Cyber Security Lead - Townsville City, Australia - Townsville City

    Townsville City
    Townsville City Townsville City, Australia

    2 weeks ago

    Default job background
    Full time
    Description
    • Bachelor's degree in cyber security, Information Systems, or equivalent work experience; postgraduate qualifications in Information Security is preferred.
    • Previous experience establishing and delivery of operational Cyber Security functions and Incident Response in complex environments desirable.
    • Attractive salary package on offer plus generous entitlements

    Why Choose Us

    Townsville City Council is the largest local government authority in Northern Australia. We are committed to creating value by growing Townsville through driving economic diversity and generating an enriching lifestyle.

    Our organisation provides and maintains over $7b worth of community assets including water and wastewater network and treatment plants, bridges, drainage, roads, waste management, community facilities, sporting venues and more.

    We contribute to an active lifestyle for our residents and visitors through events, providing recreational facilities, protecting the natural environment and heritage, while creating a mentally and physically healthy city.

    We are driving economic diversity and cultivating an enriching lifestyle, growing a city for this and future generations by building a vibrant, sustainable and innovative city.

    Council's vision is for Townsville to be a connected, lifestyle driven and innovation focused city while continuing to deliver service excellence and to be led by our community to create an exciting today and future.

    Our Vision: A globally connected community driven by lifestyle and nature.

    Our Purpose: Grow Townsville

    About the role

    The Security Cyber Team acts as an interface between the executive's strategic and process-based activities and the work of the technology-focused analysts, engineers, and administrators in the ITS organisation. The coordinator supports the translation of IT-risk requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing performance measurement and reporting. The coordinator is responsible for ITS's technical activities to implement and manage security infrastructure, and to provide regular status and service-level reports to management.

    This position has clear expectations to role model the performance standards, values, behaviours, and attitudes that are integral to our workplace culture and stakeholder reputation as an organisation of excellence. This position plays a key role in designing, developing, implementing, and reporting on the Council's cyber security posture and working collaboratively across Council to champion our purpose of Growing Townsville and to deliver the Corporate Plan in consultation with the Townsville Community. This position is accountable to the Team Manager Infrastructure and Architecture and will be focused on the needs and aspirations of the Townsville community; growing and managing customer relationships, developing a culture of customer-centricity and personal accountability; and reshaping how we deliver services to maximise value.

    About you

    • Demonstrated experience role modelling a positive safety culture and adherence to the Health Safety Management Systems through visible leadership and exercising due diligence and management of compliance and legislative obligations.
    • A minimum of seven years of IT experience, with five years in an information security role and at least two years in a supervisory capacity.
    • A bachelor's degree in cyber security, Information Systems, or equivalent work experience; postgraduate qualifications in Information Security is preferred.
    • Appropriate Cyber/Information Security related certification such as CISSP, CISM, CISA, SAN GSEC, or OSCP.
    • Previous experience establishing and delivery of operational Cyber Security functions in complex environments desirable.
    • Strong leadership skills and the ability to work effectively with business managers, IT engineering and IT operations staff to build strong relationships at all levels.
    • Excellent verbal, written and interpersonal communication skills, including the ability to communicate effectively with the IT organisation, project and application development teams, management, and business personnel; in-depth knowledge and understanding of information risk concepts and principles as a means of relating business needs to security controls; an excellent understanding of information security concepts, protocols, industry best practices and strategies.
    • Experience with common information management and information security management frameworks and standards, such as Australian Cyber Security Centre (ACSC) Essential 8, International Standards Organisation (ISO) 2700x, NIST, Mitre ATT&CK, CIS and the IT Infrastructure Library (ITIL) framework
    • Proficiency in performing risk, business impact, control, and vulnerability assessments, and in defining treatment strategies.
    • Strong analytical skills to analyse security requirements and relate them to appropriate security controls.
    • Experience in system technology security testing (vulnerability scanning and penetration testing).

    Applications should be submitted through the 'Apply' button and include a Cover Letter (maximum 2 pages), Resume outlining previous academic and work experience and must include attachments of the relevant qualifications and licenses, relating to the role.

    For further information review the Position Description.

    Closing Date: 11.45pm Tuesday 7 May 2024

    What We Offer

    • 17.5% annual leave loading
    • Up to 5 weeks annual leave
    • Up to 3 weeks Personal/Carers Leave
    • 14 weeks paid Parental Leave
    • Domestic and Family Violence Leave
    • Natural Disaster Leave
    • Long Service Leave available pro rata after seven years
    • Up to *13.5% Superannuation employer contribution for contributing members
    • Salary Sacrifice opportunities
    • Learning and Development opportunities
    • Fitness Passport program offering discounted membership to selected gym, pool, and yoga facilities
    • Employee Loyalty Program offering discounts at selected local businesses
    • Employee Assistance Program

    We are committed to creating a safe and inclusive workplace where diverse styles, backgrounds, experiences, and perspectives are valued, encouraged, and respected. People from diverse backgrounds (including but not limited to, Aboriginal and Torres Strait Islander, people with diverse gender identities and sexualities, people from different cultural and linguistic backgrounds, people with disability, and veterans) are encouraged to apply

    If you need any adjustments to be made to the recruitment process or if you would like to discuss any accessibility requirements, please contact for a confidential discussion.

    Attachments:
    - N03526_Cyber Security Lead