Manager Cyber Security

Manager Cyber Security

• Ongoing, Full-time
• Immediate Start

About the role

We have an exciting and unique opportunity for an experienced Cyber Security leader to join Icon Water.

The security and stability of Icon Water’s ICT and Operational Technology environment is integral to our operations. This position reports to the Chief Technology Officer, Risk & Assurance Committee and the Board of Directors, and is a member of the Icon Water Security Committee. The position has the primary responsibility for developing and delivering all information- and cyber-security outcomes for Icon Water across the technology, people and process domains. It is responsible for leading a small team of cyber security professionals and contributing to overall leadership of Icon Water’s Digital Technology Group.

Icon Water is an Equal Opportunity Employer which values diversity and inclusion. We encourage applicants from all backgrounds, including Aboriginal and Torres Strait Islanders, people with disabilities, people from culturally diverse backgrounds and all ages. We have a strong focus on gender balance and an inclusive work culture within the organisation and encourage women to apply. We offer a great range of benefits including salary sacrifice, flexible work arrangement, generous parental leave, employee assistance program and income protection here at Icon water.

Key Responsibilities

The key responsibilities of the Manager, Cyber Security include but are not limited to:

• Strategic management, and operational and technical support of Icon Water’s cyber security function
• Leadership of Icon Water’s cyber security team, including maturing and growing its functions and operations. The team is responsible for cyber security strategic planning; governance, risk & compliance (GRC); and cyber operations.
• Overall contribution to Icon Water’s Digital Technology Group as a member of its leadership team.
• Leading the facilitation of, and reporting on, risk management activities to ensure Icon Water mitigates technology and information risks to within the agreed risk appetite.
• Leading the facilitation of internal and external cyber-security audit activities to ensure Icon water completes all requisite audits and addresses findings in a timely manner.
• Other duties as outlined within the Position Description.

Our ideal candidate will possess:

• Strong collaboration and leadership skills with the ability to work in, build and lead diverse teams, and secure senior stakeholder commitment.
• Tertiary qualification in a relevant field, such as Information Technology, Computer Science, or Business Administration, or relevant industry experience (10+ ICT/industry experience, 7+ years in cyber security, with at least 3+ years in a leadership role).
• A proven track record of leading and delivering cyber security strategies; governance, risk & compliance functions; and cyber security operations.
• Extensive experience designing and delivering cyber security risk management programs within the critical infrastructure industry (or a related industry).
• Very strong working knowledge of cyber security and risk management standards and frameworks, such as the Australian Government ISM, NIST-CSF, ISO27001:2013, ISO 31000 and their respective applicability and value.
• Strong working knowledge of Icon Water’s operational and regulatory context, including the Security of Critical Infrastructure Act 2018 and ISA/IEC 62443.
• Demonstrable understanding of how to identify and implement cyber security controls in consideration of risk appetite, operational drivers, regulatory obligations, and cost/benefit analysis.
• Understanding of cyber security metrics for executive reporting, such as Maximum Tolerable Downtime, Annualised Loss Expectancy, or Return of Security Investment.
• Industry recognised cyber security technical and management certifications or qualifications, such as CISSP, CISM, CISA, CRISC.
• Strong track record in addressing cloud-centric security issues and solutions.
• Strong problem solving, negotiation and facilitation skills.

Does this sound like you?

If this role takes your interest, please log on to our recruitment portal and submit your resume & cover letter clearly addressing how you meet the requirements of the role.

To learn more about this exciting opportunity you can contact Tony Pollock, Chief Technology Officer on 0476 829 393

Closing date for applications is 2 April 2025