Senior Manager InfoSec Role Type: Ongoing Grade: 11/12 The Department of Customer Service offers flexible working arrangements and work / life balance including flexible locations within NSW, remote working opportunities, flexible start and finish times and flex days off in addition to your normal annual leave entitlements. The Department of Customer Service (DCS) is undertaking an ambitious digital transformation of government services. Government Technology Platforms (GTP) forms part of Digital NSW, an agency within DCS, and delivers digital capabilities and infrastructure solutions to many NSW Government agencies. About the role: This is an exciting opportunity to work within Government Technology Platforms driving the information security of new and existing applications delivered to the whole of NSW government. The role will lead the team responsible for performing a range of activities including maintaining the Information Security Management System (ISMS), security risk assessment, PCI compliance, security awareness, business continuity, uplift of information security-related documentation, coordination with security partners and stakeholders, and providing information security advice to the organization. In addition to the general people leadership aspect, the role will need to provide technical information security leadership to drive process maturity. About you: You have extensive information security experience working within complex environments. Although you may be a deep specialist in one information security domain, you have a broad knowledge across the wider security landscape, both in the cloud and on-prem, placing you in a position to help guide the team. Within your career you have led teams, where you have enjoyed supporting people to grow in their career and have a proven history of building a team to drive results. You’re confident managing stakeholders at all levels, stepping outside of your comfort zone to find solutions, and are also comfortable with saying “no” when all other options have been explored. Your role will involve: •People leadership of a team of information security specialists. Hiring, inspiring, coaching, and mapping out development plans to help them grow. •An escalation point for issues faced by members of the team, and a point of contact for stakeholders across the organization. •Working with internal and external partners to ensure the smooth delivery of information security services. •Providing security advice in line with industry frameworks and standards including NIST, CIS and OWASP, while also ensuring that the advice meets public sector policy requirements. •Driving the maturity of the security risk assessment process. •Uplifting documentation and technical policies in line with best practice. •Ensuring that solutions comply with internal policies, standards and compliance procedures. •Being a central contact in the event of a Business Continuity event, where you will be responsible for coordinating the response. To be successful you will have most of the following: •Proven track record of leading a diverse team of information security specialists. •Extensive experience across a broad range of information security topics. •Strong experience with the processes used to perform security risk assessments which consider both technical implementation and compliance to documented policies and procedures. •Knowledge and understanding of relevant industry standards and frameworks which may include OWASP, NIST and CIS. •Working knowledge of ISO 27001:2022, PCI-DSS and the overall Governance, Risk and Compliance (GRC) space. •Experience supporting Business Continuity activities. •Experience with internal and external information security audits. •Excellent stakeholder engagement and communication skills – the candidate should demonstrate ability to consult, facilitate and adapt the engagement approach to cater to a diverse range of stakeholders both internal stakeholders as well as external service vendors. •Understanding of Cloud technology and compliance (As-a-Service). •Ability and willingness to help upskill the team with your deep information security knowledge. Any certifications or completed training related to the above-mentioned criteria would be viewed favourably. To learn more about this opportunity, please access the role description. Please note, our role descriptions are generic and may not have the same role title as the opportunity advertised. This advertisement provides the best indication as to the activities expected from this role. Working at Department of Customer Service The Department of Customer Service is a great place to work! Our values of accountability, trust, service and integrity drive our initiatives and culture. We support innovative programs in areas as broad as digital government, consumer protection and major public works. We are an inclusive organisation that celebrates diversity and flexible work practices and believe our people are our greatest asset. Click here to access the Role Description. If you do require an adjustment during the recruitment process, please notify us on your application form. Salary Grade 11/12, with the base salary for this role starting at 145,378 base plus superannuation Click Here to access the Role Description. Visit the Capability Application Tool to prepare for the recruitment process by accessing practice application and interview questions based on the focus capabilities listed in the role description. Closing Date: 1st of August 10am Careers at Department of Customer Service A career at the Department of Customer Service (DCS) gives you the opportunity to help improve government services and be part of reform that benefits people across NSW. We are focused on delivering excellent customer service, digital transformation, and regulatory reform. Come join us and influence the future of our great state. Belong in our diverse and inclusive workplace The strength of our workforce lies in its diversity and embracing difference, while the key to our success is leveraging the contributions of employees with different backgrounds and perspectives. You can view our full diversity and inclusion statement here. For more information, please visit Information on some of the different types of disabilities Information on adjustments available for the recruitment process