Information Security Risk and Assurance Manager

vor 4 Wochen

Melbourne, Österreich HESTA Vollzeit
Information Security Risk and Assurance Manager

At HESTA we’re a leading national superannuation fund dedicated to people working in health and community services – a growing sector of ordinary people doing extraordinary things, day in day out, right across Australia.

More than 1 million Australians trust HESTA with their money. So together, we invest billions of their savings globally, striving to generate strong investment returns and make a real difference to their financial futures. Our focus is on helping our members enjoy the retirement they’ve worked hard for.

  • Do you have a passion for information and cyber security?
  • Do you want to be part of a talented team and a unique opportunity that blends leadership and technical skills?

Our business is rapidly transforming and our information security capability is growing.

The opportunity

Reporting directly into the GM Information Security, this critical leadership role will oversee and implement robust information security governance, risk, and assurance practices through management of HESTA’s Information Security Management System (ISMS).

This role will lead the uplift of maturity and operations of HESTA’s Information Security Governance, Risk and Assurance Framework and team, and contribute to the delivery of HESTA’s information security program, strategy implementation, key initiatives and priorities.

This includes maintaining and evolving an ISO27001 based ISMS framework, ensuring alignment with the organisation's security objectives, regulatory obligations, and risk appetite.

You will play a vital part in making sure information security is implemented and operated in the way it should be, adhering to regulatory requirements as well as our own policies, standards and procedures, to keep us in check and secure

About you

You have significant experience in a similar information security leadership role, preferably within a highly regulated industry like financial services. You will have demonstrated experience in security risk management at strategic and operational levels and extensive experience with developing, implementing and overseeing information security policy and control frameworks. Critical thinking, outstanding communication and stakeholder management skills are key. You’ll work well under pressure and be capable of dealing with multiple priorities. What’s most important is the positive, creative and collaborative energy you bring to work each day. We’re eager for the right person to join our team so if this all sounds like you, don’t delay in submitting your application

You will be a seasoned Information Security leader that has built and lead security risk and assurance teams. You will have experience working with or working knowledge of governance tools such as One Trust or Archer GRC, and a working understanding of enterprise operations that span across Public Cloud environments, and security principles across Iaas, PaaS and SaaS. This role will also develop, govern and oversee technical security assurance capabilities across penetration testing, vulnerability management, and security controls testing.

You will have a strong understanding of security obligations for APRA regulated entities, experience and knowledge of security standards and frameworks such as NIST Cybersecurity Framework, ISO27001/2, including security controls and compliance requirements.

You will be agile in your approach, embrace impactful leadership and develop your team to be the best they can be. You will work collaboratively with key stakeholders to ensure outcomes are achieved and provide leadership and support to ensure a strong security posture is achieved and maintained in alignment with the HESTA’s Information Security Strategy.

For a position description please email Jamila Malkoun jmalkoun@hesta.com.au

We will leave all the ‘work you’ll be doing’ stuff in the PD but here’s a few things that you’ll get to enjoy working at HESTA:

  • Your leave and time off matters, up to 6 days paid volunteer leave, up to an additional 5 days of leave over the end of year and new year period, access your LSL after 3 years Take AL at half pay, and purchase up to 2 weeks additional leave
  • Your professional development matters, up to $5k per year professional development and up to 8 days professional development leave, HESTA scholarships and free access to a range of premium learning tools
  • Your health and wellbeing matters, free annual flu shots and skin checks, incredible social events throughout the year and a comprehensive employee assistance program available 24/7
  • Your financial wellbeing matters, financial planning support, end of year payment for all Enterprise Agreement-covered employees, incentivised Employee Referral Program and novated lease options

HESTA is a great place to work but don’t take our word for it, we were named (again) Employer of Choice for Gender Equality 2022.

We celebrate, value and include people of all backgrounds, genders, identities, cultures and abilities. We welcome and support applications from First Nations people, physically, neuro or culturally diverse, LGBTQI+, and people of any age.

We want all candidates to feel safe, included and provided with the best opportunity to thrive, if you require reasonable adjustments during your application or throughout the recruitment process, please reach out to a member of the Talent team careers@hesta.com.au and we’ll call you to discuss.

We will be reviewing application as they come in so if you are interested don’t delay as the position will be closed off as soon as we find the right person.

