At ASIC, you can be the change that ensures a fair, strong and efficient financial system for the benefit of all Australians. Contribute to delivering on ASIC's purpose, vision, and strategic priorities to help maintain the integrity of the financial system and protect consumers from harm.
ASIC's Cyber Security Group is seeking a dynamic and highly experienced Senior Cyber Assurance Advisor to join their Cyber Assurance & Engagement team in a pivotal role responsible for leading cyber advocacy and driving Cyber Digital Transformation within ASIC's RegistryConnect (RC) Program.
All capital city locations will be considered 24 Month Fixed Term position Salary from $165,011 to $185,637 (depending on experience) + 15.4 % superannuation Applications will close at 11:59pm AEST, Friday 6 June 2025
The team
ASIC's Cyber Security Group delivers a broad range of services across the organisation which include security architecture and design, incident response, and cyber assurance. We leverage advanced security technologies with a growing emphasis on automation and analytics to help ASIC become a best-in-class regulator for Australia's financial markets.
The role
As a Senior Cyber Assurance Advisor, you will play an important strategic role in identifying, monitoring cyber risks and reporting risk exposure to ASIC's executive leadership. You will lead cyber advocacy efforts across key initiatives such as the Cyber Digital Transformation and RegistryConnect Programs contributing to the development of a resilient and security conscious organisational culture.
More Specifically, You Will
Identify, Provide expert cyber assurance guidance on risk, governance, and compliance with government and industry frameworks. Advise on the design and review of cyber security controls, including mechanisms to monitor their effectiveness against best practice standards. Support project teams—particularly within the Cyber Digital Transformation and Registry Connect Programs—to ensure deliverables meet ASIC's security standards. Identify security risks and recommend mitigations in collaboration with project and cyber security teams. Assess the adequacy of security controls in technical systems and services during procurement processes. Enhance ASIC's cyber assurance assessments, KRIs, and reporting frameworks. Report on cyber security capabilities to internal governance bodies, including risk committees and auditors. Review and improve third-party risk management (TPRM) frameworks and processes. Facilitate internal and external security audits, including tracking and managing remediation activities.
About You
The ideal candidate is a strategically minded cyber security professional with deep expertise in cyber risk, audit, and governance particularly within Australian Security Government frameworks. They will bring proven experience leading cyber assurance across complex, high-impact programs and will be adept at partnering with project teams throughout the delivery lifecycle, they provide expert guidance on security controls, third-party risk, and compliance. Their ability to influence executive-level reporting and drive uplift in cyber maturity and culture positions them as a key contributor to ASIC's long-term security posture.
In Addition, You Will Have
Relevant tertiary qualifications and 8–10 years' experience in information security, with a strong GRC focus and proven expertise in cyber assurance or similar roles. Proven experience in developing and implementing cyber security policies, standards, and procedures in complex IT environments. Experience in Conducting security risk and capability assessments of systems, services, and third-party providers. Strong understanding of Australian Government security frameworks, including the PSPF, ISM, ASD Essential Eight, Australian Privacy Principles, and the Notifiable Data Breaches (NDB) scheme. Familiarity with industry standards such as NIST, ISO 27001, PCI DSS, SOC 2 (Type 1 and 2), and APRA guidelines. Ability to interpret and summarise technical, business, and financial documents, including reports and budgets. Excellent interpersonal and consultative skills, with the ability to communicate complex concepts clearly to technical and non-technical audiences. Experience collaborating with cross-functional project teams and maintaining strong stakeholder relationships. Security certifications such as CISSP, CISA, CCSP, or equivalent would be highly desirable.
Click 'apply' to start your application.
Applications will close at 11:59pm AEST, Friday 6 June 2025.
About ASIC
ASIC's remit is one of the broadest of regulators across the world. ASIC regulates corporations, markets, financial services and consumer credit and monitors and promotes market integrity and consumer protection in the Australian financial system. Through our enforcement work, we hold to account those who contravene the law, working to achieve strong outcomes that address the greatest consumer and investor harms.
ASIC is committed to a providing a diverse and inclusive workplace where the very best talent in Australia chooses to work. Indigenous Australians are encouraged to apply as well as applicants from all backgrounds and with different abilities.
We Offer a Range Of Employee Benefits Including
Attractive superannuation Additional leave entitlements 50/50 hybrid work-from home model Flexible work arrangements Assistance for study and professional development
Click here to view ASIC's salary and benefits guide.
To read more about ASIC, you can visit our website or review our Corporate Plan.
To work with us, you need to be an Australian citizen and be prepared to complete an ASIC Suitability and Baseline Assessment. #J-18808-Ljbffr