AddressCategories: Information Technology
Federal Group is a family-owned business with over 2500 employees across a range of industry leading brands. These include Hospitality and Tourism, Retail, Sensitive Freight as well as Gaming Technology.
We are on a journey to transforming our information technology landscape and are looking for individuals who want to contribute to this. Federal Group is driven by its focus on being number one or two in the markets it serves and enabling these world class operations though technology is critical.
Are you ready to apply your Technology Governance Risk and Compliance (GRC) knowledge and experience to uplift our capability and lead an exciting and challenging function?
We are seeking a highly skilled and experienced person as our Head of Technology GRC to lead our GRC and Cybersecurity function and deliver an associated cybersecurity, information, risk and compliance focussed program of work.
The successful candidate will have a proven track record leading a Technology GRC or cybersecurity functional team in a medium to large organisation with a history of achieving uplift in cyber security operational outcomes and successful delivery of a risk and compliance driven program of work.
You will report to the Group CIO and be located in Hobart Tasmania.
Key accountabilities:
- Lead development and implementation of GRC and cybersecurity related strategies and plans aligned with enterprise and corporate objectives.
- Support seamless integration with the corporate Audit and Risk function.
- Lead the response to security incidents, analysis impact and implement measures to prevent future breaches.
- Drive closure of Governance, Risk and Compliance matters, including Information Security Corrective Actions, GRC Incidents, Risk Mitigation tasks, and Internal Audit findings
- Own and lead delivery of the GRC technology roadmap and programs in collaborate with Technology and business leaders.
- Manage the budget assigned to GRC / information security function.
- Drive continuous improvement across Cyber Security and Technology Governance processes with a value enabling outcome focus.
- Provide periodical governance metrics reporting and tracking.
- Lead and mentor the GRC team to ensure performance, capacity, and capability of a high-performing team, enabling a robust, skilled, and collaborative functional capability.
- Develop productive and collaborative relationships (both vertically and horizontally) with key stakeholders across the organisation including ARC, business unit and technology functional leaders.
You will have:
- Demonstrated experience leading a GRC functional team including cyber security domain specialists (threat analysts, security engineers/architect)
- Knowledge of GRC related practices, legislative and regulatory frameworks (eg. COBIT, NIST, Essential Eight, CSF/RMF, ISO27001, PCI-DSS, Information and Privacy Legislation etc)
- Experience managing specialist services providers as part of a cost effective risk based security operating model
- Strong technical background with demonstrated experience leading delivery of cybersecurity and/or compliance related initiatives
- Professional certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) are highly desirable.
- Experience working in an Agile environment
This is the opportunity you have been looking for! Our team is small, but our outputs are impressive. We value the skills and perspective each team member brings. We work collaboratively to bring each team member along for the journey and will support you to build up any skill gaps you may have.
We offer a competitive remuneration package and free parking, lunch, dry cleaning, and staff discounts across our group of businesses.
Apply today! Contact