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

#J-18808-Ljbffr

  • Security Controls And Assurance Lead

    vor 10 Stunden

    Melbourne, Österreich Tractors And Machinery Vollzeit

    Melbourne Archdiocese Catholic Schools - East Melbourne, VICIT Source: uWorkin JOB DESCRIPTION At Melbourne Archdiocese Catholic Schools Ltd (MACS) we envision every student to be inspired and enabled to flourish and enrich the world. MACS is the largest Catholic school system in Australia. We own, govern and operate approximately 300 Catholic schools,...

  • Information Security

    Vor 3 Tagen

    Melbourne, Österreich Swtest Vollzeit

    Information Security & Digital Risk Operations Manager Myer - Melbourne, VICIT Source: uWorkin JOB DESCRIPTION Job no: 941922Work type: Permanent / Full timeLocation: Support Office - DocklandsFrom humble beginnings in downtown Bendigo to supporting Australian communities far and wide- Myer has always been a special place, transcending beyond just a place...

  • Senior Information Security Risk Analyst

    vor 4 Wochen

    City of Melbourne, Österreich Farm Credit Services Vollzeit

    Senior Information Security Risk Analyst Senior Information Security Risk Analyst (Hybrid in Columbia, SC)AgFirst's Senior Information Security Risk Analyst identifies, investigates, analyzes, and recommends information security guidance to ensure bank assets and processes maintain confidentiality, integrity, and availability while assessing against all...

  • Senior Information Security Risk Analyst

    vor 4 Wochen

    City of Melbourne, Österreich Farm Credit Services Vollzeit

    Senior Information Security Risk Analyst Senior Information Security Risk Analyst (Hybrid in Columbia, SC)AgFirst's Senior Information Security Risk Analyst identifies, investigates, analyzes, and recommends information security guidance to ensure bank assets and processes maintain confidentiality, integrity, and availability while assessing against all...

  • Information Security Risk Analyst

    vor 3 Wochen

    Melbourne, Österreich Modern Hardware Vollzeit

    Immerse yourself in our inclusive, diverse and supportive cultureChoose the way you want to work by embracing our flexible work arrangementCollaborate with sector and technical experts to grow your knowledge and network Job DescriptionImmerse yourself in our inclusive, diverse and supportive cultureChoose the way you want to work by embracing our flexible...

  • Information Security Manager

    vor 4 Wochen

    Melbourne, Österreich eFinancialCareers Ltd. Vollzeit

    Information Security ManagerGuild Group Holdings LtdMelbourne, AustraliaInformation Security ManagerGuild Group Holdings LtdMelbourne, AustraliaPosted 1 day agoPermanentCompetitiveInformation Security ManagerInformation Security ManagerJob Number:493492Work type:Full Time PermanentLocation:Melbourne (CBD)Categories:TechnologyLocation: MelbourneTerm: Full...

  • Information Security Manager

    vor 1 Monat

    Melbourne, Österreich eFinancialCareers Ltd. Vollzeit

    Information Security Manager Guild Group Holdings Ltd Melbourne, Australia Information Security Manager Guild Group Holdings Ltd Melbourne, Australia Posted 1 day ago Permanent Competitive Information Security Manager Information Security ManagerJob Number:493492Work type:Full Time PermanentLocation:Melbourne...

  • Information Security Manager

    vor 3 Wochen

    Melbourne, Österreich eFinancialCareers Ltd. Vollzeit

    Information Security Manager Guild Group Holdings Ltd Melbourne, Australia Information Security Manager Guild Group Holdings Ltd Melbourne, Australia Posted 1 day ago Permanent Competitive Information Security Manager Information Security ManagerJob Number:493492Work type:Full Time PermanentLocation:Melbourne...

  • Security Specialist

    vor 2 Wochen

    Melbourne, Österreich LZ Security & Service GmbH Vollzeit

    Flexible and inclusive work environment for allJoin a fast paced and growing team with a global reachAt AustralianSuper, we truly care about our colleagues. We know work and life are intertwined. That's why we support the diverse needs of everyone and have policies that enable us all to thrive and be truly flexible. We ensure diversity is celebrated for the...

  • Information security manager

    vor 1 Monat

    Melbourne, Österreich Guild Group Vollzeit

    Job Number: 493492 Work type: Full Time Permanent Location: Melbourne (CBD) Categories: Technology Location: Melbourne Term: Full Time, permanent position Way of Working: Hybrid role with 3 days in office and 2 days working from home Since 1963, we have grown from a small insurance company focused on the Pharmacy industry into a multifaceted organisation...

