• 1Search for courses by Study Area, Level and Location
  • 2We deliver you all the matched results
  • 3Choose one or more course providers to contact you
Industry

Distance from location (kms)

Exact 5 10 25 50 100

Posted since

All 2 Days 1 Week 2 Weeks 1 Month

Sort results by

Relevance Date

4

February

Information Security Manager, Australia & New Zealand (Anz)

Chubb - Sydney, NSW

IT
Source: uWorkin

JOB DESCRIPTION

The Information Security Manager (ISM) will be responsible for proactively managing the assigned geography / Business units (Australia & New Zealand) Cyber Risk profile through support, execution & maintenance of the global Information Security program.


The successful incumbent will be a key member of the APAC RISO leadership team, and part of the ANZ Technology leadership. Direct reporting line will be to the APAC RISO, with a matrix reporting line into ANZ CTO. 


This position will cover the Australian and New Zealand geography and will be based in Sydney. The role currently has not direct reports but will require strong influence skill as the incumbent will need to engage, support and lead the Security agenda across a wide range of stakeholders.


Responsibilities:


• Manage and support the Chubb global information security program for the Australia & New Zealand (ANZ) businesses.

• Lead and support ANZ response to any information security incident in collaboration with key stakeholders.

• Manage and support Information security assessments in relation to the Australia & New Zealand operational environment, aligning to Information Security best practice and Chubb policies, standards, controls and procedures. 

• Lead, support and monitor key information security metrics, performance indicators to ensure cyber risk governance and resilience of assigned business units Cyber risk profile and security program.

• Oversee Third-Party Information Risk Management (TPIRM) assurance and program activities for ANZ business.

• Identify, manage and monitor information security risks arising from projects, regulations, emerging threats and business activities impacting ANZ.

• Support local regulatory related inquiries and requests as the local leader for Cyber & Information Security ensuring regional and global stakeholder engagement and alignment.

• Oversee, monitor and support appropriate corrective actions by BU Technology functions to secure identified network and application vulnerabilities. 

• Review and influence the appropriateness of technology mitigation plans for Security assurance activities including penetration tests and vulnerability assessments and Red Teaming on ANZ information systems and infrastructure.

• Support global, regional and or local BU Chubb Program activities that impact ANZ employees such as Security Training/Awareness and Data Protection.

• Collaborate and partner with ANZ Business, Data Protection & Privacy, Compliance and Legal, as well as the 2nd Line Risk (CRO) team relation to Information & Cyber Security matters.

• Govern ANZ related security risk acceptances and policy exceptions.

• Support information security related audits, regulatory reviews and requests, and partner interest in relation to the Chubb information security program, controls and processes. 

• Maintain current knowledge on Cyber security threats, emerging trends and industry practice. 


Requirements:


• 8+ years, hands-on, broad-based information security experience.

• Strong Information & Cyber security expertise with in-depth understanding of industry standards and practice: ISO 27000, NIST SP 800 / CSF, ISF SoGP.

• Previous experience in technical security capacity preferred with understanding of security solutions, tools and supporting processes.

• A self-starter with strong interpersonal skills and the ability to work independently and in a matrixed format.

• Experience working in large multinational organizations.

• Strong verbal and written communication and presentation skills, including providing technical information effectively with non-technical audiences.

• Experience with regulatory compliance for Information and Cyber security (APRA, RBNZ etc).

• Technical security expertise and understanding of cyber controls and processes.

• Threat and Vulnerability Management: Security analysis and vulnerability assessment – Application scans, Security Patching & Vulnerability assessments.

• Ability to approach security problems and drive positive outcomes in relation to Application Security, Infrastructure Security, Vulnerability Management is critical. 

• Experience implementing and adhering to ANZ regulatory requirements for Cyber security management.

• The successful candidate will also need to be familiar with working effectively in AGILE, fast paced environments.

• Bachelor’s degree in Computer Science, Information Systems, Information Technology or other related disciplines (Desired).

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM) and/or equivalent. (Desired).

• Cybersecurity Fundamentals (CSX) certificate (Desired). 

• Knowledge of Insurance Business (Desired).

;