Head of Information Security Office

Water Corporation is recognised globally for our performance and innovation to secure water supplies for Western Australia in a changing climate. Were driven tomanage water services sustainably to make WA a great place to live and invest. A role at Water Corporation can unlock the door to ongoing long term career development opportunities; we also support training and development flexible work arrangements health and lifestyle programs and generous company benefits. If you share our commitment then consider Water Corporation as the next step in your career.

About the role

We are seeking a highly experienced and visionary leader to join Water Corporation as the Head of Information Security Office. This Senior Leader role sits within the Information & Technology Group and reports directly to the General Manager Information & Technology. As part of the leadership team you will play a critical role in shaping the Corporations cybersecurity and information management and security agenda ensuring resilience across our IT and OT environments and safeguarding the integrity of data and systems essential to delivering water services across Western Australia.

Real benefits that matter

• Real flexibility with options to work from home flexible work hours
• An additional 2 well-being days each year
• Access to long service leave pro rata after 3 years of service
• Generous co-contribution superannuation scheme which offers up to 16%. This includes an 12% standard employer contribution plus an additional 2% employer co-contribution that matches your own 2% contribution
• Purchase additional leave of up to 12 weeks

Discover more benefits we offer to support the unique and individual ways our employees live.

What the role will involve

In this role you will:

• Accountable for leading cybersecurity and information strategies and delivery outcomes aligned with corporate objectives and digital transformation goals.
• Lead the design and implementation of governance frameworks risk management strategies and compliance programs to meet obligations under the Security of Critical Infrastructure Act (SOCI) Critical Infrastructure Risk Management Program (CIRMP) Privacy Act 1988 Privacy and Responsible Information Sharing Act 2024 (PRIS Act) State Records and other regulatory requirements.
• Oversee enterprise-wide security operations cyber and information risk management including incident response threat intelligence business continuity planning vulnerability management monitoring penetration testing and resilience exercises.
• Leading enterprise information management and data governance ensuring information is managed as a strategic asset.
• Ensure integration of cyber security and information management requirements into technology asset management and digital transformation programs.
• Manage third-party commercial arrangements.
• Manage third-party and supply chain cyber risk frameworks to ensure robust vendor security.
• Build strong partnerships with senior leaders regulators and industry peers to strengthen sector-wide cyber resilience.
• Provide executive reporting on cyber and data maturity risk and compliance.
• Provide thought leadership mentoring and development opportunities to build the next generation of cybersecurity and information leaders.
• Lead and manage two direct and approximately 45 indirect reports.
• sector-wide cyber resilience.
• Provide thought leadership mentoring and development opportunities to build the next generation of cybersecurity and information leaders.
• Lead and manage two direct and approximately 45 indirect reports.

Key skills and experience

To be successful you will bring:

• A Bachelors degree in Information Technology Cybersecurity Computer Science or related discipline.
• Extensive experience in cybersecurity and information security leadership ideally within a Critical Infrastructure environment.
• Deep knowledge of cybersecurity frameworks (e.g. NIST SOCI PRIS ISO 27001 Essential Eight) and regulatory compliance.
• Relevant certifications such as CISSP CISM CISA (or equivalent).
• Proven track record of developing and executing strategic cyber and information management initiatives and risk management programs.
• Experience working across IT and OT environments with strong understanding of SCADA/ICS systems.
• Proven leadership communication and stakeholder engagement skills with the ability to influence at executive board and minister level.
• A proactive resilient and future-focused mindset with the ability to lead through complexity and change.
• Experience working in Platform and Agile.

Apply: If you are interested in the above opportunity please submit a covering letter and resume that best demonstrates your ability to meet the requirements of the role.

As part of the recruitment process you may be required to complete pre-employment screening which may include a medical qualification check police clearance and Australian working rights check. There will also be additional security checks and due diligence checks be required for the nature of this role.

Applications close Wednesday 8th October 2025

Our commitment to a diverse and inclusive workplace

Diversity and inclusion are more than words. They guide us on building a thriving workforce that reflects the diversity of our customers and our community.

We encourage applications from every background including Aboriginal and Torres Strait Islander people people with disability women youth LGBTQIA folks and people from culturally and linguistically diverse backgrounds.

Applicants with disability who require adjustments or alternative methods of communication in the recruitment process can contact a Recruitment Officer or.

To read our diversity and inclusion statement please visit our website