Information Security Manager

Summary about this job

Detail information about job Information Security Manager. Terms and conditions vacancy

• Dynamic Oil and Gas ASX Listed Company 
• Newly created role
• Experienced technical team

• Dynamic Oil and Gas ASX Listed Company
• Newly created role
• Experienced technical team

The Opportunity

We are looking for an Information Security Manager to manage information security risk, governance, technical architecture and security operations. The role will determine security requirements, the planning, implementing, and testing of security systems. The stand out candidate will have extensive experience in setting impeccable security standards and creating policies, and procedures in line with information security best practice. The role requires broad engagement across Information Systems and Beach’s businesses units, providing specialist consulting and security stewardship and mentoring.

The role of Information Security Manager is part of the IT department and reports to the General Manager of Information Technology with responsibility for:

• Developing security requirements by evaluating business strategy.
• Researching information security standards and conducting system security and vulnerability analyses, and risk assessments.
• Studying architecture/platform, identifying integration issues and preparing cost estimates.
• Mentoring team members and operational teams on technical security solutions and security policy.
• Leading information security risk management, conducting risk analysis and assessments across Beach;
• Advising Group Risk & Audit of annual audit plan and create security risk management awareness.
• Alerting team members to emerging threats and trends in the security space.
• Planning security systems by evaluating network and security technologies.
• Developing requirements for local area networks (LANs), wide area networks (WANs), virtual private networks (VPNs), routers, firewalls, and related security and network devices. Designing public key infrastructures (PKIs), including the use of certification authorities (CAs) and digital signatures as well as hardware and software.
• Implementing security systems by specifying cyber intrusion detection methodologies and equipment. Directing architecture design, software installation and calibration.
• Preparing preventive and reactive measures and creating, transmitting, and maintaining keys, and providing technical support and documentation.
• Maintaining security operations by identifying, detecting and responding to targeted cyber threats, and conducting incident response analyses, the coordination of remediation activities and managing the communication with internal and external stakeholders.
• Upgrading security systems by monitoring security environment, identifying security gaps and evaluating and implementing enhancements.
• Preparing security management reporting, advising on security posture and trends, highlight security risks and incidents by collecting, analysing, and summarizing enterprise security data and trends.
• Updating job knowledge by tracking and understanding emerging security practices and standards, maintaining personal networks and participating in educational opportunities.
• Enhancing department and organisation reputation by accepting ownership for accomplishing new and different requests; exploring opportunities to add value to job accomplishments.
• Coordinating all audit activities related to information security across all platforms and projects and working directly with process owners and clients to ensure compliance.
• Integrates this team’s strategic road map into the overall IT strategy to ensure a plan to protect its information assets into the future.
• Working with Federal, State and semi-government organizations (e.g. Police, CERT, Critical Infrastructure working group) to exchange information and act on information received relevant to securing Beach systems.
• Ensuring internal security by working with HR and Legal business units around employee discipline, separation and investigations relating to technology, advise on appropriate security actions

Essential selection criteria

• Degree qualified or equivalent tertiary and/or relevant work/industry experience in technical area.
• Certified information systems security professional (CISSP) or equivalent.
• Certified information security manager (CISM) or equivalent.
• Demonstrated experience in information security management disciplines within an enterprise environment.
• Significant experience in information security discipline or specialist information technology field.
• Expertise in managing cyber security risk, incident response management, senior management escalation, facilitation with external 3rd parties including government on cyber security matters.
• Expertise in information security architecture technologies and concepts: firewalls, intrusion detection, assessment tools, encryption and certificate authority.
• Expertise on Network Security, Network Hardware Configuration, Network Protocols, Networking Standards, Supervision, Conceptual Skills, Decision Making, Informing Others, Functional and Technical Skills, Dependability and Information Security Policies.
• Expertise in the field of information systems security, including areas such as identity and access management, security program policies, processes, and procedures.
• Understanding of emerging technologies and their impact on security architectures: service orientated architecture, cloud, enterprise frameworks and message based information exchange.

Desirable selection criteria

• Oil and gas industry experience.

About Beach Energy

Beach Energy is a proud Australian oil and gas company with a strong pioneering history. Formed in 1961 and listed on the Australian Securities Exchange in 1962, Beach Energy is an oil and gas exploration and production company that has grown to become Australia’s largest onshore oil producer with a major gas business having operations in South Australia, Victoria, Western Australia, Queensland and New Zealand.

Our portfolio of strategically located oil and gas assets positions us for further growth. Beach Energy’s sensitive approach to the environment, commitment to supporting the communities in which we operate, and sponsorship of local organisations all point to a thriving culture. We are committed to providing a diverse, satisfying and fulfilling workplace for all of our people. We value Safety, Creativity, Respect, Integrity, Performance and Teamwork.

How to Apply

Please complete the application page and upload your resume.

Application Deadline: Monday 16 July 2018

This is an outstanding career opportunity with a leading Oil and Gas ASX Listed Company, enjoy an exceptional work environment within a highly experienced team in a highly respected and progressive company.