Cyber Security Controls Assurance Manager

vor 2 Wochen


Sydney, Österreich University Of New South Wales Vollzeit

Cyber Security Controls Assurance ManagerEmployment Type: full time continuing role as a Cyber Security Controls Assurance ManagerExcellent salary package including superannuationLocation: UNSW Kensington Campus (Hybrid Working Opportunities)About UNSW:UNSW isn't like other places you've worked.
Yes, we're a large organisation with a diverse and talented community, a community doing extraordinary things.
Together, we are driven to be thoughtful, practical, and purposeful in all we do.
Taking this combined approach is what makes our work matter.
If you want a career where you can thrive, be challenged and do meaningful work, you're in the right place.The Cyber Security Controls Assurance Manager is responsible for overseeing and advancing the University's cyber security controls assurance practices, ensuring that cyber security controls are effective, regularly tested, and continuously improved.
Key responsibilities include developing and executing strategies for cyber security controls testing, facilitating the remediation of identified gaps, and delivery of cyber security metrics and reporting to support senior management decision-making.
The Cyber Security Controls Assurance Manager reports to the Head of Cyber Security Governance & Assurance and has direct reports.Accountabilities:Lead the strategic planning, execution, and continuous improvement of cyber security controls assurance testing, including regular controls effectiveness testing and gap assessments.Develop and implement a continuous controls assurance testing strategy, with a focus on control monitoring, automation, uplift, and rationalisation.Oversee and deliver annual controls assurance testing activities, including penetration testing, application security assessments, and red teaming exercises.Facilitate post-testing assurance by reviewing findings, advising stakeholders, prioritising remediation efforts, and managing closure of actions.Monitor, track, and ensure timely closure of findings, risks, and associated actions resulting from controls assurance activities, ensuring alignment with the University's risk appetite.Develop, collect, and continuously improve cyber security metrics and Key Risk Indicators (KRIs)/Key Control Indicators (KCIs) to measure performance and risk exposure.Lead the delivery and management of periodic cyber security metrics reporting.Present insights, information, and recommendations to leadership and stakeholders to inform decision-making and support organizational objectives, and present at quarterly GRC Community of Practice (CoP) and Developer Security CoP meetings to foster collaboration and knowledge sharing across faculties and divisions.Update and maintain the cyber security risk register with findings from testing, assessments, and performance metrics, ensuring that risks are tracked and mitigated.Manage audit assurance activities by providing leadership in facilitating the remediation of audit findings, ensuring that identified risks are mitigated in accordance with agreed timelines and corrective actions are successfully implemented.Lead the maturity and management of Cloud Security Posture Management (CSPM) tools, including tuning, ongoing monitoring, and remediation activities.Manage the delivery of expert-level source code reviews, including the integration of applications and repositories with security scanning tools like CXOne.Oversee the management of Checkmarx, ensuring the platform is effectively utilised for source code security scanning and application security assurance.Oversee crowdsourced security testing / bug bounty programs, ensuring these programs are aligned with security objectives and contribute to continuous improvement in security posture.Provide strategic cyber security consulting and advisory services to the Cyber Security Enablement Program and other key initiatives across the University, ensuring alignment with governance and compliance standards.Manage and mentor a team, providing guidance, support, and professional development opportunities to ensure high performance and continuous growth.Align with and actively demonstrate the Code of Conduct and Values.Cooperate with all health and safety policies and procedures of the university and take all reasonable care to ensure that your actions or omissions do not impact on the psychosocial or physical health and safety of yourself or others.Ensure hazards and risks psychosocial and physical are identified and controlled for tasks, projects, and activities that pose a health and safety risk within your area of responsibility.Skills and Experience:Extensive management expertise and supporting experience (7+ years) in cyber security controls assurance, with a proven track record in controls assurance testing, metrics reporting, and audit management.Strong experience with cyber security assurance tools such as Checkmarx, Lacework, BugCrowd, and similar platforms.Certifications such as CISSP, CISM, CRISC, CEH, or relevant certifications in security assurance and controls testing are highly desirable.Demonstrated experience in leading penetration testing, red teaming, application security assessments, and cloud security posture management.Strong understanding of cyber security metrics, KRIs/KCIs, and their role in managing and communicating risk.Experience in working with risk registers and driving the remediation of risks and audit findings.Excellent communication, interpersonal, and leadership skills, with a proven ability to influence and engage stakeholders across all levels.Strong project management skills, with the ability to manage multiple initiatives simultaneously while maintaining a focus on quality and timelines.High level of motivation, resilience, and the ability to work both independently and as part of a collaborative team.Strong analytical and problem-solving skills, with the ability to present complex information clearly and concisely to diverse audiences.An understanding of and commitment to UNSW's aims, objectives and values in action, together with relevant policies and guidelines.Knowledge of health & safety (psychosocial and physical) responsibilities and commitment to attending relevant health and safety training.To Apply: If this is of interest to you, please submit your CV, Cover Letter and responses to the Skills and Experience outlined above and in the position description.Applications close: Sunday 5th of Jan 2025 at 11.30pmBenefits and CultureFlexible hybrid workingAdditional 3 days of leave over the Christmas PeriodAccess to lifelong learning and career developmentProgressive HR practicesDiscounts and entitlementsUNSW is committed to equity diversity and inclusion.
Applications from women, people of culturally and linguistically diverse backgrounds, those living with disabilities, members of the LGBTIQ+ community; and people of Aboriginal and Torres Strait Islander descent, are encouraged.
UNSW provides workplace adjustments for people with disability, and access to flexible work options for eligible staff.#J-18808-Ljbffr



