- University degree in Business, Information Technology or related discipline or equivalent experience is desired.
- Extensive experience in Information Security concepts such as risk management, controls testing, security architecture, threat management, security governance and secure development lifecycle.
- Experience in Data Security controls and techniques such as Data Loss Prevention.
- Experience in Data Centre security technologies e.g Firewalls, Proxies, WAF, Secure Web Gateways, Cloud Access Security Brokers, Key Management, IPS\IDS.
- Cloud security architecture experience across IaaS, PaaS and SaaS.
- Experience with Australian regulatory & legislative compliance requirements such as APRA, Privacy Act and PCI.
- Understanding of incident response, detection/alerting systems, and performing technical investigations is extremely desirable.
- Experience with technical hunting activities and threat intelligence is extremely desirable.
- Specialised knowledge of the tools, tactics, techniques and processes of attackers is desirable.
- Active participation in industry IT security groups, forums, and information exchanges is desirable.
- Strong analytical and written skills, with the ability to communicate effectively at all levels.
- Strong interpersonal skills with ability to build and maintain strong relationships, and a demonstrated ability to negotiate outcomes and effectively influence.
- Previous experience working within an Agile environment, with an understanding of the Agile practices.

**What we can offer you**:

- Discounts and offers on a range of retail favourite stores as well as banking and insurance products.
- A range of flexible working and leave options, including 20 weeks paid parental leave, 4 weeks paid secondary carer parental leave and unlimited paid emergency response leave.
- Invest in your brighter future with ongoing study support and career development programs.
- Give back to our communities with payroll giving, donation matching and paid volunteer leave.
- Prioritise your work/life balance with our robust employee assistance p