  • Information security manager

    vor 3 Wochen

    Melbourne, Österreich Guild Group Vollzeit

    Job Number: 493492 Work type: Full Time Permanent Location: Melbourne (CBD) Categories: Technology Location: Melbourne Term: Full Time, permanent position Way of Working: Hybrid role with 3 days in office and 2 days working from home Since 1963, we have grown from a small insurance company focused on the Pharmacy industry into a multifaceted organisation...

  • Manager, Information Security

    vor 4 Wochen

    Melbourne, Österreich State Government of Victoria, Australia Vollzeit

    Organisation:Victorian Building AuthorityOccupation:IT and TelecommunicationsReference:VG/6470_24Fantastic opportunity for a passionate manager to lead the development of security strategy and policy at the VBA.Reporting to the Chief Information Officer (CIO), the Manager, Information Security is a vital role responsible for establishing and maintaining...

  • Security Risk

    vor 3 Wochen

    Melbourne, Österreich Security Bank & Trust Co. Vollzeit

    Aussie Broadband’s (ABB) purpose is to the change the game. As our Security Governance, Risk & Compliance (GRC) Analyst, you'll play a pivotal role in supporting the manager of this function. Your primary responsibility will be to assist in the management of our ISO27001 program, where you will be part of a team that function as the central point of...

  • Consultant/Senior Consultant

    vor 10 Stunden

    Melbourne, Österreich Geenen IT Systeme Vollzeit

    Consultant/Senior Consultant - Information Security Risk Analyst KPMG - Melbourne, VICIT Source: uWorkin JOB DESCRIPTION Job DescriptionImmerse yourself in our inclusive, diverse and supportive cultureChoose the way you want to work by embracing our flexible work arrangementCollaborate with sector and technical experts to grow your knowledge and network...

  • Information Security

    vor 4 Wochen

    Melbourne, Österreich Movember Careers Vollzeit

    About Movember Movember is the leading Men’s Health Organisation and Charity changing the face of men’s health globally, tackling mental health and suicide prevention, prostate cancer, and testicular cancer. In our mission to stop men dying too young, we’re seeking an experienced Global Director, Information Security & Data Governance to join our...

  • Information Security

    vor 4 Wochen

    Melbourne, Österreich Movember Careers Vollzeit

    About Movember Movember is the leading Men’s Health Organisation and Charity changing the face of men’s health globally, tackling mental health and suicide prevention, prostate cancer, and testicular cancer. In our mission to stop men dying too young, we’re seeking an experienced Global Director, Information Security & Data Governance to join our...

  • Senior Manager, Risk Assurance

    vor 2 Wochen

    City of Melbourne, Österreich MLC Life Insurance Vollzeit

    Job Description - Senior Manager, Risk Assurance (2400005G) Job Description Description Are you committed to bringing your best to life every day? At MLC Life Insurance, we’re proud of our history of protecting Australians for over 135 years. We provide flexible, affordable, and innovative insurance products to almost 1 million Australians....

  • Manager, Information Security

    vor 4 Wochen

    City of Melbourne, Österreich State Government of Victoria, Australia Vollzeit

    Organisation: Victorian Building Authority Occupation: IT and Telecommunications Reference: VG/6470_24 Fantastic opportunity for a passionate manager to lead the development of security strategy and policy at the VBA.Reporting to the Chief Information Officer (CIO), the Manager, Information Security is a vital role responsible for establishing and...

  • Manager, Information Security

    vor 4 Wochen

    City of Melbourne, Österreich State Government of Victoria, Australia Vollzeit

    Organisation: Victorian Building Authority Occupation: IT and Telecommunications Reference: VG/6470_24 Fantastic opportunity for a passionate manager to lead the development of security strategy and policy at the VBA.Reporting to the Chief Information Officer (CIO), the Manager, Information Security is a vital role responsible for establishing and...

  • Technology & Information Security Risk Consultant

    vor 3 Wochen

    Melbourne, Österreich Manageditservices Vollzeit

    Technology & Information Security Risk Consultant Hays - Melbourne, VICIT Source: uWorkin JOB DESCRIPTION Exciting contract opportunity for Security Specialist in GeelongYour new companyThis role sits within a large government organisation based in Geelong. Due to ongoing security initiatives, they require a Cybersecurity Analyst to assist with security...