Cyber Compliance Officer

Founded in 1978, Dicker Data is Australia’s leading locally owned and operated distributor of ICT hardware, software, cloud and IoT solutions for over 10,000 reseller partners across Australia and NZ.

An ASX listed (ASX: DDR) company, we are recognised in the industry for our award-winning record of gender equality, diversity and inclusion and we pride ourselves on building sustainable business practices. We understand the importance of hiring the right people to build successful teams, and of supporting our people to reach their full potential in every aspect of work and life.

Our Vision 

To inspire, educate and enable Australian technology resellers to achieve their full potential through the delivery of unparalleled service, technology and logistics.

Our Values

At Dicker Data, we pride ourselves on our family centric culture. Our people band together for a common goal, willing to lend a helping hand and often going above and beyond to support their colleagues. The values that underpin our company culture are the drivers of our ongoing success:

• Agile
• Solution focused
• Respect for all people
• Integrity in the way we operate

About the Role

We are seeking a highly motivated and detail-oriented Cyber Compliance Officer to join our team in Australia. In this critical role, you will play a pivotal role in safeguarding our organization's data and ensuring adherence to relevant cyber security regulations and the Australian Privacy Act (1988). You will be responsible for identifying and addressing potential compliance breaches and educating and empowering our internal staff to adopt best cyber security practices. This role requires a strong understanding of cyber security frameworks, regulations, and the intricacies of the Australian Privacy Act.

Responsibilities:

Compliance Management:

• Conduct regular assessments to identify areas where current practices may not comply with relevant cyber security regulations, standards, and the Australian Privacy Principles (APPs) outlined in the Privacy Act.
• Collaborate with IT and relevant departments to develop and implement corrective action plans to address identified compliance gaps, ensuring adherence to both cyber security and privacy regulations.
• Track and monitor compliance progress, reporting updates to senior management, highlighting potential risks and impact on data privacy.

Regulatory Knowledge:

• Maintain deep awareness of evolving cyber security regulations and frameworks, such as HIPAA, PCI DSS, GDPR, and industry-specific regulations, whilst constantly staying updated on amendments and interpretations of the Privacy Act and its APPs.
• Interpret complex regulations and translate them into actionable steps for internal stakeholders, ensuring clear understanding of privacy obligations and their impact on data handling practices.
• Proactively research and recommend the adoption of new regulations or best practices that enhance our cyber security posture while upholding data privacy obligations under the Privacy Act.

Internal Training and Awareness:

• Develop and deliver engaging training programs to educate staff on cyber security best practices, including password hygiene, phishing awareness, social engineering techniques, and awareness of their rights and responsibilities under the Privacy Act.
• Collaborate with other departments to integrate cyber security and privacy awareness into onboarding programs and ongoing training initiatives.
• Foster a culture of cyber security and responsible data handling within the organization, promoting safe and compliant online behavior.

Incident Response and Reporting:

• Participate in the organization's incident response plan, supporting investigations and remediation efforts in case of potential breaches, ensuring data privacy considerations are addressed throughout the process.
• Document and report compliance incidents according to established procedures and regulatory requirements, including notifications to the Office of the Australian Information Commissioner (OAIC) as mandated by the Privacy Act.
• Identify trends and patterns in identified breaches to inform future prevention strategies, considering both cyber security and data privacy vulnerabilities.

Our Benefits

• A highly competitive salary package depending upon experience
• Hybrid and sustainable working environment
• Staff only on-site gym & weekly corporate fitness classes
• A selection of freshly prepared lunch options provided daily
• Free on-site parking and electric parking stations
• A relaxed, modern office setting with smart casual dress
• Access to discounted banking, superannuation and health insurance offers via our corporate partners
• Company paid parental leave scheme
• Employee Assistance Program
• On site school holiday program for children of Dicker Data staff

Only those with the legal right to work in Australia may apply for this position.
Only short-listed candidates will be contacted.