Control Lead Network Threat

Control Lead Network Threat (Senior Manager)

• You are a cybersecurity risk and control professional with a background in Network Security control design and implementation
• We are one of the best and most advanced Cyber Security teams in Australia
• Together we can build the Cyber Controls Chapter Area and contribute to protecting the Group, its customers and community.

See yourself in our team:
The Cyber Controls Chapter Area plays a crucial function within the Group Security division being responsible for designing and deploying effective cyber control capabilities and overseeing continuous improvement of the Group’s cyber risk profile.

As an organisation with a large IT estate servicing millions of customers everyday, we need to ensure effective mitigations are in place to defend our assets against an ever-evolving cyber threat environment. The Control Lead Network Threat will lead a team tasked with ensuring control capabilities are in place to identify and protect against network threats across the Group in a timely and effective manner.

We support our people with the flexibility to balance where work is done with at least half your time each month connecting in office. We also have many other flexible working options available including changing start and finish times, part-time arrangements and job share to name a few. Talk to us about how these arrangements might work for you.
Do work that matters
Working with the Cyber Controls Chapter Area Lead and collaborating with peer Control Leads, the Control Lead Network Threats will focus on:

Providing subject-matter expertise to Technology Crew Leads and Product Owners in setting the strategic roadmap for Network Threat Detection and Protection and DDoS control capabilities, overseeing control operation, and supporting delivery of control remediation to achieve target risk outcomes. Establishing and maintaining control standards and guidelines to align with changes in industry standards, technology strategy and threat intelligence. Governing the Group’s compliance with Network Security control requirements.

You will also:

• Ensure Network Threat Detection and Protection and Distributed Denial of Service (DDoS) operation adheres to the Group Operational Risk Management Framework.
• Define the control testing approach to support automated control performance monitoring.
• Carry out annual Network Threat Detection and Protection and DDoS effectiveness assessments and drive appropriate risk remediation to address identified control weaknesses.
• Assist key stakeholders achieve their goals, who are responsible for the operation of network security capabilities across the Group’s critical applications and infrastructure.

We are interested in hearing from people who:

• Embody the leadership principle of ‘Curious and Humble’ by being willing to speak up and challenge the status quo, and continually expanding their skills and knowledge.
• Are knowledgeable about cyber threats and network security
• Can analyse threat intelligence, identify potential risks, and recommend appropriate mitigations.
• Have experience working with network intrusion detection/protection systems (NIDS/NIPS), DDoS, Web Application Firewall (WAF), Web Application API Protection (WAAP) enterprise solutions and implementing management programs in large and complex IT environments.
• Can operate effectively in an agile working environment exemplifying high degrees of autonomy and self-initiative to achieve target outcomes.
• Have demonstrated ability to engage and influence stakeholders to build rapport, obtain buy-in and achieve target outcomes.

Technical Skills that will benefit you in the role:

• Applied knowledge of ASD ISM, NIST, CIS and Essential Eight cyber mitigation strategies.
• Proficiency in network security tools (e.g., Palo Alto, Checkpoint, Suricata, Akamai, Cloudflare, etc.).
• Understanding of web application vulnerabilities (e.g., OWASP Top Ten).
• Experience with data visualisation tools (e.g., Splunk) and proficiency in creating executive-level dashboards and reports.
• Security certifications: CISSP, CISM, or CRISC.

Advertising End Date: 19/02/2025