Lead the Cyber Security practices across ICT and Digital teams
- Location: Fiona Stanley Hospital, Murdoch, Perth
- Permanent, Fulltime Opportunity
**Come join us at Perth's most digitally advanced Hospital, where you can bring your passion for helping people to make a direct and positive impact to your community.**
**The Serco ICT Digital Team at Fiona Stanley Hospital**
We are a dedicated team of over 100 IT professionals delivering comprehensive managed ICT & Digital services to the Fiona Stanley Hospital. We work with clinical and non-clinical stakeholders to plan, design, build, maintain, and support the digital solutions at Western Australia's largest and most digitally enabled public healthcare facility. In short, we take care of the technology so that health workers can focus on taking care of patients.
**About the Role**
Reporting to the Head of IT Operations, this position leads the ICT Security Team, developing and implementing robust security measures to safeguard the organization's digital assets and mitigate cyber threats. You will also be responsible for assessing risks, establishing policies, and ensuring compliance with relevant regulations and standards in line with Health and industry standard security framework.
The Cyber Security Manager provides leadership, management, and direction on cyber security matters to key stakeholders ensuring alignment with Contract initiatives and KPIs.
Key responsibilities include:
- Ensuring Cyber Security Lifecycle practices (i.e., NIST Cyber Security Framework), procedures and resources are in place and operating effectively.
- Review actual or potential security breaches and vulnerabilities and ensures that they are promptly and thoroughly investigated. Recommend actions and appropriate control improvements.
- Accountable for Security Incident Response processes and leads Security Incident Response Teams (SIRT)
- Engages with and motivates key subcontractors and vendors to support delivery of the hospital's technology service requirements.
- Provide leadership and technical guidance including coaching and development of personnel as well as staff engagement and performance management as required.
- This is a position of trust and responsibility and to support this we will conduct a thorough probity assessment, which includes national police check as an essential selection component for this role._
**About You**
You possess strong leadership, analytical, diagnostic, problem solving skills as well as the ability to foster a collaborative team spirit focused on service delivery. You have good interpersonal skills, demonstrated by the ability to effectively interact with business managers, users, and executive management.
To be successful in this role, you will have extensive experience in
- Information security and/or cyber security
- Computer network penetration testing and techniques
- Performing risk assessments and providing recommendations for closing compliance gaps or compensating controls, articulating residual risk
- Putting in place risk mitigation plans
- Day-to-day management of a team within the operations of a hospital environment or an organisation with a similar focus
- Working within a customer orientated environment
- Budget submissions and P&L; management
- Demonstrated ability to identify and mitigate ICT system vulnerabilities, and explain how to avoid them
- Specific technology and vendor background preferred, including, Security Incident and Event Management (SIEM), User Behaviour Analytics (UBA), and vulnerability detection and management toolsets
- Strong proven ITIL based service delivery management and history.
**Desirable**
- Post-graduate degree in information systems security or a related field, or equivalent experience Current Cisco Certified Network Associate (CCNP) Security certification, or equivalent
- Current Certified Information Systems Security Professional (CISSP)certification
- Current Certified Information Security Manager (CISM) certification
Video