Provide leadership and execution of cyber security strategies

Three-year fixed term contract

About the role

The primary purpose of the Chief Information Security Officer role is to protect DEECA from cyber threats; enable DEECA to deliver secure, innovative services, faster; and growing and nurturing industry-leading capability.   

The position plays a major role in influencing the culture of the division and fosters a collaborative and supportive culture based on service excellence, partnership and strong technical competency in all areas relevant to the department's portfolios and broader government.  

The Chief Information Security Officer establishes and maintains a comprehensive department wide information security program to ensure that all information assets are adequately protected against current/future internal/external threats.  The position is responsible for identifying, directing, coordinating, evaluating, and reporting on information security risks in a manner that meets compliance and regulatory requirements while enabling DEECA to develop an anticipatory response to minimize information security risk.

About the Division

The Information Services Division leads the provision and adoption of information and communication technology and processes, that enable business groups to achieve their strategic objectives. 

The focus of the division is to add value by leveraging technology and ways of working, to deliver a stable and contemporary technology environment that provides the platform for DEECA to manage its business and deliver excellent customer services. 

About the organisation 

DEECA plays a critical role to manage our state's natural assets and support sustainable and resilient communities and industries, strengthening Victoria's economic potential and environmental sustainability.  

We employ more than 4,000 staff, who work from more than 82 locations throughout Victoria, across the portfolios of energy, environment, climate action, water, agriculture and resources. DEECA brings together Victoria's climate change, biodiversity protection, resources, water, energy, land management, agriculture, forest and fire management functions to support thriving, productive, sustainable communities, environments and industries.    

To be successful you will have: 

• Demonstrated 5+ years' experience and success in senior leadership roles in risk management, information security, and Information Technology or Operational Technology security environments 
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework 
• Sound knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies 
• Demonstrated experience in a technical delivery and/or operations capacity e.g., delivery of an enterprise-wide Identity and Access Management Program. 

Desired, but not essential:  

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials 

For further information or a confidential discussion please contact Joanne Curran by email joanne.curran@delwp.vic.gov.au

How to apply      

To be considered for this position, applicants are encouraged to submit a resume and cover letter (no longer than 2 pages) summarising their skills and relevant experience.   

For further information please refer to the attached position description.    

Applications close at midnight Tuesday 28 March 2023.  

 Other relevant information:    

Preferred candidates will be required to undertake pre-employment screening, including a Declaration and Consent form and a National Police Check.  Recruitment is subject to the prospective employee confirming their vaccination status as up to date or providing evidence that they are medically exempt.  

We are building an inclusive workplace to help realise the potential of our employees, embrace our differences, and apply our diverse thinking to innovation and delivering services to Victorian communities. All jobs can be worked flexibly and we encourage job applications from Aboriginal people, people with disabilities, young people and people from culturally diverse backgrounds.