  • Sydney, Österreich Unsw Vollzeit

    Cyber Security Controls Assurance ManagerUNSW is ranked 2nd in Australia and 27th in the world for Graduate Employability.This is a full-time continuing role as a Cyber Security Controls Assurance Manager.Excellent salary package including superannuationLocation: UNSW Kensington Campus (Hybrid Working Opportunities)About UNSW:UNSW isn't like other places...


  • Sydney, Österreich Tideri Jobbörse Vollzeit

    Cyber Security Controls Assurance Manager Employment Type: full time continuing role as a Cyber Security Controls Assurance Manager Excellent salary package including superannuation Location: UNSW Kensington Campus (Hybrid Working Opportunities) About UNSW:UNSW isn't like other places you've worked.Yes, we're a large organisation with a diverse and talented...


  • Sydney, Österreich Tideri Jobbörse Vollzeit

    Department: IT - ANZ Location: North Strathfield, NSW, AU, 2137 Job Function: IT - ANZ Employment Type: Full time The Arnott's Group portfolio of brands continues the 158-year legacy of the Arnott family, providing quality, great-tasting food to create delicious moments for consumers across the world.About the Role: Join the Cyber Security Team at Arnott's...


  • Sydney, Österreich Directionshealth Vollzeit

    APS6 Senior Cyber Security Assurance OfficerSecurity (Information & Communication Technology)Government - Federal (Government & Defence)Full time$96,325 to $106,884 per annum + 15.4% SuperComcare has an ongoing vacancy for an APS 6 Senior Cyber Security Assurance Officer in the Technology and Information Management Team, in Canberra, Melbourne, Launceston,...


  • Sydney, Österreich Marcus Lavalle-Smith - Cyber Security Vollzeit

    Our client is an ASX listed business continuing to show steady growth and invest in Cyber security.They are seeking an experienced Cyber Security Architect who can also come from a consulting background, to work across various areas of their technology teams.The role will be an advisor, architect and consultant across stakeholders, to be able to architect,...


  • Sydney, Österreich Tideri Jobbörse Vollzeit

    Job Title: Senior Manager, Cyber Governance, Risk & Assurance Company Description: For a winning team that is evolving.Forward with Cuscal.At Cuscal, you'll find a strong, successful company that's reimagining the future.Here, you'll deliver or support interesting, ground-breaking projects that have real impact on Australia's financial services sector.You'll...


  • Sydney, Österreich Cuscal Vollzeit

    Job Title: Senior Manager, Cyber Governance, Risk & AssuranceCompany Description: For a winning team that is evolving. Forward with Cuscal. At Cuscal, you'll find a strong, successful company that's reimagining the future. Here, you'll deliver or support interesting, ground-breaking projects that have real impact on Australia's financial services sector....


  • Sydney, Österreich Endeavour Group Vollzeit

    Endeavour GroupEndeavour Group is Australia's largest retail drinks network & portfolio of licensed hotels.Find information for employees, community, investors, suppliers & industry.Let's create a more sociable future togetherAt Endeavour, we're totally into what we do.With a portfolio that includes Dan Murphy's, BWS, ALH Hotels, Pinnacle Drinks and more, we...


  • Sydney, Österreich University Of New South Wales Vollzeit

    Security (Information & Communication Technology)Other (Education & Training)Employment Type: Full time continuing role as a Cyber Security Risk ManagerLocation: UNSW Kensington Campus (Hybrid Working Opportunities)About UNSW:UNSW isn't like other places you've worked.Yes, we're a large organisation with a diverse and talented community, a community doing...


