Head of Security Architecture & Operations:
As the Head ofSecurity Architecture & Security Operations you will be responsible for leading and managing all aspects of organisation's security infrastructure, systems, and processes. This role requires a strong background in Security Architecture, excellent leadership and communication skills, and a deep understanding of Security best practices.
Hybrid role. You will be located in Sydney with 3 days in office, 2 from home.
Responsibilities:
- Develop and implement a comprehensive Security Architecture strategy that aligns with the organisation's goals and objectives.
- Lead the design, implementation, and maintenance of Security systems and solutions to protect the organization's information assets and infrastructure.
- Collaborate with cross-functional teams to identify security requirements and ensure that security measures are integrated into the design and development of new systems and applications.
- Conduct regular security assessments and audits to identify vulnerabilities and recommend appropriate remediation actions.
- Stay up-to-date with the latest security threats, vulnerabilities, and industry trends, and provide guidance and recommendations to mitigate risks.
- Develop and implement security policies, procedures, and standards to ensure compliance with relevant regulations and industry best practices.
- Manage and oversee security incident response activities, including investigations, documentation, and resolution.
- Provide leadership and guidance to the security team, including training, mentoring, and performance evaluations.
- Collaborate with internal stakeholders and external partners to ensure effective security governance and risk management.
- Foster a culture of Security awareness and continuous improvement within the organization.
Skills:
- Excellent leadership and communication skills, with the ability to effectively collaborate with cross-functional teams and senior executives.
- Strong analytical and problem-solving skills, with the ability to make sound decisions in complex and high-pressure situations.
- Security frameworks, standards, and regulations (e.g., ISO 27001, NIST, GDPR).
- Professional certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), CCSK are highly desirable.
- Experience with cloud Security Architecture and best practices is a plus.
- Knowledge and understanding of cyber security standards, processes, policies and metrics (encompassing network security, application security and data security).
- Understanding of industry best practices for Security Architecture frameworks, tools, standards and guidelines.
- Understanding of cyber security principles and security layers.
- Familiarity with SABSA, TOGAF, NIST 800-53, Open FAIR, MITRE ATT&CK/D3FEND, threat modelling and related methodologies or frameworks
- Security technologies and vendors covering: Palo Alto Networks, Proofpoint, Netskope, Zscaler, Tenable, Rapid7, Qualys, SentinelOne, CrowdStrike, Microsoft
- Experience working in an Agile environment
- Identity and Access Management
- Identity Governance: Cloud security across AWS/Azure and google cloud
- Strong ambition and ability to develop and expand cyber security services and product support.
- Outstanding interpersonal skills and the capacity to develop and maintain excellent working relationships with customers, stakeholders and vendors.
- Excellent presentation skills focusing on technical presales and solutions
- Strong documentation skills to develop customer facing technical and advisory documents
- Understanding of technologies: CASB, Web Filtering, Attack Surface Reduction, EDR, Network segmentation
- Strong understanding of Zero Trust architecture and concepts
- Experience with security engineering, infrastructure-as-code, CI/CD, automation, and application development desirable
- Experience with cloud security technologies desirable
Aboriginal and Torres Strait Islander Peoples are encouraged to apply. To apply please click apply or call Ben Leighton on +61 2 82893139 for a confidential discussion.