Director - Cyber And Information Security
job description
Director - Cyber and Information Security
Cyber and Information Security is responsible for managing the agency's roadmap and response to the departments information and technology by effectively managing risks and associated cyber security, information availability, information privacy and information security requirements and infrastructure operations, while enabling and advancing business outcomes.
Reporting to the Executive Director, Information and Technology you will provide leadership and direction through all functions of the branch, including managing human resource, financial and budget, planning and program management, and reporting. You will be responsible for driving, influencing and managing strategic change for cyber and information security within the agency by developing (with specialist partners) and information security approach that is fit for purpose and consistent with industry standards and frameworks.
About us
As a department our purpose is to help the community to prevent, prepare for, respond to and recover from the impact of fire and emergency events.
Queensland Fire and Emergency Services (QFES) is the primary provider of fire, rescue and emergency management programs and services throughout Queensland. The department encompasses the Fire and Rescue Service, disaster management services, the Rural Fire Service and the State Emergency Service, and also supports other volunteer groups providing emergency response to Queenslanders.
Purpose of the role
Cyber and Information Security is responsible for managing the agency's roadmap and response to the departments information and technology by effectively managing risks and associated cyber security, information availability, information privacy and information security requirements and infrastructure operations, while enabling and advancing business outcomes.
Reporting to the Executive Director, Information and Technology you will provide leadership and direction through all functions of the branch, including managing human resource, financial and budget, planning and program management, and reporting. You will be responsible for driving, influencing and managing strategic change for cyber and information security within the agency by developing (with specialist partners) and information security approach that is fit for purpose and consistent with industry standards and frameworks.
Key requirements
Highly desirable requirements
Minimum of 5 years' experience in leadership roles specialising in risk management, information security, ICT security and modern cloud native environments.
4 + years experience managing and supporting information security in a mid size to large IT environment across a wide range of technologies and applications.
2 + years experience as lead in planning for information security capabilities.
Demonstrated understanding of a wide range of architecture models, service deployment models and operational and security frameworks.
Certifications of either Cyber Information Security Manager (CISM) or Cyber Information Systems Security Professional (CISSP) preferred.
Your key accountabilities
Your part in the ongoing success of our department, in supporting frontline services will see you responsible for a variety of work, including, but not limited to:
Lead and manage the development and execution of the Cyber Security Framework and Roadmap to define and deliver initiatives in support of business strategies and objectives, ensuring the department meets it's obligations under cyber security standards.
Provide strategic guidance and risk advice for the agency's cyber and information security requirements to inform continuous improvement strategies and ensure effective decision-making processes.
Promote the agency's cyber and information security approach to senior executives, vendor partners and internal and external stakeholders to ensure appropriate levels of confidentiality, integrity, availability, safety, privacy and recovery of information assets
Lead, manage and coordinate ongoing threat assessments to identify key risks to the organisation and adoption of relevant treatment plans to contain information security incidents and events, and protect the department's IT assets, intellectual property, regulated data and reputation.
Develop and implement initiatives focused on reducing technology risk and ensuring compliance to Queensland Government policies and regulatory standards.
Evaluate existing technology implementations and new technology initiatives, and consider associated consequences for all aspects of cyber and information security to improve the department's security posture.
Develop, maintain and report a pragmatic suite of information security related metrics and key performance indicators to promote the culture of strong information security and appreciation of the importance of cyber security and data management with staff and vendors to mitigate information security risks.
Manage human, financial and physical resources ensuring client service and performance management and drive a culture of accountability and fairness that encourages and enables teams and individual staff to meet challenges, develop skills and achieve results.
Capabilities
To determine your suitability for the role, you will be assessed on the following Leadership Competencies for Queensland behavioural profiles that link to the "
Key accountabilities"
for this role:
Leadership Competency Stream - Program Leader (leading teams and/or projects)
Vision
Leads strategically
Leads change in complex environments
Results
Builds enduring relationships
Drives accountability and outcomes
Accountability
Fosters healthy and inclusive workplaces
Demonstrates sound governance
Once you join us we will want you to exemplify the QFES core values:
Respect
Integrity
Trust
Courage
Loyalty
Further information
We are committed to building inclusive cultures in the Queensland public sector that respect and promote human rights and diversity .
Documents
Before applying for this vacancy please ensure you read the documents below.
- Keyword
Please use for wildcard searches. - Search exact phrase
Check to search for the exact phrase. Uncheck to return jobs that contain any of the keywords. - Location
Hold down the control (Ctrl) button and use your computer mouse to select multiple options - Occupational group
Hold down the control (Ctrl) button and use your computer mouse to select multiple options
Salary (yearly) Leave blank if you are searching for casual jobs
- Minimum
- Maximum
Total Remuneration Only used for Senior Medical or Executive positions
We are committed to building inclusive cultures in the Queensland public sector that respect and promote human rights and diversity, including making any reasonable adjustments to support you through the recruitment process.