We've been trusted to serve Aussie communities since 1914 and grown to become a top 30-listed on the ASX with 120,000 team members and a portfolio of iconic brands. At Coles Group, you'll not only get to make a difference to millions of Aussie lives-you'll also get to see your impact.About the teamTechnology is the backbone of our business. Every day, our team solves complex and meaningful problems. Those solutions help thousands of our fellow team members succeed and make millions of customers lives easier every day.The security team at Coles is proud of their successful delivery of customer-focused solutions. There are a lot of exciting initiatives on the horizon as protecting our customers, team members and reputation is essential to being the most trusted retailer.About the roleDirectly reporting to our General Manager Cyber Security, this is a highly sought-after opportunity for an experienced Head of Group Cyber, Business Protect & Governance to lead the Coles' Business Protect & Security Governance function, ensuring that cyber risk is properly managed & appropriate frameworks, processes, and tools are in place to assess and monitor Coles' security capability in line with the strategic plan and risk and compliance requirements.In this role you will provide strong strategic and delivery leadership to the Coles' security governance capability, while displaying superior people leadership skills that build trust within your team, and across all business and technology teams. Leveraging your subject matter expertise and experience, you will set the vision for security governance and be accountable for developing a strategic plan that supports the broader Coles group and tech strategy.You will own the Business Protect & security governance capability for Coles, build and maintain security governance standards and processes. You will make sure cyber exposure is properly understood and managed. You will have a strong focus on managing risk and compliance. You will implement and embed tools and mechanisms into your team with processes to support on-going monitoring and reporting. In this role you will be accountable for individual and team compliance with company values, policies and procedures (including Coles Code of Conduct) and all applicable external laws and regulations.About you & your skillsYou will be an experience leader within governance, risk and compliance with a passion for driving change and diversity, and delivery across the organisation.You'll also have:
- 10+ years of experience in Cyber Security roles with a recent focus on Governance, Risk, Compliance & critical infra
- Experience in establishing and operating security controls compliance programs for large organisations, including strategic planning and roadmap development.
- Experience with GRC products e.g., RSA Archer
- Ability to present to, and influence, senior team members to progress security controls compliance across Coles.
- Demonstrated ability to lead a diverse, inclusive team of technical and non-technical team members.
- Proven capabilities in vendor, partner and stakeholder relationship management including the monitoring and maintenance of outsourced agreements and project delivery to agreed service levels and timeframes.
- Proven capability in financial management and resource management
- Demonstrable people leadership experience, strategic thinking, and experience in influencing senior stakeholders.
- Tertiary qualifications in a related discipline
- Relevant security certifications beneficial
- Demonstrated track record of leading governance, risk, and compliance functions in large complex environments.
- Strong understanding of applicable legal and regulatory requirements such as PCI DSS, PII and SOCI Act
- Strong understanding of industry security standards, frameworks, and best practices
- Experience in implementation of international aligned cyber framework like NIST and/or Essential 8 in a large complex organization is highly desirable.