CISO
- Work on our innovative technology projects
- Great team culture with flexible working
He angitūtanga: The opportunity
The CISO (Chief Information Security Officer) plays a pivotal role in leading and overseeing the information security program for the organization. This position is responsible for developing, implementing, maintaining, and continually improving the security posture of the organization's information systems and assets. The CISO serves as the ultimate authority and advocate for information security, ensuring that all sensitive data, intellectual property, and critical infrastructure are protected against unauthorized access, disclosure, alteration, or destruction.
He kōrero mōu: About you
Responsibilities:
- Develop, communicate, and execute the organization's information security strategy and roadmap in alignment with business goals and objectives.
- Establish and maintain relationships with key stakeholders, including senior executives, board members, and business partners.
- Oversee the development and implementation of incident response plans and procedures, leading the organization's response to security incidents.
- Develop and maintain an effective security awareness program to educate employees on cyber security risks and best practices.
- Lead the development and implementation of security policies, standards, and guidelines to ensure compliance with legal and regulatory requirements.
- Conduct risk assessments, identify vulnerabilities, and develop remediation plans to address cyber security risks.
- Manage compliance with relevant laws, regulations, and industry standards, such as GDPR, HIPAA, PCI-DSS, and ISO 27001.
- Manage relationships with third-party vendors and service providers, including security assessments and due diligence.
- Oversee security audits, assessments, and compliance reviews to ensure the effectiveness and efficiency of the information security program.
- Serve as a liaison with legal and regulatory authorities on cyber security matters and represent the organization in public forums on security issues.
- Lead and participate in security incident response activities, including incident management, investigation, and reporting.
- Provide training and awareness programs to educate employees on cyber security risks and best practices.
- Collaborate with IT teams to ensure proper implementation and maintenance of security controls.
Requirements:
- Tertiary degree qualification in a relevant technical and/or compliance discipline.
- 15+ years of senior technical experience in designing and implementing ICT architectures and compliance/cybersecurity environments in large complex organizations.
- 10+ years of experience in a people leadership role.
- Knowledge of TOGAF.
- Certified Information Systems Auditor (CISA).
- Certified Information Security Manager (CISM), issued by ISACA.
- Certified Information Systems Security Professional (CISSP), offered by (ISC)2.
Ngā āhuatanga kei a mātou: What we offer
You will join Auckland Council’s Core Infrastructure Services team that supports our ICT Purpose which states; Together we use the power of technology and innovation to move Auckland forward.
Applications close 1st June
If you are an Auckland Council Employee (permanent or fixed term), please apply via the Tupu internal careers page. Temps and contractors please use the external careers site.
Auckland Council is an equal opportunity employer (EOE) and we are committed to providing a working environment that embraces and values diversity and inclusion. If you have any support or access requirements, we encourage you to advise us at the time of application to assist you through the recruitment process
Employees in receipt of salary protection and/or on the predecessor Council terms and conditions of employment, please note that the salary protection and/or predecessor Council terms and conditions, including relocation, apply to your current position. Should you change to a new position (other than any secondment) you will be issued with a new employment letter of offer with current Auckland Council terms and conditions.
