At EY, we’re all in to shape your future with confidence.
We’ll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.
Join EY and help to build a better working world.

SKILLS AND ATTRIBUTES FOR SUCCESS

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field; Master’s degree preferred.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role.
• Proven experience in leading security audits and large-scale cybersecurity implementation programs.
• Strong understanding of Australian government security frameworks, including PSPF, DSPF, and ISM.
• Demonstrated ability to develop and implement effective cybersecurity strategies and frameworks.
• Experience in identifying business opportunities and growing a book of business within the cybersecurity sector.
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels.
• Strong analytical and problem-solving skills, with a strategic mindset.
• The following certifications are highly desirable:
• 
  
  
  
• CISSP - Certified Information Systems Security Professional

• CISM - Certified Information Security Manager
• CRISC - Certified in Risk and Information Systems Control
• CIPM - Certified Information Privacy Manager
• ISO 27001 - Information Security Lead Auditor.

Ideally, you’ll also have the skills and attributes below but don’t worry if you don’t tick all the boxes. We’re interested in your aptitude, attitude and willingness to learn.

• Ability to navigate complex regulatory environments and ensure compliance with applicable laws and standards.
• Experience in crisis management and incident response planning.
• Proven track record of managing budgets and resources effectively.
• Strong leadership skills with the ability to inspire and motivate teams.
• Commitment to professional development and staying current with industry trends and advancements.

ACKNOWLEDGEMENT OF COUNTRY

EY acknowledges the Traditional Owners and Custodians of the lands on which EY offices are located around Australia. We pay our respects to their cultures, and to their Elders — past, present, and emerging. Find out more about our vision for reconciliation at ey.com/en_au/careers/indigenous
Diversity, equity, and inclusiveness (DE&I) are core to who we are, how we work and how we live our values. We encourage applications from people of all ages, nationalities, abilities, cultures, sexual orientations, and gender identities and are committed to providing an equitable and barrier free recruitment experience for all. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process. We understand sharing your needs with us can be daunting, so if you have questions before or during your application, we welcome you to get in touch at contactrecruitment@au.ey.com or +61 3 8650 7788 (option 2). Anything you tell us will be kept completely confidential.

YOUR KEY RESPONSIBILITIES

• Lead and manage comprehensive security audits to assess and enhance organizational security posture.
• Oversee the implementation of large-scale cybersecurity programs, ensuring alignment with business objectives and compliance with relevant frameworks.
• Provide strategic advice and guidance to C-Suite executives on cybersecurity risks, trends, and best practices.
• Develop and implement robust cybersecurity strategies that align with organisational goals and regulatory requirements.
• Design and establish cybersecurity frameworks and operating models tailored to the organisation’s needs.
• Identify business opportunities within the cybersecurity domain and develop strategies to grow a book of business.
• Foster a culture of continuous improvement and innovation within the cybersecurity team.
• Build, mentor, and grow high-performing teams across the cybersecurity competency.
• Collaborate with cross-functional teams to ensure cybersecurity considerations are integrated into all business processes.
• Stay abreast of emerging cybersecurity threats, technologies, and regulatory changes to inform strategic decision-making.

Ideally, you’ll also have the skills and attributes below but don’t worry if you don’t tick all the boxes. We’re interested in your aptitude, attitude and willingness to learn.

• Ability to navigate complex regulatory environments and ensure compliance with applicable laws and standards.
• Experience in crisis management and incident response planning.
• Proven track record of managing budgets and resources effectively.
• Strong leadership skills with the ability to inspire and motivate teams.
• Commitment to professional development and staying current with industry trends and advancements