Director of Search Execution at Robert Half Executive Search
Associate Director or Senior Manager Opportunity - Cybersecurity Technical Services
Growing Multinational Firm | Accelerated Career Path to Director | Diverse FS, ASX Listed and Government Client Base | Varied Engagement Types | Hybrid & Family Friendly Workplace | Progressive Wellbeing Policies & Benefits.
The Company
Robert Half Executive Search has been exclusively retained by a global consulting firm to identify an ambitious Sydney-based senior cybersecurity consulting professional to lead and expand its Cybersecurity Operations & Technical Services capability within its Technology Consulting practice.
Our client offers an accelerated career path for ambitious high-achievers and is open to hiring at the Associate Director and Senior Manager level and welcomes expressions of interest for either role from aspirational and driven individuals committed to building high-performing teams in an entrepreneurial and autonomous culture.
This globally respected firm offers an entrepreneurial boutique-style business environment locally, as well as the deep subject matter expertise, world-class methodologies and financial backing that comes with being part of a large well-established global firm. This independent firm's consultancy solutions span Cybersecurity, Security & Privacy, IT Audit, Technology Risk and Operational Resilience, Risk and Compliance Advisory, Internal Audit and Business Performance Improvement.
Working with an inspiring and diverse Leadership Team who are committed to their teams’ development, employees of this firm enjoy the freedom to generate exciting and challenging pieces of work in their areas of interest without the frustration of external audit conflicts rendering many clients off-limits due to conflicts of interest.
Our client promotes a flexible, family-friendly work environment, progressive wellbeing policies and global internal networking groups, a holistic suite of benefits and a competitive remuneration package including a competitive performance related bonus component.
The Role
The successful candidate will deliver advanced, measurable security outcomes across identity, privileged access, threat detection, data protection, and operational resilience. They will own the end‑to‑end lifecycle—from strategy and architecture through implementation, configuration, run‑state operations, and continuous optimisation—across IAM, PAM, SIEM, and DLP platforms.
The Associate Director will partner with CISOs, CIOs, Risk and Technology executives to strengthen security posture, align operations to compliance requirements, and integrate controls across hybrid, cloud, and on‑prem environments. They will manage multidisciplinary teams and vendor partners, ensuring high‑quality delivery and sustainable operations for clients in the Sydney market and beyond.
Role Responsibilities
Strategy & Architecture
* Define and execute cybersecurity operations strategy and roadmaps aligned to client risk profiles and business objectives.
* Design identity‑centric, zero‑trust aligned architectures that integrate IAM/PAM with SIEM, DLP, EDR/XDR, CASB and cloud‑native controls.
* Conduct capability assessments, maturity baselines, and develop actionable remediation plans.
* Lead delivery of IAM and PAM platforms (e.g., Entra, Priva, SailPoint/Oracle IGA, Azure AD/Okta, CyberArk/BeyondTrust) including connector development, role modelling (RBAC/ABAC), SoD controls and access certification.
* Implement and optimise SIEM (e.g., Splunk, Microsoft Sentinel, QRadar) and SOAR platforms, including content engineering (parsers, correlation rules, detections), automation playbooks, and integrations with EDR, IAM and cloud telemetry.
* Establish enterprise DLP controls (e.g., Microsoft Purview, Symantec/Proofpoint/Forcepoint) across endpoints, email, cloud and collaboration tools, including policy definition, tuning and incident workflows.
* Integrate security tooling across hybrid environments (on‑prem, cloud, SaaS), leveraging APIs and event pipelines for unified monitoring and response.
Operations, Monitoring & Incident Response
* Own run‑state operations for IAM/PAM, SIEM and DLP: platform health, patching, upgrades, tuning, access reviews, and continuous control monitoring.
* Develop and execute incident response playbooks, lead tabletop exercises and crisis communications with executive stakeholders.
* Drive security automation and orchestration to reduce MTTR and increase operational efficiency.
* Build, Implement and Oversee SOC operations and threat management: triage, investigation, containment, eradication and recovery.
* Quantify cyber risk and identity‑related risk; uplift governance structures and scalable operating models.
* Implement controls aligned to NIST CSF/800‑53, ISO 27001, ASD Essential Eight, SOC 2 and PCI DSS; support APRA CPS 234 and Privacy Act obligations as relevant.
