Cyber Security Operations Lead

We are looking for a Cyber Security Operations Lead to join our team at RAC to lead the effective application of cybersecurity practices and controls to support RAC IT service operations in monitoring, managing and mitigating RAC security risks and vulnerabilities. This role will see you lead a team of security professionals working along side IT GRC specialists.
What will you be doing?

• Coaching and advising: Providing guidance and expertise to IT operation teams and business stakeholders on cybersecurity best practices
• Compliance and monitoring: Ensuring implementation, monitoring, and regular review of information security controls to meet regulatory compliance and audit requirements
• Team coordination: Driving effective cross-functional team operations and executing RAC IT security administration processes
• Incident response: Developing, advising, and applying security incident response plans, playbooks, and runbooks according to endorsed RAC security frameworks and policies
• Lifecycle security: Ensuring appropriate security controls are applied throughout the system development lifecycle
• Process evaluation: Evaluating the efficiency, effectiveness, and compliance of operational processes with enterprise security policies and related regulations
• Recommendations: Developing defensible "good practice" recommendations to improve security capability across the enterprise
• Collaboration: Collaborating with stakeholders to improve security compliance, manage risk, and bolster effectiveness

What are we looking for in you?

• Skills: Technical proficiency with security-related systems and applications, including network firewalls, web application firewalls, endpoint security products, vulnerability scanning and management solutions, secure application development practices, and patch management solutions across applications and infrastructure
• Knowledge: Proven knowledge of security frameworks and regulations such as NIST, CIS, ISO 27001, PCI-DSS, and Privacy Act is desirable
• Technical proficiency: Demonstrated ability to manage SIEM (Sentinel) tools across technical and Azure cloud environments accordance with endorsed RAC security policies and regulatory compliance procedures
• Certifications: Industry recognised certifications such as CISSP, CCSP, CISA, or CISM, along with proven experience with security-related industry standards/frameworks like NIST, PCI-DSS, CIS, or ISO 27001

Leadership: Strong leadership skills and the ability to manage a team of security professionals
What can we offer you?

• Working in an environment that is embracing a continuous improvement culture using experimentation to support learning
• Time dedicated to your personal development time with access to training, development, and certification programs to ensure you can upskill
• Being part of empowered, cross-functional agile delivery teams that works with the business to build systems that solve problems
• Complete flexibility to choose between working from the home or office with flexible hours for a better work life balance
• Building digital systems that will shape the future for the RAC and a better WA
• Gain RAC Staff Benefits including free Roadside Assistance and 25% discount on your Insurances, Social Club and access Fitness Passport for cheaper gym memberships

About RAC
As an Equal Opportunity Employer, RAC values inclusivity and promotes a workplace that actively seeks to welcome contributions from all people. We encourage people of all abilities, Aboriginal and Torres Strait Islanders, diverse cultures and backgrounds, LGBTIQ+ identities, and all age groups to apply.
RAC is committed to flexibility. If you need assistance or adjustments to fully participate in the application process, please contact recruitment@rac.com.au.