  • Sydney, Österreich Tideri Jobbörse Vollzeit

    Security (Information & Communication Technology)Other (Education & Training) Employment Type: Full time continuing role as a Cyber Security Risk Manager Location: UNSW Kensington Campus (Hybrid Working Opportunities) About UNSW:UNSW isn't like other places you've worked.Yes, we're a large organisation with a diverse and talented community, a community doing...


  • Sydney, Österreich Unsw Vollzeit

    UNSW UNSW is ranked 2nd in Australia and 27th in the world for Graduate Employability.Browse our range of study options and find the perfect one for you. Employment Type: full time continuing role as a Cyber Security Risk ManagerExcellent salary package including superannuationLocation: UNSW Kensington Campus (Hybrid Working Opportunities) About UNSW:UNSW...


  • Sydney, Österreich Cuscal Vollzeit

    CuscalCuscal is a payments & regulated data services provider in Australia. Since 1966 we have enabled banks, corporates and fintechs to better serve and connect with their customers.For a winning team that is evolving. Forward with Cuscal.At Cuscal, you'll find a strong, successful company that's reimagining the future. Here, you'll deliver or support...


  • Sydney, Österreich Endeavour Group Vollzeit

    Endeavour GroupEndeavour Group is Australia's largest retail drinks network & portfolio of licensed hotels.Find information for employees, community, investors, suppliers & industry.Let's create a more sociable future together At Endeavour, we're totally into what we do.With a portfolio that includes Dan Murphy's, BWS, ALH Hotels, Pinnacle Drinks and more,...

  • Cyber Security Engineer

    vor 2 Monaten


    Sydney, Österreich Marcus Lavalle-Smith - Cyber Security Vollzeit

    Hey there, Cyber Security Engineers.Fancy a 12-month Fixed Term Contract to take you through Christmas/NY and well into 2025?Keen to see what an acquisition integration looks like?Want to wave goodbye to consultancy, MSP and vendor land, and work with an enterprise?Do you like free breakfast?If you thought to yourself, "yes, I DO like free breakfast," you...


  • Sydney, Österreich Directionshealth Vollzeit

    Security (Information & Communication Technology)Government - Federal (Government & Defence)Full timeThe AIHW's APS employee census results attest to our positive and supportive workplace culture. We are an inclusive, flexible, and productive workplace where people are treated with respect and courtesy, and diverse and unique attributes are recognised and...


  • Sydney, Österreich Directionshealth Vollzeit

    Security (Information & Communication Technology)Government - Federal (Government & Defence)Full timeThe AIHW's APS employee census results attest to our positive and supportive workplace culture.We are an inclusive, flexible, and productive workplace where people are treated with respect and courtesy, and diverse and unique attributes are recognised and...


  • Sydney, Österreich Tideri Jobbörse Vollzeit

    Cuscal Cuscal is a payments & regulated data services provider in Australia.Since 1966 we have enabled banks, corporates and fintechs to better serve and connect with their customers.For a winning team that is evolving.Forward with Cuscal.At Cuscal, you'll find a strong, successful company that's reimagining the future.Here, you'll deliver or support...


  • Sydney, Österreich Tideri Jobbörse Vollzeit

    University of New South WalesHigh St, Kensington, AustraliaPhone:Web Site:Employment Type: full time continuing role as a Cyber Security Risk Advisor Exceptional salary package including generous superannuation Location: UNSW Kensington Campus (Hybrid Working Opportunities) About UNSW:UNSW isn't like other places you've worked.Yes, we're a large organisation...


  • Sydney, Österreich The Star Ent Group Vollzeit

    Senior Manager Cyber Security Consulting – Cyber Security ResilienceApply now Job no: 532005Work type: Permanent Full TimeLocation: Sydney, BrisbaneCategories: TechnologyThe Star Entertainment Group (TSEG) is a publicly listed company on the ASX.Our purpose is to create fun at trusted destinations and our aim is to deliver sustainable outcomes for our...

  • Head Of Cyber Defence

    vor 2 Wochen


    Sydney, Österreich Marcus Lavalle-Smith - Cyber Security Vollzeit

    Company: We are partnering with a leading ASX-listed organisation, with a strong presence in the Australian market.Operating across diverse sectors, with a focus on innovation and sustainability.About the Role: We are looking for a Head of Cyber Defence, to lead a new transformational cyber security program.With a strategy and roadmap already in place, this...