Lyra Technology Group is a private equity-backed holding company that invests and operates industry leading technology service businesses. Our companies are operated independently by exceptional management teams. Companies that join our group retain the employees, name, and culture that have made them successful. As a platform of Evergreen Services Group, we never divest from businesses we partner with and approach every decision with the goal of driving sustainable and healthy growth over the long term.
We made our first acquisition at the beginning of 2018. Today, we hold a controlling stake in 100+ companies across the US, UK, Australia, New Zealand, and Canada. Our companies employ over 3,000 team members, each led by their own management team, and provide world-class support to over 12,000 clients.
About The Position
One of our operating companies, REDD, is looking for a Head of Security and Compliance to join their team in Brisbane.
This is a great opportunity for a Senior Technical Consultant or Cyber Security Manager professional to step into.
As a Head of Security and Compliance, you will be responsible for leading REDD's security function, overseeing governance, technical security operations, risk management and client advisory. This role ensures the development, maturity and delivery of REDD's security services while maintaining strong customer trust, compliance alignment, and operational excellence. The Head of Security and Compliance provides strategic leadership, manages the security team, drives continuous improvement across platforms and processes, contributes to business strategy, and represents security at the executive level.
Responsibilities
Security Operations & Technical Leadership
* Lead security operations, incident response, and SOC/SIEM-driven environments.
* Oversee detection, investigation, response and remediation activities.
* Optimise and tune security tooling (EDR/XDR, MDR, email security, vulnerability management, application control).
* Ensure high-quality SOC processes and operational stability.
* Design and sign off on complex security architectures and platform strategies.
* Drive organisation-wide security uplift initiatives across multiple business units.
* Support R&D initiatives and evaluate emerging security technologies.
Governance, Risk & Compliance
* Develop and maintain governance artefacts, risk assessments, and compliance documentation.
* Ensure security services align with ISO 27001, Essential 8, SMB1001 and other relevant frameworks.
* Oversee audit readiness, reporting accuracy, and lifecycle security management.
* Deliver board-level reporting and executive security updates.
Leadership & People Management
* Manage direct reports, workload planning, and resource scheduling.
* Mentor and develop security team members.
* Drive cross-functional collaboration and organisation-wide initiatives.
* Lead talent development, succession planning, and capability uplift.
* Champion organisational culture, values, and performance excellence.
Client & Stakeholder Management
* Build trusted, advisory-level client relationships.
* Manage strategic security accounts and long-term uplift roadmaps.
* Deliver clear, tailored security communication to stakeholders.
* Identify opportunities for service improvements and posture enhancement.
* Act as senior escalation point for customers.
Commercial & Business Contribution
* Approve security Statements of Work within delegated authority.
* Identify growth opportunities within existing accounts.
* Support development of new service offerings and security products.
* Contribute to business strategy and align security initiatives with organisational objectives.
* Demonstrate strong commercial acumen and understanding of P&L impact.
Service Delivery Excellence
* Ensure high-quality delivery of security operations, governance, advisory and incident response services.
* Maintain audit-compliant documentation and reporting standards.
* Drive continuous improvement across reporting, workshops, and account support functions.
Skills required
* Relevant industry certifications (e.g., CISSP, CISM, CCSP, GIAC) / Cyber Security qualifications
* Demonstrated experience with governance frameworks (ISO 27001, Essential 8, SMB1001) desirable.
* Qualifications in business leadership, risk management or cloud security specialisations.
* Experience with leadership and mentoring.
* Excellent communication and executive presentation skills.
* Stakeholder engagement and negotiation skills.
* Effective conflict resolution and change management capability.
* High emotional intelligence and calm decision-making under pressure.
* Technical experience with:
o Threat detection and incident response
o SOC processes and security lifecycle management
o EDR/XDR, MDR, email security, vulnerability management tools
o Cloud architecture
o Digital forensics
o Emerging security technologies
o Security maturity frameworks
Benefits
* Hybrid working model - up to 3 days working from home
* Opportunity to build and shape your own team and Security Practice
* Club REDD Social events every month