Director, Cyber Security
Queensland GovernmentAustralia2 days ago
Full-timeInformation Technology
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
About TAFE Queensland
TAFE Queensland is proud to be the largest and most experienced Vocational Education and Training provider in the State. For more than 140 years, TAFE Queensland has delivered practical and industry-relevant training to provide students with the skills and experience they need to build lifelong careers. TAFE Queensland been named the Large Training Provider of the Year at the prestigious 2024 Australian Training Awards. Our training is delivered to students and apprentices on-site, online, in the workplace, or on-campus to give people the skills they need to enrich their communities, support their industries, and strengthen their local economies.
By working at TAFE Queensland, you can be part of a highly experienced workforce closely connected with their industries and dedicated to delivering best practices and innovative training.
Your Opportunity
As the Director, Cyber Security you will be responsible for:
This is a Permanent, Full-Time opportunity.
The position will be based primarily at Mount Gravatt Campus, however you may be required to perform work at other TAFE Queensland Campuses.
The Total Remuneration Package (TRP) for this role is to be negotiated.
Key Responsibilities
Within the context of the role description above, the ideal applicant will be someone who has the following key capabilities:
If you’re interested in this role, click the ‘Apply’ button to submit your application via the TAFE Queensland Recruitment Portal. When submitting your application, please ensure you provide the following:
Job Reference Number: TQ2025-958
For Further Information, Please Contact
Alan Chapman, Chief Information Officer
[email protected]
Occupational group Administration
TAFE Queensland is proud to be the largest and most experienced Vocational Education and Training provider in the State. For more than 140 years, TAFE Queensland has delivered practical and industry-relevant training to provide students with the skills and experience they need to build lifelong careers. TAFE Queensland been named the Large Training Provider of the Year at the prestigious 2024 Australian Training Awards. Our training is delivered to students and apprentices on-site, online, in the workplace, or on-campus to give people the skills they need to enrich their communities, support their industries, and strengthen their local economies.
By working at TAFE Queensland, you can be part of a highly experienced workforce closely connected with their industries and dedicated to delivering best practices and innovative training.
Your Opportunity
As the Director, Cyber Security you will be responsible for:
- Take primary responsibility for the delivery of TAFE Queensland’s information and communications technologies (ICT) cyber security strategy by leading cyber security related activities and technologies delivered through TAFE’s internal staff, students and vendor partners and service providers.
- The role also has responsibility for leading and guiding the design of cyber security policy, architecture, incident response management and threat detection using secure by design principles across all of TAFE Queensland and providing high level cyber security advice and management of the Cyber Security Operations Centre (SOC).
This is a Permanent, Full-Time opportunity.
The position will be based primarily at Mount Gravatt Campus, however you may be required to perform work at other TAFE Queensland Campuses.
The Total Remuneration Package (TRP) for this role is to be negotiated.
Key Responsibilities
- Lead and uplift the Cyber Security team to provide a high level of operational direction and service in the design and implementation of ICT cyber security strategies, roadmaps, architecture principles and outcomes for a diverse and complex ICT environment, ensuring adherence to legislative, regulatory and compliance obligations.
- Collaborate and work closely with the Chief Information Office leadership team in the development and design of TAFE Queensland’s ICT cyber security strategy, cyber security baseline controls and best practices to ensure the provision of secure ICT services that support business outcomes and effective risk management.
- Review, design, develop, test and implement cyber security operational plans, products, and control techniques within a security focussed environment that keeps pace with current technology shifts that are driven by education users and consumer device driven requirements.
- Direct, manage, plan and administer the operations and administrative activities for the cyber security of the organisation, including supply chain risk assessment and monitoring, threat intelligence, threat detection and response, overseeing the design of controls to address technical vulnerabilities and weaknesses, security incident event management, through internal stakeholders and vendor teams.
- Lead the implementation, maintenance and operation of the technical toolsets used to protect TAFE Queensland information assets and the information they hold from cyber security threats.
- Lead the implementation of an annual comprehensive program of security assessments aimed at testing, identifying and assessing threats, weaknesses and vulnerabilities of TAFE Queensland’s ICT assets.
- Work closely with the ISO 27001 Project Director to ensure that TAFE Queensland’s information security, cyber security and privacy uplift program achieves the intended legislative, regulatory and contractual obligations within specified timeframes.
- Lead detailed cyber security risk assessments, including identifying risks on new and existing infrastructure; provide authoritative advice on cyber security topics in projects and organisational initiatives to effectively identify and manage cyber security risk, escalating to relevant stakeholders as necessary.
