ICT Security Manager
Acquire BPO
- Melbourne, VIC
- Permanent
- Full-time
- Lead and develop a small team of Information Security Specialists
- Ensure that all technical controls adopted by the company are in-place and effective.
- Ensure all technical controls are effectively monitored, administered, and maintained.
- Ensure all process relating to the ongoing operation of each technical control are current, appropriate, and monitored for effectiveness.
- Provide advice in a consulting capacity to other aspect of the business with regard to the securing and protection of any information assets stored, processed or transmitted by Acquire.
- Exert continuous effort to further the protection of Information Assets.
- Participate in the investigation of Information Security Incidents, providing subject matter expertise and lead all technical aspects of the Investigation.
- Actively promote within the company and to our Customers ongoing awareness and opportunities for improvement in Information Security.
- Lead the efforts in retaining current Information Security certifications & standards adopted by the Company ( PCI-DSS 3.2 ( Level 1 - Service Provider) SOC-I, SOC II, HIPPA) and the adoption of new standards.
- Manage 3rd party suppliers involved in security assessment activities.
- Establish working relationships both Internally and externally.
- Effectiveness of all technical Information Security controls.
- Proactive monitoring, analysis and initiation of action based upon observed infosec events and behaviours.
- Timely implementation of any remediation activities identified.
- Meet project schedules and delivery framework requirements.
- Effective and efficient working relationship with customers, the ICT Team, and other departments within the company.
- Manage support issues and enquiries within a timely manner.
- Attention to detail, problem solving, collaborative & outcome focused attitude.
- A passion for continuous improvement.
- Experience at a detailed level securing mission critical data in a 24*7 non-stop environment.
- Ability to work within a team of highly specialised engineers, leveraging and sharing knowledge.
- In-depth foundation knowledge of communications technology ( How it Works)
- In-depth understand of data encryption standards and techniques.
- Extensive experience leveraging security analytical tools ( SIEM, testing, trace & debug ) in detecting and responding to threats.
- An understanding of both commercial and open source development environments, languages and databases.
- Detailed understanding of and experience implementing or maintain security standards such as PCI-DSS, SOC, ISO-27001, GDPR, HIPPA, NIST.
- Experience in strategically, tactically, and operationally furthering an organisations security posture.
- A pragmatic approach to management of information across an organisation.
- Detailed understanding in assessing the value of information, the application of classifications, categorisation, treatments and security controls.
- ICT Engineering and support teams
- Senior members of all other departments within the company
- Customers