- Recognition @ Latitude: Education support, Better giving programme with charity partners, Latitude matches dollar for dollar, Community partner days -Ardoch volunteers supporting children in numeracy and literacy
- Annual salary reviews
- Flexibility @ Latitude: Flexible work arrangements - balance work and personal responsibilities, Hybrid set up - work from home & the office, 3 Days paid volunteer leave annually, paid community service leave, paid compassionate / bereavement leave
Let's talk about the role.
As the Cloud Security Assurance Lead, you'll be part of the team responsible for proactively measuring Latitude's information security controls posture relative to threat and making sure information security is implemented and operated in the way it should be, adhering to regulatory requirements as well as our own policies, standards and procedures, to keep us in check and secure!
You'll play a key role in contributing to maintaining the security controls framework, including testing criteria for each control, providing oversight and enterprise reporting of all security control testing.
In this role, you'll:
- Help secure and protect Latitude as a company people trust.
- Be responsible for the ongoing definition, measurement and monitoring the effectiveness of security controls.
- Proactively discover, validate and drive remediation of control gaps on Latitude information systems.
- Partner with key stakeholders from technology, business and support functions to identify criticality of assets and understand current state control posture and control deficiencies.
- Lead and execute security assessments of cloud resources, including infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS) platform.
- Identify risks and assessing the applicability of security controls to minimise cyber risk.
- Report on control operating effectiveness and security posture and establish an ongoing compliance reporting.
Let's talk about you:
- A solid background in information security and proven experience working with robust security control frameworks. You'll be very familiar with the NIST Cyber Security Framework, ISO 270001, ASD Strategies to Mitigate Cyber Security Incidents
- A strong understanding and operational experience in maintaining information security control frameworks.
- Awareness of industry standards and technology trends
- Experience in documentation of processes and internal security controls
- Experience working in an information Security Assurance / governance role, security architecture, Information Security Risk Management highly regarded.
- Can deliver documented risk assessments, processes, reports etc.
- Has experience in a regulated industry (financial services or fintech is highly regarded).
- Has exceptional analytical & problem-solving skills
- Certified in AWS, Cloud Security, CISSP, CRISC, CISM, Information Security/Computer Science/engineering highly regarded.
- Knowledge or experience with security tooling such as One Trust, Orca, Qualys
- Exposure to applications security, development and security technologies such as identity and access management, data loss prevention, encryption, key management etc.
Sometimes the best candidates don't have 100% of what is listed above, but if you have most and are confident you'd be a good fit, we'd love to hear from you!
Sound like you?That's a good sign! In return for your energy and ideas, we offer a flexible working environment and great compensation. We always support a safe, healthy, engaging, and productive working environment for all employees and workers, whether that be in your home and office, or a combination of both.
We're Latitude, partners in money.Latitude may seem like the new kid on the block, but it's taken us almost a hundred years to become an overnight success. Digital payments, cards, loans, and insurance is what we offer - but what we really are is a platform that helps people shop and live better.
Always living and breathing our values. Act Right, Show Care, Be Curious.
Successful applicants will be required to complete a background check (including criminal history and bankruptcy check) prior to commencement of employment. Only open to Australian or New Zealand Permanent Residents or Citizens.