• 1Search for courses by Study Area, Level and Location
  • 2We deliver you all the matched results
  • 3Choose one or more course providers to contact you
Industry

Distance from location (kms)

Exact 5 10 25 50 100

Posted since

All 2 Days 1 Week 2 Weeks 1 Month

Sort results by

Relevance Date

1

May

Security Consultant

Dye & Durham Corporation - Sydney, NSW

IT
Source: uWorkin

Source: uWorkin

JOB DESCRIPTION

DYE & DURHAM CORPORATION (TSX: DND)

Security Consultant

· Permanent Full-Time Appointment based in SYDNEY

· Competitive Remuneration on offer + discretionary STI Bonus scheme

· Join an expanding global legal technology company

The Company

Dye & Durham is a legal technology company that recently went public. The Company is rapidly growing primarily through acquisitions across Canada, UK, and Australia and has completed twelve acquisitions in the past three years. The Company offers a comprehensive cloud-based technology platform that seeks to be a complete all-in-one solution for access to public records data and the automation of routine legal document creation.

Founded in 1874 and today employing over 900 people across Canada, UK, and Australia, Dye & Durham uses technology to distinguish itself from competitors and provides a compelling value proposition to its large blue-chip customer base of over 5,000 active law firms, government agencies, and financial institutions.

We are a value-driven business. Our People are at the heart of everything we do. We embrace excellence through collaboration while advocating for the growth and development of our employees. We are passionate about what we do and feel a genuine love for our work.

The Opportunity

Based in the Sydney location, the successful candidate will be responsible for establishing and maintaining a corporate-wide Security program to ensure that information assets are adequately protected. Success here, then, will include conversing regularly with stakeholders to make sure all Information and Cyber Security policies are deployed, revised, sustained, and followed effectively. Reporting to the Head of Technology & Digital, Security Consultant as the owner of assurance activities related to the availability, integrity, and confidentiality of D&D customer, employee, and business information in compliance with the organization's information security policies. A key element of the role is working with the team to determine acceptable levels of Information and Security risk for the organization.

Key Responsibilities

  • Enhance and improve the D&D Information and Security management framework
  • Ensure the consistent application of policies and standards across D&D business activities and technology projects, systems, and services
  • Ensure that disaster recovery and business continuity plans are in place and tested.
  • Review, update and approve security policies, controls, and cyber incident response planning.
  • Lead and manage cyber incident response testing and validation of incident response planning
  • Keep abreast, through cyber intelligence, of developing security threats and cyber risks, and help the D&D management to understand potential security problems that might arise from acquisitions or other significant business activities
  • Perform real-time analysis of immediate threats, and actively triage to resolution when something goes wrong
  • Ensure data loss and fraud prevention risks are minimized ensuring appropriate security measures are in place such that internal staff doesn't misuse or steal data
  • Perform thorough and complete investigations and forensics into Cyber Security incidents, determining what went wrong in a breach, dealing with those responsible if they're internal, and planning to avoid repeats of the same crisis
  • Act as the Data Protection Officer and follow appropriate data protection compliance processes in the event of a breach
  • Audit and assess IT Infrastructure for security risks and develop risk resolution and mitigation roadmaps and plans, and ensure those plans are implemented
  • Proposing (with business cases), planning, buying, and rolling out security hardware and software (and supporting services), and making sure IT and network infrastructure is designed with best security practices in mind
  • Implement ‘security by design’ by working with the Software Development team to define and assure secure coding standards and patterns
  • Approve identity and access policies; evaluate and improve identity and access control systems and processes, and ensure identity and access policies and processes are followed through regular and frequent audits ensuring that only authorized people have access to restricted data and systems
  • Keep ahead of security needs by managing projects and activities that mitigate risks — regular vulnerability scanning, system audits, system patches, for instance
  • Manage and plan the program of Cyber Security initiatives and activities such that they run smoothly and get the funding they need — and that D&D Leadership understand their importance
  • Work directly with the business functions to facilitate risk assessment and risk management processes
  • Assist D&D Compliance function in ensuring regulatory compliance

The successful candidate

We are seeking a self-starter who has the drive and confidence to work independently with at least (5) years of experience in Cyber and Information Security. Critical to the success of this role, will have the ability to be strategic, detail-oriented assessing potential security threats or breaches and creating contingency plans for when breaches occur.

To be successful as a Security Consultant, you should have excellent attention to detail as well as strong strategic planning skills with great communication and interpersonal skills, as well as top-notch technical skills.

A strategic planner can act and think as well as be willing to “roll up the sleeves” and get actively involved in the operational activities and processes with all levels of management. Ability to work under pressure with calm and discretion when dealing with confidential matters

Additionally, you will have:

  • The ability to articulate Cyber and Information Security and technical issues in a non-threatening, clear, and actionable manner to non-technical leadership.
  • Cyber Security Certification: CISSP, CISM, ISO 27001, ISO 27002 (Good to have)
  • Solid understanding of software programming and IT system administration
  • Thorough experience with security-centric technology such as DNS, routing, authentication, VPN, proxy services
  • Expert in DDOS mitigation technologies & firewall and intrusion detection/prevention protocols
  • Understanding of threat modelling
  • Knowledge of GDPR, PIPEDA, PCI, NIST, and SOX compliance assessments
  • Proven experience of change management and adapting to moving trends
  • Strong strategic and customer focus with a clear understanding of the wider issues affecting the relevant markets.
  • Able to interpret data, develop strategy, and make recommendations.
  • Demonstrate ability to motivate and communicate effectively across multiple technical and non-technical teams and functions, as well as across other geographies.
  • Have an exceptional analytical mind, the ability to problem-solve effectively and swiftly, and a hands-on attitude.

Qualifications:

  • Relevant Bachelor’s Degree in computer science or a related field with 5-7 years of work experience required
  • Relevant degrees and certifications (CISSP, CISM, ISO 27001, ISO 27002) whilst not essential will be highly regarded

 Interested?

We welcome your application. Please include a one-page (max) cover letter outlining how your skills and experience are a match for this opportunity along with an updated resume. There is no closing date for this advertisement and the Recruitment process will take place on a rolling basis, as and when we receive suitable interest. Please do not delay!!


Please note, the successful candidate will be required to undertake and successfully complete pre-employment checks including reference checks, National Police Check, and provide evidence of citizenship.


We are not accepting agency referrals. Thank you!