- Provide reporting on cyber security controls, risks, incidents, and compliance in line with TAFE Queensland reporting frameworks and to TAFE Queensland security and steering committee audiences.
- Contribute to the identification and assessment of new and emerging hardware, software and communication technologies, products, methods, techniques and information management trends and address and assess their relevance to cyber security for the organisation.
- In conjunction with other ICT Directors, direct and engage with external service providers on activities impacting the cyber security of TAFE Queensland, including TAFE Queensland’s primary managed service providers and third-party vendors.
- Lead and manage cyber security incident response planning activities, ensuring that relevant plans and playbooks are documented and tested regularly.
- Provide expert, authoritative and professional advice to the CIO, CIO Leadership team and senior management across TAFE Queensland on ICT cyber security matters, contributing to informed decision-making and risk mitigation.
- Act as the primary incident coordinator in cyber security incident response events, ensuring TAFE Queensland takes appropriate actions in accordance with relevant plans, legislative, regulatory and compliance obligations.
- Liaise with executives, TAFE Queensland General Counsel and the information security internal audit function to oversee incident response planning in addition to investigating cyber security breaches and assist with any subsequent investigations or legal ramifications associated with those breaches.
- As an effective member of the Chief Information Office leadership group, establish strong working relationships and communicate cyber security related concepts to a broad range of technical and non-technical clients, including internal key stakeholders and external vendors and consultants in a confidential manner.
- Contribute to the success of transformation and cultural change through promoting and modelling the values of Safety First, Working Together, Focusing on our Customer, Taking Responsibility and Showing Initiative.
Within the context of the role description above, the ideal applicant will be someone who has the following key capabilities:
- Demonstrated experience in leading and managing a cyber security function including a Cyber Security Operations Centre (SOC) team across a large, geographically dispersed organisation.
- Demonstrated experience in responding to handling large scale or significant cyber security incidents.
- Demonstrated ability to provide sound advice to highly technical ICT teams to support the development of solutions to uplift the security posture and protect an organisation from cyber threats and effectively manage associated risks.
- Demonstrated experience in interpreting and pragmatically aligning and operating within various industry standard information and cyber security frameworks and provide pragmatic security direction, guidance, and solutions that consider complex stakeholder needs and security vulnerabilities.
- Demonstrated knowledge of risk management practices, current information and communication technologies (ICT) infrastructure requirements, relevant security technologies and best practice for information security management at a technical, business and operational level within a large, geographically dispersed organisation.
- Demonstrated ability to develop, plan, implement and monitor formal communication strategies or security awareness programs for a large organisation, by involving people and encouraging them to recognise their contribution.
- Demonstrated ability to challenge issues, raise objections constructively when analysing, assessing, investigating and reporting specific cyber security incidents or intrusions, utilising organisational policy, transparency and delivering agreed outcomes in a timely manner.
- Demonstrated interpersonal, oral and written communication skills, including ability to negotiate and consult with a range of clients and stakeholders about prescribed security practices, approaching negotiations with a strong grasp of the issues.
- Demonstrated ability to live and promote a strong ICT team culture that values the contributions of all team members, is honest and considerate, and through that establishes and maintains a highly respected high-performance team.
- You will possess a minimum of 5 years of operational cyber security incident response and management experience in enterprise environments.
- You will possess a minimum of 5 years of operational cyber security risk management experience using common industry frameworks.
- Tertiary qualification in Cyber Security, Information and Communications Technology or demonstrated equivalent experience is highly regarded.
- Possession of industry acknowledged cyber security certifications or completion of equivalent training courses is preferred, such as incident response certifications from leading industry organisations (e.g. SANS, Microsoft, Google, Xintra, SpecterOps, BlackHat) and cyber security risk management and leadership certifications from leading industry organisations (e.g. ISC2, ISACA).
If you’re interested in this role, click the ‘Apply’ button to submit your application via the TAFE Queensland Recruitment Portal. When submitting your application, please ensure you provide the following:
- A detailed resume;
- A cover letter that outlines your known skills, abilities, knowledge and experience in response to the “How you will be assessed” criteria above (maximum of 2 pages in total); and
- The contact details for two referees (one of whom is your current supervisor)
Job Reference Number: TQ2025-958
For Further Information, Please Contact
Alan Chapman, Chief Information Officer
[email protected]
Occupational group Administration
Key Skills
Ranked by relevanceReady to apply?
Join Queensland Government and take your career to the next level!
Application takes less than 5 minutes