Information Security Consultant

Westpac Group has a rich heritage and offers employees a multitude of opportunities. We aim to attract the best people inside and outside of the business - building an organisation where the best talent thrives.

The Westpac Group has a complex Information Technology environment that needs to deliver to the rapidly changing needs of our customers and employees, the ever-evolving IT landscape, and the Group's regulatory and statutory requirements. In GroupTech we're striving to be game-changing technologists, shaping the future of banking.

**How will I help?**

An exciting opportunity is available for an Information Security Consultant - Web Application Protection (WAP) within the Information Security, Critical Protective Controls team in Group Technology. You can work flexibly while training to upskill on new tools and technologies.

This role will be responsible for advising business and GroupTech units on Information Security for enterprise wide and complex initiatives, to facilitate compliance with the Westpac Group Information Security Framework and target risk position for information security.

In addition, this role will focus on managing and running Web Application Protection control for the enterprise, but it is also a cross functional position with opportunity to work on other controls like Forward proxies, DDoS, Deception technology etc.

Your key responsibilities may include:

- Monitoring and advising management of emerging security issues, threats, and trends, including impacts of changes to legislation, to provide visibility and assurance to executive stakeholders about the information security state of the Group.
- Liaising effectively with Westpac's business partners and third-party service providers as required to ensure that Westpac continues to be protected against current and emerging threats.
- Maintaining an up-to-date knowledge of Information Security trends and threats.
- Providing input into response by Partners to any published Urgent Security Memos.

**What's in it for me?**

You will play an important and significant part in the future of a business that has been around for 200 years. Our vision is to become one of the world's great service companies. So, we will back you in the development of your career, with internal career prospects and flexible working. You will also be backed by a fantastic team of people in a can-do, supportive structure.

**What do I need?**

To be successful in this role, you will have hands-on experience with Automation using DevOps and APIs, customer focused mindset and be self-driven. In addition to this, your skills may also include:

- Proficient in delivering and maintaining custom business automation.
- Good understanding of information security best practice standards and guidelines (e.g. ISO 27001).
- Working knowledge of regulatory frameworks related to information security.
- Experience in an IT operational, security operations, support, or customer service role.
- As the role settles in, on-call support may be required in the future.

Any exposure to Web Application Protection Control, DDoS, Forward proxies, Scripting programming languages (preferably Python) would be advantageous.

**What's it like to work there?**

As well as competitive remuneration and a great culture, joining the Westpac family means you will get some of the best banking, wealth, and insurance benefits in the market.

We back our employees by helping them work towards industry-recognised qualifications, using online learning, training modules and career planning tools for you to grow with us. We will even pay you to do volunteer or community work.

We aim to provide one big, supportive team of people working to achieve our purpose of creating better futures together. As an equal opportunity employer, we're proud to have created a culture and work environment that values diversity and flexibility - and champions inclusion.

**How do I Apply?**

**Do you need reasonable adjustments during the recruitment process?**

At Westpac we are committed to providing a supportive culture and creating inclusive and accessible workplaces, branches, products and services for our customers, employees, and community.