* Establish metrics and reporting (KPIs/KRIs) demonstrating control effectiveness, operational performance and business value.
Leadership, People & Partnerships
* Lead multidisciplinary teams across delivery and operations; mentor Consultants, Senior Consultants, Managers and Senior Managers.
* Act as trusted advisor to CISOs, CIOs and business executives; communicate maturity gaps, solution options and program outcomes.
* Strengthen market position through go‑to‑market initiatives, proposal development, and strategic vendor partnerships within the identity and security ecosystem.
Your Profile
The Ideal candidate is an ambitious, articulate and accomplished Cybersecurity consulting professional from a Big 4 consulting firm, a large technology consulting business or a boutique specialist consulting practice. Our client is also keen to meet individuals who may currently be working in industry and are seeking a return to the consulting world.
Our client will create tailored career plans to ensure the cadence of an accelerated career plan to the next level for each team member and is keen to consider current Associate Director, Senior Manager, Manager (or similar) level individuals who are passionate about Cybersecurity and have proven deep operations and tooling expertise who can design, implement, and run controls at scale across IAM, PAM, SIEM and DLP.
The Successful candidate brings a balanced blend of technical acumen, advisory capability and people leadership skills, enabling end‑to‑end transformation and durable run‑state operations.
Technical and Functional Competencies Of Interest
* Experience: Several years’ in cybersecurity with experience in leading security operations or technical delivery teams; consulting experience highly regarded.
* IAM: Identity Governance and Administration (IGA), lifecycle (JM/L), role modeling RBAC/ABAC, SoD, access certification, authentication/authorisation (SAML, OAuth, OpenID Connect, Kerberos), directory services.
* PAM: Privileged credential vaulting, session monitoring, JIT/JEA, least‑privilege enforcement, break‑glass processes; platforms such as CyberArk, BeyondTrust, Delinea.
* SIEM/SOAR/UEBA: Content engineering, detections and use‑cases, threat hunting, playbooks, log source onboarding and normalisation; tools such as Splunk, Microsoft Sentinel, QRadar, Elastic, Cortex/XSOAR.
* DLP & Data Security: Enterprise policy design and tuning across endpoints, email and cloud; classification and encryption; insider risk; tools such as Microsoft Purview, Symantec, Proofpoint, Forcepoint.
* Endpoint, Cloud & Network: EDR/XDR (e.g., CrowdStrike, SentinelOne), CASB/SASE (e.g., Netskope, Zscaler), CSPM and cloud‑native controls across AWS, Azure, GCP.
* Risk, Compliance & Audit Alignment: mapping controls to frameworks, audit readiness and evidence management: Familiar with NIST CSF/800‑53, ISO 27001, SOC 2, PCI DSS, ASD Essential Eight; understanding of APRA CPS 234 and Privacy Act requirements in Australia.
* Integration & Automation: APIs, event pipelines, SIEM content, SOAR playbooks, scripting (Python/PowerShell). Infrastructure‑as‑Code for security control deployment, CI/CD alignment with DevSecOps.
* Vulnerability Management & Threat Intelligence: scanning, prioritisation, remediation, and intel‑driven detection use‑cases.
* Soft skills: Client‑focused, exceptional communication, stakeholder influence, entrepreneurial mindset, resilience in high‑pressure environments.
What this firm can offer to prospective Employees
* Tailored progression and promotion planning.
* Varied projects and engagements across a diverse client base, including some of Australia’s largest organizations.
* A career with the opportunity to learn, inspire and advance within a collaborative and diverse company culture.
* Consistent recognition as a great place to work by employees, peers and external research organizations.
* Flexible work arrangements to suit individual needs, recognizing the importance of work-life balance.
* A strong track record and appetite for growth nationally and globally.
* Attractive compensation including bonus earning potential.
* Professional membership reimbursements and study assistance.
* Generous Leave policies.
* National and International diversity, equity and inclusion networking groups.
* Global Mobility program.
Seniority level
* Mid‑Senior level
Employment type
* Full‑time
Job function
* Consulting, Information Technology, and Project Management
Industries
* Professional Services, IT Services and IT Consulting, and Business Consulting and Services
#J-18808-Ljbffr