Address
Form of workESSSuper is one of Australia's biggest super funds with more than 128,000 members holding over $34 billion in defined benefit and accumulation assets (as at 30 June 2022).
We're proud to be the dedicated, not-for-profit super fund serving Victorian emergency services and state employees. Over 57,000 people receive a retirement pension or income stream from us, making ESSSuper the second biggest payroll in Victoria.
Our mission is to assist members in achieving their superannuation and retirement goals, while meeting stakeholder responsibilities.
About the position
As the Senior Information Security Officer, you’ll play a pivotal role in shaping and implementing our Information Security strategy and you’ll be responsible for monitoring, reviewing, and continuously enhancing ESSSuper’s security posture.
As ESSSuper is going through a significant digital transformation, this role will be heavily involved in the design and the ongoing development of business and security platforms in cloud. Working in small, dynamic team, this role will give you the opportunity to get exposure to wide range of projects and activities including security architecture and security operations.
Day to day this role would be responsible for;
- Assist project teams with ongoing security design and review process
- Technical operational maintenance of Information Security systems
- Responding to incidents, threat monitoring and vulnerability scanning
- Managing vendors, service providers and interacting with regulators
- Develop mentorship and people leadership skills
- Security awareness and simulated phishing campaigns
- Work with auditors to coordinate penetration tests, propose and track mitigation plans for open findings
- Maintain the risk register and monitor authorized exclusions for remediation
- Tertiary qualifications in an appropriate Information Technology discipline or equivalent professional experience
- Extensive experience in Azure infrastructure and security hardening.
- In-depth knowledge of security capabilities such as privileged access management, identity lifecycle management, DLP, Windows 10 hardening, and role-based access management
- Demonstrated experience with security design
- Have operational maintenance experience with cloud proxy, anti-malware, vulnerability scanners and secure e-mail gateways.
- Demonstrated experience with threat management, cyber security incident response plans
- Understanding of Information Security standards and frameworks such as NIST-CSF, ASD ISM, VPDSS, zero-trust and ISO/IEC 27001, MITRE ATT&CK
- Experience in the Microsoft Azure security services, such as Azure Active Directory, Defender for Cloud, Cloud Security Posture Management, Azure Security Centre, and Azure Sentinel.
- Certifications in Microsoft, ITIL preferred
- Strong communicators who are able to effectively engage with both technology and business partners and develop effective working relationships
- Experience within Superannuation or Financial Services industry would be highly regarded
IMPACT - Our work has meaning, we serve the people who serve the community. We are passionate about serving our members and supporting them in getting the best possible superannuation and retirement outcomes.
DEVELOPMENT - We foster achievement through the development of our people. Focusing on building expertise and agility creates professional growth opportunities for our people and ensures that we are equipped to rise to the challenges of the future.
FLEXIBILITY – Our benefits and work practices promote the health and wellbeing of our people. We value a supportive and inclusive environment.
RELATIONSHIPS - Being part a small organisation within a dynamic sector draws people to ESSSuper, the supportive work environment keeps them here. We build strong relationships and collaborate to continually strengthen the experience of our members.
ESSSuper is an equal opportunity employer, we value diversity and inclusion, and we are committed to the attraction, retention and development of all people regardless of gender identity, ethnicity, sexual orientation and disability.
