Senior Manager IT and Cyber Security
The Role
The Senior Manager IT and Cyber Security leads a team of technical, information management and Cyber Security professionals responsible for delivering ACECQA's secure information management and information technology environment. As a key member of ACECQA's leadership team, the Senior Manager IT and Cyber Security role models leadership standards and collaborates closely with leaders across all teams.
This role is full time and ongoing at ACECQA Band 8 ($153,951 - $185,825)
About You
To be successful in this role you will need:
- Demonstrated senior leadership and management experience in a government or medium-sized corporate IT environment.
- Tertiary qualifications in IT and/or equivalent industry certifications within the field of IT and/or Cyber Security such as CISM, CISA, CRISC, CGEIT, GIAC, CISSP, CEH.
- Demonstrated experience adopting the Australian Government Protective Security Policy Framework (PSPF), Information Security Manual (ISM) and Australian Signals Directorate (ASD) frameworks and other security standards such as ISO 27001, NIST and/or MITRE ATT&CK.
- Demonstrated experience in IT risk management including solid understanding of frameworks such as ISO 31000, ISO 27005 and/or NIST 800-37.
- Demonstrated experience in security architecture and considerations related to cloud-based services (PaaS, IaaS, SaaS) in a Microsoft Azure/M365 environment.
- Proven experience in information technology leadership and/or information management and/or Cyber Security demonstrating the ability to deliver strategic initiatives and manage complex IT and Cyber Security environments.
- Demonstrated experience in successfully managing technology projects involving partnerships with internal and external stakeholders.
- Highly developed leadership, interpersonal and communication skills including skills in managing and developing staff, building relationships, providing advice and supporting senior leaders with strategic and operational matters.
- Highly developed critical thinking and problem solving skills, demonstrating the ability to manage complex issues.
- Demonstrated ability to contribute to strategic direction and advance the organisation's interests.
While not essential, the following attributes will greatly assist you in the role:
- Experience and/or knowledge of CRM, ERP, ECM and HCM platforms such as Salesforce, Microsoft Dynamics 365, Technology One Finance, HP Content Manager/TRIM and ichris.
- Demonstrated experience with PCI-DSS (Payment Card Industry Data Security Standard) compliance.
- Solid understanding of web application security and secure software development best practices including OWASP, Secure SDLC and SecDevOps.
- Experience in driving and maturing an organisation's enterprise security architecture using frameworks such as SABSA, TOGAF and/or COBIT.
- Demonstrated experience in information systems auditing.
- Experience or formal qualification in IT project management such as PMP, PRINCE 2, AgilePM.
About ACECQA
We want children in Australia to have the best start in life.
We provide national leadership on the implementation of the National Quality Framework (NQF) and collaborate with the Australian and state and territory governments to:
- Improve outcomes for children and families in early education and care.
- ACECQA's values are based on putting children at the centre of everything we do.
We strive for innovation and continuous improvement and are committed to keeping the sector and the community informed with the latest developments in early childhood education and care.
ACECQA is committed to removing barriers and opening up opportunities. As an employer we seek to ensure people with differing needs and abilities have the same opportunities to successfully gain skills, knowledge and experience through work, social activities, education and training irrespective of their age, disability, colour, race, gender, religion, sexuality, family responsibilities, or location. In particular, we are committed to improving opportunities and outcomes for Aboriginal and Torres Strait Islander peoples.
You must have the right to work and live in Australia to apply for this role.
The successful candidate will be required to consent to a national police check.
How to apply
The closing date for applications is 13th February 2024 at 11:59pm.
If you have previously applied for the role, there is no need to reapply.
Important Note: Please ensure you follow the recruitment process outlined below, otherwise you may not be considered for the role.
To apply, please register with the ACECQA Recruitment Candidate Portal, navigate to Senior Manager IT and Cyber Security vacancy and click Apply for Job. The application process will require you to:
- Attach a CV of no more than 5 pages which demonstrates your ability to meet the criteria contained in the position description.
- Provide a covering letter and statement in response to the two (2) targeted questions below.
- Provide the details of at least two referees that cover the last 3 years of employment.
Targeted Questions
- Please describe an IT or Cyber Security strategy or system you have led and describe how it improved support for business operations or its Cyber Security posture.
- Please outline your approach to the leadership and management of governance, risk and compliance in IT and Cyber Security.
All complete applications will be acknowledged.
More Information
If you have any questions about the role specifically, please contact Angela Buchanan, Chief Operating Officer on 0467 809 ***.
If you have any questions about the recruitment process please contact the HR team on 02 8240 4***.
Notice to agencies
ACECQA will not accept applications from any source other than directly from a candidate for this vacancy. Recruitment agencies must have received instructions from ACECQA in relation to a specific vacancy in order to submit applications on behalf of candidates.
ACECQA is collecting the information requested in the advertisement for the purpose of selection, recruitment and engagement of staff. ACECQA is authorised to do so by the Education and Care Services National Law. Please refer to our Privacy Policy which can be accessed at http://www.acecqa.gov.au/privacy-policy.