Company Logo

Senior Manager- Information Security

CPA Australia

Job Description

Who are we?

The CPA Australia Way is our commitment to each other and a way of working. It is the foundation of our success, experienced and lived by our people, and felt by members. We are one of the world's largest accounting bodies with a global membership of more than 168,000 people working in 150 countries and regions around the world.

Our core services to members include education, training, technical support and advocacy. Employees and members work together with local and international bodies to represent the views and concerns of the profession to governments, regulators, industries, academia and the general public.

The Role

An exciting opportunity is now available for a Senior Manager- Information Security to lead the strategy, execution and delivery on all global activities relating to Information Security. You will be reporting to out CIO and leading a small team of dedicated security professionals, responsible for career mapping and mentoring. The Senior Manager- Information Security is also responsible for the creation and development of the strategic direction for CPA Australia’s Information Security Architecture, Framework, Policies, Procedures, Training and Compliance for the organisation.

The ideal candidate is a hands-on Information Security Subject Matter Expert, with an in depth and technical competency that is required to lead, manage and operationalise a Security Roadmap, and a global Information Security Strategy for an enterprise membership organisation.

Responsibilities

  • Define, develop, and implement a suitable Information Security strategy, architecture and roadmap to deliver suitable Information Security requirements for CPA Australia operating in the Global Market.
  • Communicate the Security Strategy to CPA business leadership to ensure adoption and adequate funding for the implementation and ongoing operation of the CPA Australia Information Security Strategy.
  • Review, create, implement, and communicate security standards, policies, and procedures in line with required regulatory and industry standards.
  • Review and Develop procedures to ensure a security first focus through design, development, and operation lifecycle of Information Assets.
  • Manage effective and efficient delivery of security services including penetration tests, vulnerability scans and associated security practices
  • Appropriately manage the balance of confidentiality, integrity and availability in applying security to CPA Australia systems
  • Monitor policies, programs and practices to ensure compliance. Implement remediation plans as required to address non-compliance.
  • Ensure security logs are being monitored and implement appropriate strategies to address any issues arising.
  • Identify, investigate, and manage security incidents and breaches.
  • Own and drives the resolution of any audit items relating to security practices.
  • Participate on the Change Advisory Board ensuring security matters are considered on all changes being raised.

What we are looking for:

As the successful candidate, you will bring the following attributes/experience to the role:

  • Computer Science or Information Systems degree or equivalent experience.
  • Minimum of 5 years in a similar role where possible, involving PCI-DSS compliance requirements.
  • Experience in a global enterprise computing environment would be highly desirable.
  • CISSP or CISM certification highly desired.
  • The ability to listen and communicate effectively to a range of Senior Stakeholders and third-party vendors.
  • Excellent investigative, problem solving and business analytical skills
  • Knowledge and understanding of the application development process.
  • Proven ability to identify and manage risk in a commercial environmet
  • A sound understanding of the requirements of PCI-DSS Version 3
  • Experience relating to audit processes and procedures, particularly relevant for PCI-DSS.

Benefits of joining CPA

At CPA Australia people are at the heart of what we do. We promote and encourage an inclusive and diverse workplace where everyone can be their best.

Why we love working here:

  • Flexible work, come to our brand-new Southbank office and collaborate with the team one day, work from home the next
  • Monthly Health and Wellbeing sessions, yoga room and QR code coffee machines in the office.
  • Busy, fast paced, and we are passionate about what we do
  • Paid parental, volunteer and study leave
  • Annual incentive scheme
  • Discounts on health insurance, phone plans, fuel, banking and many more
  • Learning & Professional Development opportunities
  • We are global, so global mindsets are encouraged