Lead and strengthen Council's cyber security capability by protecting systems, networks, and data from threats. Partner with stakeholders to identify risks, implement controls, manage incidents, and embed security into all technology initiatives.
Key Responsibilities
* Develop and implement a Council wide Cyber Security Framework and program
* Identify risks through assessments and vulnerability testing; implement mitigation strategies
* Manage and optimise security tools (e.g. firewalls, intrusion detection, endpoint protection)
* Lead incident response and conduct root cause analysis
* Ensure compliance with standards (e.g. Essential 8, Mandatory 25, PCI-DSS)
* Deliver cyber awareness training across the organisation
* Embed security and compliance into all projects and system changes
* Support business continuity and disaster recovery planning
* Engage and influence stakeholders across all levels, including executives
* Provide regular reporting on risks, threats, and security posture
Skills & Experience Essential
* Degree in IT or related field
* Strong knowledge of cyber security frameworks, standards, and regulations
* Proven experience delivering cyber strategies and programs
* Experience in incident response and security investigations
* Strong analytical, problem solving, and project management skills
* Excellent communication skills with ability to translate technical concepts
* Certifications such as CISSP, CISM, or CRISC
Core Expectations
* Actively contribute to a safe, compliant, and high performing workplace
* Support a positive, inclusive culture aligned to Council values
* Uphold governance, risk, and compliance standards
* Integrate cyber security into broader organisational strategy
#J-18808-Ljbffr