Attractive remuneration package on offer to the successful candidate. Total salary package offered will depend on qualifications and experience.
Continuing position available
Operating within IT Strategy, Planning and Governance (ITSPG) department, the Information Security team provides a range of services including security governance, security awareness and training, security assessment, incident detection and response, investigations, and digital identity and access management. The mission of the team is to (i) protect the security of teaching, learning, and research data across the University (ii) enable the University to innovate by managing risks and (iii) foster a security-aware culture, engender trust, and protect the established brand.
The Cyber Governance, Risk and Compliance (GRC) Lead will be responsible for cyber security governance, risk and compliance services, including performing cyber risk assessments, general security risk advisory, education and awareness, and certification/assurance activities. The role will operate and maintain the University’s Cyber Security Framework (CSF) aligned to the ISO/IEC 27001 standard, including developing and updating security policies, standards and guidelines, managing the information security risk register, reporting on key metrics, and facilitating relevant governance committees. The role will require liaising with both centralised and de-centralised IT custodians spread across the University in order to communicate, guide, and enforce security controls. The role will also work closely with the operational security team to provide input into enhancing the security posture of the organisation.
To be successful you will need:
- Extensive experience in managing and operating the ISO/IEC 27001 compliance program for a large and complex organisation.
- Ability to communicate complex technical risks in terms of business impact using easy to understand language.
- Good understanding of other IT security governance models/framework such as NIST and CoBIT, the Australian Government Information Security Manual (ISM) and Essential Eight.
- Deep understanding of IT environment in a large complex organisation.
- Demonstrated ability to promote the organisational values of integrity, respect, collegiality, excellence and discovery, and a commitment to positively comply with the associated behaviour expectations.
Enjoy an outstanding career environment
The University of Adelaide is a uniquely rewarding workplace. The size, breadth and quality of our education and research programs - including significant industry, government and community collaboration - offers you vast scope and opportunity for a long, fulfilling career.
It also enables us to attract high-calibre people in all facets of our operations, ensuring you will be surrounded by talented colleagues, many world-leading. Our work's cutting-edge nature - not just in your own area, but across virtually the full spectrum of human endeavour - provides a constant source of inspiration.
Our culture is one that welcomes all and embraces diversity consistent with our Staff Values and Behaviour Framework and our Values of integrity, respect, collegiality, excellence and discovery. We firmly believe that our people are our most valuable asset, so we work to grow and diversify the skills, knowledge and capability of all our staff.
We embrace flexibility as a key principle to allow our people to manage the changing demands of work, personal and family life. Flexible working arrangements are on offer for all roles at the University.
In addition, we offer a wide range of attractive staff benefits. These include: salary packaging; flexible work arrangements; high-quality professional development programs and activities; and an on-campus health clinic, gym and other fitness facilities.
Learn more at: adelaide.edu.au/jobs
Your division's broader role
The Division of University Operations enables the University's delivery of high-quality and distinct learning, teaching and research experiences. Its responsibilities link to Adelaide's strategic plan and focus on people, community, assets and infrastructure, and processes.
Learn more at: adelaide.edu.au/operations
If you have the talent, we'll give you the opportunity. Together, let's make history.
Click on the ‘Apply Now’ button to be taken through to the online application form. Please ensure you submit a cover letter, resume, and upload a document that includes your responses to all of the selection criteria for the position as contained in the position description or selection criteria document.
Applications close 11:55pm, 3 May 2022.
For further information
For a confidential discussion regarding this position, contact:
Chief Information Security Officer
You'll find a full position description below: (If no links appear, try viewing on another device)
The University of Adelaide is an Equal Employment Opportunity employer. Women and Aboriginal and Torres Strait Islander people who meet the requirements of this position are strongly encouraged to apply.
Download the Position Description Apply now