Security Operations Lead

• Permanent Full time
• $126861 - $140928 per annum plus Superannuation in accordance with experience & qualifications
• Join the Cyber & Info Security Team

Hume City Council is one of Australias fastest growing and culturally diverse councils. We put the customer and our community at the centre of all that we do ensuring our services are efficient and accessible.

The Security Operations Lead is responsible for overseeing and managing the day-to-day operations of a Cybersecurity in Hume City Council. This position plays a crucial role in safeguarding the Humes assets data and personnel by ensuring that security protocols are consistently observed and adapted to evolving Cyber threats.

What youll be doing:

• Work closely with Head of Cyber and Information Security to establish a Cybersecurity centre of excellence for Hume City Council encompassing and capability across Governance Risk Compliance Operations and Delivery to align with councils Risk Appetite.
• Uplifting Councils security posture to align to best practice and ensure policies process and controls are effectively maintained to promote security hygiene.
• Contribute to the development of the Cybersecurity strategy identifying areas for improvement and implementing new security measures and technologies.
• Ensuring continuous monitoring of vulnerabilities and security alerts whilst managing security tools and technologies to detect and respond to threats and risks promptly.
• Manage the effective cyber incident response and recovery efforts aligned to process policy and best practice.
• Overseeing the independent assessment of security controls throughout Hume to
  ensure ongoing compliance and improvement opportunities.

The skills and experience youll bring to the role:

• Strong organisational and time-management skills with the ability to manage multiple priorities and meet deadlines.
• Deep understanding of security principles practices and technologies.
• Experience qualifications and dedication to the Cyber Security and knowledge of IT governance cybersecurity risk and compliance requirements in ICT including in-depth knowledge of industry standard security frameworks e.g. ISO 27001 E8 VDPSF etc.
• Proficiency in various security tools and frameworks such as SIEM firewall vulnerability management threat intelligence and incident response.
• Ability to influence stakeholders at all levels and makes decisions that drives the success of security projects and objectives with strong track-record of engaging with business users to understand their requirements.
• Familiarity with regulations and standards specific to the Local Government and Victorian Government security industry would be highly beneficial.
• Understanding of IT risk management principles and the ability to assess and prioritise cybersecurity risks in the context of asset and data protection
• Strong commercial acumen to engage and manage third party vendors to deliver efficient and effective services to the organisation.

The following qualifications and experience are required for the position: 

• Degree or Diploma with relevant experience plus post graduate qualifications or lesser formal  qualifications with extensive and diverse experience or intensive specialist experience in Information Security.
• Outstanding communication and interpersonal skills with strong track-record of engaging with business users and understanding their security requirements.
• Understanding of Cyber and IT risk management principles and the ability to assess and prioritise cybersecurity risks in the context of asset and data protection.
• Customer-centric mindset with a focus on delivering exceptional service and value.
• Certifications such as CISSP SSCP ISSMP CISM CCOA CSX-P or equivalent are highly desirable.
• Diverse Cyber background with knowledge across a broad range of technologies including and not limited to:
  o Identity management (EntraID)
  o Endpoint detection and Response (Trend Micro / Crowdstrike)
  o SecOps & GRC (ISO 27001 E8 and VDPSF)
  o Vulnerability management (Rapid7)
  o URL Filtering (Cisco Secure Access)
  o Email Security (Abnormal SPF DKIM DMARC)
  o DNS Security
  o System Security (Microsoft server and endpoint)
  o Database Security (SQL server)
  o Cryptography and PKI (Microsoft Certificate Authority)
  o Network Security (Fortinet Cisco & Meraki)
  o Cloud Platforms (M365 Azure)
  o SaaS application RBAC and Integration Security concepts (TechnologyOne)
  o Application/Infrastructure Security Concepts (OWASP)

Why Hume City Council

A leader in local government were committed to creating an inclusive and collaborative work environment that is guided by our values:

Were better every day: We give things a go and value progress over perfection. We have permission to go for it and are expected to reflect and learn.

Were in it together: At Hume everyone matters. We Welcome and include all. Respect and safety are expected.

We show up: We empower and trust others and own our work. We rise to the challenges and are expected to do what we say we will.

All for Hume: We strive to achieve our best for the Hume Community. We are proud and passionate about working towards better outcomes and expect they are at the centre of everything we do.

We offer a competitive salary package professional development opportunities and a supportive work environment.

A child safe organisation and an equal opportunity employer. Council encourages people of all ages people with disability Aboriginal and Torres Strait Islander people LGBTIQA people and people from culturally diverse backgrounds to apply.

All candidates will be required to undertake background and probity checks including Reference Checks Working with Children Check and a Criminal Record Check.

Remote Work :

No

Employment Type :

Full-time