The University of New South Wales (UNSW Sydney)UNSW Kensington Campus, Sydney, NSWSimilar Jobs
Closing: 05-Jan-2025
Job Summary
Dates
Opening Date: 15-Oct-2024
Closing Date: 05-Jan-2025
Location
UNSW Kensington Campus, Sydney, NSW
Salary
Excellent salary package including superannuation
Responsibilities
Lead the strategic planning, execution, and continuous improvement of cyber security controls assurance testing, including regular controls effectiveness testing and gap assessments.
Develop and implement a continuous controls assurance testing strategy, with a focus on control monitoring, automation, uplift, and rationalisation.
Oversee and deliver annual controls assurance testing activities, including penetration testing, application security assessments, and red teaming exercises.
Facilitate post-testing assurance by reviewing findings, advising stakeholders, prioritising remediation efforts, and managing closure of actions.
Monitor, track, and ensure timely closure of findings, risks, and associated actions resulting from controls assurance activities, ensuring alignment with the University’s risk appetite.
Develop, collect, and continuously improve cyber security metrics and Key Risk Indicators (KRIs)/Key Control Indicators (KCIs) to measure performance and risk exposure.
Lead the delivery and management of periodic cyber security metrics reporting.
Present insights, information, and recommendations to leadership and stakeholders to inform decision-making and support organizational objectives, and present at quarterly GRC Community of Practice (CoP) and Developer Security CoP meetings to foster collaboration and knowledge sharing across faculties and divisions.
Update and maintain the cyber security risk register with findings from testing, assessments, and performance metrics, ensuring that risks are tracked and mitigated.
Manage audit assurance activities by providing leadership in facilitating the remediation of audit findings, ensuring that identified risks are mitigated in accordance with agreed timelines and corrective actions are successfully implemented.
Lead the maturity and management of Cloud Security Posture Management (CSPM) tools, including tuning, ongoing monitoring, and remediation activities.
Manage the delivery of expert-level source code reviews, including the integration of applications and repositories with security scanning tools like CXOne.
Oversee the management of Checkmarx, ensuring the platform is effectively utilised for source code security scanning and application security assurance.
Oversee crowdsourced security testing / bug bounty programs, ensuring these programs are aligned with security objectives and contribute to continuous improvement in security posture.
Provide strategic cyber security consulting and advisory services to the Cyber Security Enablement Program and other key initiatives across the University, ensuring alignment with governance and compliance standards.
Manage and mentor a team, providing guidance, support, and professional development opportunities to ensure high performance and continuous growth.
Align with and actively demonstrate the Code of Conduct and Values.
Cooperate with all health and safety policies and procedures of the university and take all reasonable care to ensure that your actions or omissions do not impact on the psychosocial or physical health and safety of yourself or others.
Ensure hazards and risks psychosocial and physical are identified and controlled for tasks, projects, and activities that pose a health and safety risk within your area of responsibility.
Requirements
Extensive management expertise and supporting experience (7+ years) in cyber security controls assurance, with a proven track record in controls assurance testing, metrics reporting, and audit management.
Strong experience with cyber security assurance tools such as Checkmarx, Lacework, BugCrowd, and similar platforms.
Certifications such as CISSP, CISM, CRISC, CEH, or relevant certifications in security assurance and controls testing are highly desirable.
Demonstrated experience in leading penetration testing, red teaming, application security assessments, and cloud security posture management.
Strong understanding of cyber security metrics, KRIs/KCIs, and their role in managing and communicating risk.
Experience in working with risk registers and driving the remediation of risks and audit findings.
Excellent communication, interpersonal, and leadership skills, with a proven ability to influence and engage stakeholders across all levels.
Strong project management skills, with the ability to manage multiple initiatives simultaneously while maintaining a focus on quality and timelines.
High level of motivation, resilience, and the ability to work both independently and as part of a collaborative team.
Strong analytical and problem-solving skills, with the ability to present complex information clearly and concisely to diverse audiences.
An understanding of and commitment to UNSW’s aims, objectives and values in action, together with relevant policies and guidelines.
Knowledge of health & safety (psychosocial and physical) responsibilities and commitment to attending relevant health and safety training.
Benefits
Flexible hybrid working
Additional 3 days of leave over the Christmas Period
Access to lifelong learning and career development
Progressive HR practices
Discounts and entitlements
Notes
The University reserves the right not to proceed with any appointment.
The University of QueenslandSt Lucia CampusSimilar Jobs
Closing: Not specified
Job Summary
Dates
Opening Date: Not Available
Closing Date: Not Available
Location
St Lucia Campus
Salary
$42.09 per hour plus 11% Superannuation (including 25% casual loading)
Responsibilities
Attend all responses to alarms, medical emergencies, fire emergencies, or other matters as they arise under supervision.
Operate the Central Security Monitoring Station (CSMS).
Respond to enquiries/complaints of public/staff/students.
Lock, patrol and provide access for authorised personnel to University buildings.
Notify the Security Supervisor of any matters of priority or emergency.
Enforce parking and traffic regulations and control.
Conduct preliminary investigations into all incidents as directed.
Prepare detailed reports by the end of each shift of all incidents that occurred during the shift using standard formats.
Perform other duties as reasonably directed by the Manager Security (MS), the Deputy Manager Security (DMS), or the Security Supervisor (SS) or delegate.
Requirements
Current Queensland Certificate II in Security Operations including Security Officer Unarmed, Crowd Control, Bodyguard and Monitoring modules.
Current St John, Red Cross or Qld Ambulance First Aid Certificate.
Current Queensland Manual Open Drivers Licence.
Well-developed knowledge of security methodologies and concepts as applied to the Security industry.
Sound interpersonal skills, including effective communication with a large variety of individuals, both internal and external to the University.
Demonstrated proficiency with security software and programs and the ability to produce and analyse reports in a timely manner.
Ability to work with minimum supervision and efficiently organise work under strict deadlines.
Ability to exercise tact and restrain in the face of provocation or criticism.
Experience effectively dealing with emergency situations arising during the course of duty.
Benefits
Opportunities to work alongside the brightest minds in a prestigious university environment.
Involvement in a community focusing on a better world and excellence.
Access to a range of benefits and rewards as part of the UQ community.
Notes
Successful applicants must have full availability to attend 6 weeks of full-time training.
Work rights: Unrestricted work rights in Australia are required for the duration of this appointment. Visa sponsorship is not available.
Background checks may be necessary; applicants with criminal records are not automatically barred from applying.