Description
A well know finance company is URGENTLY seeking an IT Security and Compliance Manager. You will lead the development, implementation, and ongoing management of a security and compliance management framework and associated strategy. You will provide advice and guidance to the organisation on matters relating to Information Security management and compliance.
Responsibilities:
- Management and maintenance of information security strategy that will encompass computer systems, technology infrastructure, information assets and technology devices.
- Team Management and Leadership
- Define investment requirements and prioritise program of work.
- Assisting functional unit asset owners identify, establish and monitor requirements for protecting the confidentiality, integrity, security and availability of their resources.
- Serve as the principal Information Security management link between function units and Information Technology risk management
- Prepare high quality reports to Executive Management and relevant compliance committees to provide transparency over information security strategy and action item commitments to assist them meeting their risk management obligations.
Essential Skills:
- 10+ years experience in Snr IT Management roles
- Responsible for managing all aspects of Information Security, including compliance
Demonstrated knowledge - at an operational and strategic level - of IT Security and Risk management and Audit and Compliance management, across the key areas of Information Confidentiality, Integrity and Availability - Demonstrated ability to successfully interact with, influence and achieve buy-in from executive and senior business management
- Broad knowledge of IT security trendsAbility to translate IT risk into business impacts
- Strong Information Security Architecture skills with extensive experience in a technical consultant role
- Strong project management, report preparation, presentation and communication skills, including executive and Board level communication
- Strong leadership capability with a track record of building and maintaining a high performance team.
- Demonstrated understanding of IT security and risk related legislation, regulations and standards (eg. ISO , COBIT, AS 4360, ISAE 3402, PCI DSS, GS007, APRA guidance statements)
- Desirable: Current and historical active membership within the IT and security community
- Desirable: Relevant experience in wealth management, superannuation and/or financial protection
- Desirable: Vendor management experience in an outsourced infrastructure environment
CISA, CISM, CISSP, CGEIT, CRISC or equivalent.
For immediate consideration please send CV.