Flag job

Report

Manager, Information Security & Risk

Location

Melbourne - CBD

JobType

Ongoing Full Time

About the job

Info This job is sourced from a job board

About the role

We're building the biggest infrastructure project in Victoria's history, and we need someone to protect it from the digital dark arts. As Manager, Information Security and Risk, you'll play a vital role in safeguarding the digital backbone of the SRL project. Your work will span across the business. You'll utilise your expertise to advise on security matters and engage diverse stakeholders to delivery key projects. You'll have a VPS Grade 6 Information Security Specialist and a VPS Grade 5 Cyber Security Analyst reporting to you. Reporting to the Chief Digital and Data Officer, your key responsibilities will include: Leading the ongoing development and implementation of the cyber security program and roadmap Building relationships and managing communication with stakeholders to ensure that business is informed when planning new business projects Providing advice regarding cyber security in procurement and contract management activities, through the assessment of security checklists, certifications and security assurance reports Coordinating and overseeing response to cyber security incidents Reporting on cyber security matters to the Chief Digital and Data Officer, management, executives and board, including the organisation's security risk profile, the status of enterprise and business systems and any outstanding security risks, planned cyber security uplift activities, and recent cyber security incidents Creating and delivering cyber security awareness training programs Developing and implementing standards and guidelines in compliance with the Victorian Protective Data Security Standards (VPDSS) Managing the combined Information and ICT security register and utilising the Victorian Protective Data Security Framework (VPDSF) to achieve VPDSF attestation and meet its goals for cyber risk Charing the internal Security Working Group Advising on appropriate governance and management practices for security controls and risks, as part of formal or informal advisory agreements Contributing to business continuity and disaster recovery planning to improve business resilience and ensure the continued operation of business-critical processes

About the company

Suburban Rail Loop (SRL) is an integrated transport infrastructure and precincts planning project that will deliver a 90km rail line linking every major train service from the Frankston Line to the Werribee Line via Melbourne Airport, as well as investment in the suburbs, better connecting Victorians to jobs, retail, education, health services and each other. Suburban Rail Loop Authority (SRLA) is the statutory body established to plan all elements of the project, procure builders, develop structure planning for SRL Precincts and oversee construction and the other changes that will help transform Melbourne and Victoria. SRL is more than a rail project. It's a once-in-a-generation opportunity to plan for and prepare our city and state to meet the needs of future Victorians, and we can't do it alone. We are on the lookout for people with drive, expertise, fresh ideas and new perspectives to deliver Victoria's biggest ever infrastructure project. You will be part of history in the making, and while we're at it, we will be shaping your future too.

Skills

cyber policy
risk mitigation
cyber assurance
security architecture
cyber security controls
cyber security policies
information security
privacy