Our mission and where you fit inAt Employment Hero, we’re an ambitious bunch of people on a mission to make employment easier and more valuable for everyone.Since our inception in 2014, we've had some pretty impressive growth (100% YoY), now serving 300,000 businesses globally, with 2 million+ users on the platform, reaching unicorn status in 2022 - and we have no plans to slow down. There’s never been a more exciting time to join one of the fastest-growing SaaS unicorns, so let’s see if we could be a match!Employment Hero celebrates diverse perspectives and experiences, we invite people of all backgrounds and identities to apply for this position.What might your days look likeWe're a team of global innovators, who cherish diverse perspectives that fuel our mission; to simplify the world of work for SMBs worldwide.As our Information Security Specialist, you will be leading the charge in developing and executing a robust security strategy, staying ahead of cyber threats. Penning and maintaining policies, you'll ensure compliance and safeguard sensitive data. Collaborate with teams, respond to audits, and implement cutting-edge security tools. If you're ready to defend our digital realm, look no further.As our Information Security Specialist, you’ll be:
- Operating the Information Security management system across Employment Hero.
- Developing and executing a holistic Information Security strategy that aligns with the company's objectives and effectively mitigates cyber threats.
- Write and maintain Information Security policies to ensure compliance and the protection of sensitive data.
- Support the improvement and management of our cyber security capabilities.
- Stay up to date with the latest cybersecurity threats, trends, and technologies, and proactively recommend enhancements to the company's security posture.
- Collaborate with internal stakeholders, including IT, legal, and risk management teams, to identify security requirements and implement appropriate controls and safeguards.
- Respond to compliance audit requests and demonstrate a strong understanding of compliance frameworks and regulations such as ISO27001, NIST, and CPS234.
- Conduct internal audits and provide recommendations to key stakeholders based on findings.
- Implement and maintain security tools and systems to ensure optimal performance and address evolving threats
- Experience in information technology, Information Security, risk management
- Industry certifications such as CISSP, CISM or CISA are highly desirable
- Demonstrated knowledge and understanding of contemporary frameworks and methodologies, such as ISO 27001, NIST 800-53, NIST Cyber Security Framework (CSF), and Australian Information Security Manual (ISM)
- Excellent written, oral, and influencing skills with the ability to work autonomously
- A strong focus on continuous improvement, with a proven ability to challenge the status quo constructively
- Broad knowledge of current Governance, Risk and Compliance (GRC) technological tools and methodologies
- Strong consultative skills, enabling effective communication of complex concepts to both technical and non-technical audiences
- Meticulous attention to detail
- A strong desire to learn and expand knowledge in the field of Information Security.
- Remote-first and flexible working arrangements
- A generous budget to spend on setting up your home office (if you need a desk, chair, or screen? We’ve got you covered!)
- We set you up for success with the latest and greatest hardware, tools and tech
- Learning and development (including an external study policy, live monthly professional development classrooms, and premium online learning content!)
- Reward and recognition programs - because great work should be recognised and rewarded
- Including Lightning Award for delivering quality work at speed and Values Champion Awards
- Swag app cashback offers and discounts on hundreds of your favourite brands and products
- Self, health, wealth and happiness programs
- Social events and team celebrations
- Employee Share Option Program: be an owner of Employment Hero
- Annual Global Gathering to get to know your global colleagues - so far we’ve been to Thailand, Vietnam and are excited to meet in Bali in September 2024
- If you’re excited about Employment Hero, but this role is not the one for you, we encourage you to explore our careers page, packed with many more great opportunities.
- Know someone who would be a great fit? Feel free to share the role with your network!