Are you looking for a role where you can genuinely influence the direction of cyber security within a growing organisation, rather than simply maintain what already exists?
We’re partnered with a fast-scaling organisation operating at the forefront of fraud and scam prevention across Australia, working closely with banks, telecommunications providers, regulators and broader industry groups.
With increasing regulatory focus and new legislation driving security uplift, the organisation is continuing to mature its cyber capability and is looking for a Senior Cyber Security Manager to help shape that journey.
This is not a pure governance role. They’re looking for someone who still enjoys being close to the technology while also contributing to security uplift, operational strategy, resilience initiatives and broader security maturity across the business.
The environment is lean, agile and highly collaborative, so this role suits someone pragmatic. Someone who understands that implementing security controls in operational environments isn’t always straightforward and can balance security outcomes with business realities.
You’ll report into the Head of Risk & Compliance, who owns the broader macro-level security and compliance strategy, while this role focuses more heavily on the practical implementation, operational uplift and micro-level security strategy across the organisation.
What you’ll be doing:
- Contributing to operational cyber security strategy, uplift initiatives and security roadmap planning
- Leading security uplift initiatives aligned to ACSC ISM controls and Essential Eight maturity objectives
- Acting as an internal security SME across infrastructure, IAM, operational security and resilience measures
- Working closely with outsourced vendors and technology partners, reviewing controls and challenging outcomes where required
- Supporting security improvements across on-prem Linux environments with practical operational considerations
- Advising on areas such as application control, patching, change management and operational risk
- Providing guidance around containerisation, resilience measures and evolving security controls
- Supporting the business with tooling decisions, software recommendations and associated cost considerations
- Helping mature security capability within a fast-growing organisation operating in a heavily regulated environment
Key areas of experience they’re looking for:
- Strong understanding of ACSC ISM controls, Essential Eight and security uplift programs
- Experience working within lean or mid-sized environments where broad security ownership was required
- Strong vendor and third-party management capability across outsourced infrastructure or security operations
- Working knowledge of Okta including: SSO, MFA, identity and access risk considerations
- Ability to balance technical depth with stakeholder engagement and practical decision-making
- Someone comfortable working across both technical security discussions and business-level conversations
- Strong understanding of operational impacts when implementing security controls in production environments
- Pragmatic mindset with the ability to influence outcomes without being overly rigid or process-heavy
Why this role stands out:
- Opportunity to genuinely influence how security evolves within a growing organisation
- Broad exposure across cyber uplift, operational strategy, IAM, resilience and vendor management
- High visibility role working closely with leadership and industry stakeholders
- Fast-scaling environment operating within a nationally significant sector
- Lean team where your input will directly shape security outcomes
- Flexible hybrid working environment with only 1 office day per week (Mondays) in Barangaroo
- Opportunity to build and improve security capability rather than inherit heavily structured processes
If you’re someone who enjoys ownership, building capability and operating across both technical and strategic security, this is a genuinely strong opportunity to make an impact.
Please apply or send your CV to jreid@decipherbureau.com