• ISMS framework development
• Large, Complex IT Environment
• Parramatta

This role is to ensure appropriate controls and processes are in place to minimise risks related to information security and information technology.  The responsibilities include but are not limited to:

• establish an information security management framework
• identify and comply to regulatory, statutory and corporate requirements
• develop and implement audit, compliance and risk management
• ensure appropriate controls are implemented and followed
• take ownership of policies, training and awareness 
• perform gap analysis of current policies and training modules 
• make and recommend policy changes
• perform audit procedures, provide audit responses
• build relationships to promote awareness of policies

Skills and experience required:

• knowledge if IT governance and management frameworks
• thorough knowledge of information security industry standards (ISO27001)
• thorough knowledge of risk management industry standards (AS4360)
• experience in IT security audit practices
• performing audit procedures and developing, deploying and maintaining policies
• previous experience of working in a large complex environment with regulatory issues.
• ability to influence and present to management teams
• expert knowledge of QA, Auditing, Policies, Training and Awareness
• IT degree/qualifications (CISM, CGEIT, CISA)

You must also have the ability to communicate, advise and educate the project teams and business units on auditing and policy awareness. 

To be eligible to apply for this position you must have an appropriate Australian or New Zealand work visa.