Principal Cybersecurity Consultant - Sydney, Australia - Stickmancyber

Description

Interested in joining us on our mission for a safer digital world? View our available positions below.

Position: Principal Cybersecurity Consultant Location: Sydney, AustraliaRole Type: Hybrid

Stickmancyber is a leading Cybersecurity as a Service (CSaaS) company based in Sydney, Australia. We are committed to providing comprehensive cybersecurity services and are developing a global cybersecurity platform.

We are looking for a seasoned Principal Cybersecurity Consultant who will also function as a Consulting/Virtual CISO for our clients. This role is central to delivering strategic cybersecurity guidance, conducting in-depth risk assessments, and ensuring compliance with various information security standards and responsible for operationalizing cybersecurity across various clients.

Job Description

• Develop and implement comprehensive cybersecurity strategies that align with client business goals.
• Ability to design and implement secure-by-design frameworks, zero trust frameworks and data protection strategies in various IT environments.
• Strong knowledge and experience in Information Security Management System (ISMS) implementation.
• Conduct risk assessments, recommend mitigations and planning and execution of remediation.
• Ensure compliance with standards such as ISO 27001, ISO 27005, PCI DSS, NIST, and SOC2.
• Plan and execute Vendor Risk Management programs.
• Perform or assist with internal & external IT audits, application control reviews, IT process reviews, and IT infrastructure reviews.
• Develop and update Standard Operating Procedures where appropriate
• Create and revise cybersecurity policies and procedures where required
• Lead incident response activities and investigations in collaboration with SoC teams.
• Provide advisory on cybersecurity training and awareness programs for clients.
• Present to Leadership teams and Board on emerging threats in cyber and success stories
• Excellent knowledge of information security technologies, tools and methodologies.
• Proficiency in Privileged Access Management, Identity & Access Management, Data Loss Prevention and other declipines of cybersecurity is advantageous.
• Understanding of cloud architectures (e.g., AWS, Azure, Google Cloud) and cloud-native security principles.
• Experience in implementing and managing cloud security controls and best practices to protect cloud environments and services.
• Strong knowledge of data privacy laws and regulations such as GDPR, CCPA, and Australian Privacy Principles (APPs).
• Ability to design and implement privacy-by-design frameworks and data protection strategies in various IT environments.
• Familiarity with AI and machine learning technologies as applied to cybersecurity.
• Experience in leveraging AI for threat detection, predictive analytics, and automation in security operations.
• Keeping abreast of emerging technologies and cybersecurity trends, including IoT security, quantum computing implications, and blockchain.

Requirements

• Extensive experience in Information Security, IT audits, and IT Risk Management.
• Strong understanding of and experience with information security standards and frameworks.
• Relevant cybersecurity certifications (e.g., CISSP, CISM, CISA).
• Excellent communication and leadership skills.