Help us deliver like never before
We’re looking for a Security Assu to join our diverse, talented and innovative digital technology team who together are helping our customers and communities build a better future. Together, we design, build and maintain products, services and experiences that Australian's love and trust, while delivering a sustainable future for Australia Post, and you could be part of that.
About the Opportunity
The Security Assurance Advisor is responsible for driving internal and supplier Security Assurance activities for ISO by working with business stakeholders. You will support the Cyber Security Assurance Manager in enabling the Australia Post business units to take informed risks and actions to enable business strategies. This role sits in the broader cyber GRC team. The team engages with the business to conduct risk assessments, impact & likelihood consequences, and 3rd party supplier compliance work.
You’ll also
- Contribute to maintaining the Australia Post Information Security Policy and Standards in alignment with industry best practices such as ISO27001, PCI-DSS, NIST CSF and Australia Government Information Security Manual (ISM)
- Identify vulnerabilities in internal controls and recognise opportunities to improve operational efficiencies
- Conduct supplier (Third-party vendor) assurance assessments
- Perform internal Security Assurance assessments across Australia Post’s business critical assets and services
- Identify and communicate cyber security finding to key stakeholders
- Ensure Australia Post Internal and external assurance activities are performed as per defined industry best practice
What you’ll deliver with us
Working closely with the Technology and Business team to perform a variety of assurance activities. You will focus on ensuring that cyber security controls are aligned with Australia Post Information Security Policy and Standards and met with the relevant industry best practice. As part of your role you will participate in internal and customer audit and tender activities.
You’ll also need
- In depth understanding of industry best practices such as ISO27001, PCI-DSS, NIST CSF and Australia Government Information Security Manual (ISM)
- Expert knowledge of security compliance and ability to evaluate technical cyber controls
- Familiarity with security reporting frameworks in order to contribute to security dashboards with agreed metrics and measurements
- A background in Cyber Security, Technology Risk, Governance, Assurance, Compliance or Business Continuity & Service recovery is advantageous
- Supplier assurance skillset with a risk management mindset
- Experience translating complex technical information into simple language to engage stakeholders for risk, business continuity and compliance activities
How we’ll deliver for you
- A great Australia Post culture and collaborative environment
- Industry leading discounts and benefits package
- Opportunities for career progression
We’re delivering together
At Australia Post, we acknowledge the Traditional Custodians of the land on which we operate, live and gather as employees.
We believe our business should reflect the diverse communities we operate in and are proud to be an inclusive workplace for people from all walks of life. We encourage applications from people of all ages, genders and backgrounds including Aboriginal and Torres Strait Islander peoples, People with Disability, LGBTQIA+ and Refugees. We are also the largest organisation in Australia to successfully achieve Disability Confident Recruiter status and are committed to providing an inclusive and barrier-free recruitment process and workplace for those living with a disability. If you have any questions, please contact our Diversity & Inclusion team on ***************@auspost.com.au
One last thing
Research shows that women and people of colour are less likely to apply for roles if they don't meet every qualification. If after reading this, you’re not sure you tick every single criteria box, but have the passion to get behind our purpose, the determination to face a challenge and a willingness to grow and learn, we think you should click that apply button anyway. We're passionate about building a diverse and inclusive team, and love hearing from people like you.