Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
About the role
- Business Information Security Officer leading Cyber Security Risk & Control maturity at Coles. Collaborating closely with Customer & Digital team to enhance security frameworks and controls.
Responsibilities
- Key Group Cyber point of contact to Customer & Digital and key technology and business stakeholders for Cyber Business Protect functions building positive relationships and delivering secure by design capabilities
- Act as the trusted cyber security and risk advisor to the Customer & Digital, translating technical cyber threats, controls, and obligations into clear, practical guidance that enable and support business outcomes.
- Lead and embed secure by design and Business Protect principals and policies into projects, products, and operational changes by engaging early and influencing architecture, design, and delivery decisions.
- Identify, assess, and manage cyber risk within the Customer & Digital Group area, ensuring cyber risks are understood, prioritised, and treated in line with Coles’ overall risk policies & appetite.
- Partner with key stakeholders and delivery teams to support secure by design estimation on business protect planning for new initiatives.
- Represent with business context within Group Cyber forums, ensuring standards and controls are applied proportionately and pragmatically.
- Drive continuous uplift in cyber maturity across people, process, and technology through practical, value-focused improvements
Requirements
- 10+ years Information Security experience working with information security management frameworks, including ISO, Essential 8 and NIST (Payment industry / PCI DSS experience highly desirable)
- Proven track record in continually developing effective technical controls to protect Digital & Technology assets and services
- Consult with Technology Services team members to ensure that Information Security is both an essential pre-condition of requirements and design and integral to the development and implementation process
- Experienced in delivering cyber messaging & reporting with a business lens to senior organisational stakeholders (General Managers and Heads of)
- Detailed understanding of security reference architectures and full stack of security capabilities
- Experience in assessing Artificial Intelligence and applicable cyber security controls and emerging best practices
- Proven understanding of secure by design capabilities to assist stakeholders in undertaking the right solution
- Experienced in managing own pipeline of work and meeting project recoverability targets
- Understanding of Information Security policies and standards, and security requirements across the systems lifecycle for new or changes to existing products and services
- Experienced in mentoring Junior Cyber team members and supporting internal cyber quality assurance
- Managing the reporting of inherent risk in the proposed solution or change with stakeholders
- Reporting to management concerning residual risk, vulnerabilities and other security exposures, including misuse of information assets and non-compliance.
Benefits
- Flexible working options: We know that work is only one part of your life, so we actively encourage a positive work-life balance and provide hybrid working options to help you achieve it.
- Office perks: Take advantage of our gym facility and fitness classes, free parking, BBQ area, mini-Coles supermarket, fooderie hub where you can sample new products before they hit the shelves, school holiday program and so much more when you come in.
- Discounts: Eligible team members receive 5% discount all year round on your Supermarket and Liquor online and in-store purchases. We also offer additional periods of double discount (10%) at various times throughout the year. As well as hotdeals exclusive to team members that translate into additional savings.
- Reward through recognition: Give and receive recognition, linked to our Coles values, through our digital recognition platform ‘mythanks’. You can accumulate points to redeem in the online shop for exciting gifts and electronic gift cards from an extensive range of retailers.
- Opportunities for learning and development: No matter where you start within our diverse business, you’ll have experiences, exposure, and education to satisfy you. Discover and explore a variety of career development programs and job-specific training.
- Paid parental leave: We understand how important your life outside work is and offer permanent team members paid parental leave to support you in balancing work and family.
- Investment in your future: Our annual team member share plan offer allows eligible team members to make regular pre-tax salary sacrifice deductions to purchase Coles Group shares.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.
AI Application Security Architect in charge of driving secure development lifecycle for AI systems across multi - cloud environments and hybrid platforms.
Security Project Manager responsible for managing cyber - security project delivery and ensuring quality execution in Bulgaria. Requires excellent communication skills and fluency in English.
Information Security professional managing governance, audit, and compliance in banking domain. Collaborating across teams to enhance security posture and control effectiveness.
IT Security Manager providing operational leadership for ICBC’s IT security program. Enhancing cyber security practices and managing security initiatives in a dynamic, hybrid cloud environment.