Information Security Governance Manager

Information Security Governance Manager
Catch.com.au, Australia

Experience
1 Year
Salary
0 - 0
Job Type
Job Shift
Job Category
Traveling
No
Career Level
Telecommute
No
Qualification
As mentioned in job details
Total Vacancies
1 Job
Posted on
Apr 9, 2021
Last Date
May 9, 2021
Location(s)

Job Description

About Catch

Back in 2006, Catch set out to shake up Australia’s online retail landscape. We’ve come a long way since!

We’re not just one of the country’s top eCommerce players, with a proven track record of growth, an award-winning digital platform and second to none customer experience offering. Behind the scenes, we’re a world-class team of creatives, strategists, developers and innovators, and we’re on the hunt for like-minded people to jump on board. We push boundaries. We think big. We stay curious and driven. Together, we embrace challenges and learn new things. All this, for one purpose: to provide our customers with an amazing online shopping experience, every day.

And we’re just getting started

Requirements

The Role

Our Information Security squad is growing, we have a newly created role for an Information Security Governance Manager to join our team. This is a critical role for our business in leading and developing Catch’s IT Security capability in Governance Risk and Compliance with the goal to keep security risks within appetite.


Who we’re looking for .
This is a fantastic opportunity for a talented senior professional with 5+ years’ experience in Information Security Risk and Governance, management or consulting and ready for the next step of their career.


Extra Brownie points will be given if you can show:

  • Experience and savviness with current and emerging security technologies
  • Familiarity with AWS cloud security and securing robotics and related Operational Technologies
  • The ability to assess risks and communicate with influence what they mean to business stakeholders.
  • Excellent written and verbal communication skills, you love designing KPI’s and dashboard reports
  • Ability to embed security into Agile development teams
  • Ability to be pragmatic, realistic yet firm in establishing base level security controls in a fast-growing organisation.

Key Responsibilities include:

Risk and Compliance

  • Manage the uptake and continuous improvement of Catch’s IT Risk Management Framework
  • Establish and embed a risk culture across Catch. Including processes to ensure risks are identified and managed
  • Design appropriate security engagement touchpoints to support IT teams working with an Agile software development environment
  • Respond to, and track audit and related compliance findings (e.g penetration tests)
  • Manage third parties providing security services, including penetration tests and vulnerability scanning services
  • Work closely key business stakeholders to ensure risks are actively managed and used to drive business decisions

Data Security and Control Assessments

  • Assess the controls protecting Catch data. Propose additional controls to minimise the risk of data breach.
  • Conduct regular reviews of control effectiveness and maturity using NIST framework
  • Provide thought leadership on future cyber threats and appropriate control responses
  • Collaborate with Catch, Kmart group and Wesfarmers teams, to jointly achieve security good practices and outcomes
  • Implement and operate a process to review access levels to key systems and data and ensure alignment with policy. (ie. Access is granted based on needs of the role)

Policy

  • Develop and maintain a set of Information Security Policies and supporting standards and asses and report on compliance to Security Policy
  • Collaborate with Kmart and Wesfarmers peers to align with Catch with group security standards where appropriate

Reporting

  • Develop and produce regular governance reports containing clear insightful metrics and KPI’s for key stakeholder’s within Catch, Kmart and Wesfarmers

Culture and Awareness

  • Assist the the development and delivery of a Cyber Security culture and awareness program, including the regular sending of phishing emails to staff
  • Present, educate and influence all levels of Catch on matters of Information Security


Benefits

Drive and passion are hard to generate when we're not feeling valued or having fun, so we make sure our Catchies are looked after well! We provide our passionate people with:

  • An organisation that is experiencing incredible growth
  • Support and collaboration, not just with their immediate team, but with the broader organisation as well!
  • An organisation that truly does what some call ‘work/life’ balance (we just say live your life)
  • 'Catch your weekend back!' Bringing services like dry-cleaning, hair cuts, nails, massage, car washing and

Job Specification

Job Rewards and Benefits

Catch.com.au

Information Technology and Services - Bridgetown, Australia
© Copyright 2004-2024 Mustakbil.com All Right Reserved.