Manager, Vulnerability Posture Management

Manager, Vulnerability Posture Management (VPM) The Reserve Bank of Australia is hiring for a Manager, Vulnerability Posture Management (VPM) to join a skilled team on a permanent basis. In this role you will lead and deliver a comprehensive vulnerability posture management program, ensuring alignment with the organisation's cybersecurity strategy. You will provide expert technical leadership and subject matter expertise, managing a high-performance team delivering a critical capability for the organisation. The Reserve Bank of Australia's unique position as Australia's central bank means you will gain exposure to an exciting and fast-paced environment with opportunities to apply your security expertise to new and diverse problems to protect an organisation that has real-world impacts on all Australians. Your Team You will lead a team of cybersecurity experts, part of a larger multi-disciplinary security services team sitting across the full spectrum of cybersecurity roles. There is a strong culture for collaboration, innovation and celebrating personal successes. The team is constantly looking to improve and welcomes fresh perspectives and ideas. About the Role The key responsibility will be to define, lead and mature the Reserve Bank of Australia's Vulnerability Posture Management program, including the development and execution of a long-term strategic plan and roadmap, in alignment with the organisation's overall cybersecurity strategy. About you At least 3 years' experience in a dedicated vulnerability or posture management role. Alternatively, a minimum of 5 years' experience in an adjacent cybersecurity discipline. Experience in a Cyber Risk, SOC, or Red Team position will be highly regarded. At least 3 years' experience in a management position with direct reports, creating and delivering on strategic roadmaps, leading your team to success. Familiarity with cyber security concepts, taxonomies and analytical frameworks, including (not limited to) : CIS, NIST, APRA CPS, E8, Lockheed Martin Cyber Kill Chain, MITRE ATT&CK and D3FEND frameworks. A broad understanding of general cybersecurity and information technology topics, principles and regulations relevant to a modern enterprise environment. Strong presentation, written and verbal communication skills. Demonstrable experience managing key stakeholder relationships, and an ability to build, maintain and enhance those relationships, particularly as they apply to IT Infrastructure teams. Experience using one or more of the following technologies : Vulnerability Scanners, Attack Surface Management (ASM), Cloud Security Posture Management (CSPM), SaaS Security Posture Management (SSPM), and other tooling generally aligned to Cloud-Native Application Protection Platforms (CNAPP). A keen eye for opportunities to improve or automate existing workflows and processes. Knowledge of the threat landscape, threat actors, attack patterns, adversarial behaviours and tradecraft, including : Tactics, Techniques and Procedures (TTPs), especially those relevant to Government, the Financial Sector and Critical Infrastructure. Support cross-functional responsibilities and other duties as directed by the Chief Information Security Officer (CISO). It is desirable that the ideal candidate will have undertaken, or be in the process of undertaking at least one of the following certifications or associated courses (or similar) Bachelor's degree in a relevant field, or equivalent practical experience Certified Information Systems Security Professional (CISSP) or Certified Information Systems Manager (CISM) A baseline security clearance is required for this role and therefore we can only accept applications from Australian Citizens. Working Arrangements Potential requirement to provide on-call or shift support outside of normal business hours. Potential requirement to work irregular hours, including weekends, and public holidays with minimal notice. Potential requirement to be contactable outside of business hours for problem resolution. Why RBA? The RBA makes an important contribution to the Australian economy through the pursuit of national economic policy objectives and associated activities in financial markets and banking. We also issue Australia's banknotes and operate infrastructure critical to the payments system, all of which contribute to the welfare of the Australian people. Made up of specialists across a wide range of fields, our people, values, and culture play a critical role in achieving our objectives. Striving to be Open & Dynamic, we consider and incorporate different perspectives, work across teams and are transparent with each other, whilst delivering quality together effectively and focusing on outcomes by prioritising, testing, learning, and refining as we go. Our people conduct themselves with a high degree of integrity, while striving for excellence in the work they perform and the outcomes they achieve. We encourage intelligent inquiry and we treat one another with respect while promoting the public interest through our efforts. We know it is the growth and success of our people that drives the RBA forward. Come and make a bigger contribution while you build and develop your own skills too, because being more means you can do more, for yourself and for Australia. The Reserve Bank of Australia is committed to equity, diversity and inclusion through key initiatives. We welcome and encourage applicants from diverse backgrounds to apply, including Aboriginal and Torres Strait Islander peoples, culturally and linguistically diverse background, those living with a disability and from the LGBTQ+ community. We are committed to making the recruitment process fair and equitable for all our candidates. Seniority level Mid-Senior level Employment type Full-time Job function Information Technology Industries Technology, Information and Internet #J-18808-Ljbffr