This service is set to disconnect automatically after {0} minutes of inactivity. Your session will end in {1} minutes. Click OK to reset the timer to {0} minutes. You have been signed out. This service is set to sign out after {0} minutes of inactivity. Job Description - Head of Security Advisory & Engagement (APR1677) Job Description Head of Security Advisory & Engagement - (APR1677) Description The role The Head of Security Advisory and Engagement is a pivotal senior leadership role focused on positioning security as a business enabler through proactive customer engagement. This role is responsible for consolidating all security initiatives, ensuring integration and dependency management, and leading internal customer security efforts. The incumbent will oversee security risk assessments, assurance management, and the close integration of security controls throughout the project and business-as-usual (BAU) lifecycles. The team The Security team sits within the Data, Technology and Security (DTS) division. With a recently appointed CISO, the team is undergoing uplift. The Security team manages cyber, information, and personnel security in alignment with the Protective Security Policy Framework (PSPF). The team works collaboratively with stakeholders at all levels to develop, communicate, and implement security strategies and governance. Key responsibilities Customer Facing Engagement: Lead internal customer engagements, demonstrating security as a business enabler and value, aligned with government security requirements (PSPF, Essential 8, ISM). Customer Security Risk Assessments: Conduct and manage security risk assessments across physical, personnel, and cyber/information security to identify and mitigate threats. Collaborate with Security Strategy, Governance & Privacy team for documentation and reporting. Assurance Management: Develop and manage security controls and assurance frameworks. Lead assurance activities like IRAP assessments and penetration testing to validate controls' effectiveness and ensure secure by design lifecycle integration. Work with security heads on reporting and tracking. Security Culture and Awareness: Develop and implement engaging security cultural change and awareness programs. Ensure cohesive communication across projects and BAU activities. High Performing Team: Collaborate with CISO, Executive Director of Technology & Data, CDO, CIO, and senior managers to build a cohesive, high-performing leadership team. About you The successful candidate will have prior experience in a senior security leadership role, with expertise in security advisory, cultural change, and customer engagement. Experience in risk assessment, assurance, and security controls is essential. Experience in formal consulting environments is highly desirable. Technical Skills: Deep knowledge of Australian government security frameworks (PSPF, ISM, Essential 8). Proficiency with security risk assessment and management tools. Experience with assurance activities like penetration testing and compliance frameworks (IRAP, third-party assurance). Strong understanding of security controls and Secure by Design principles. Soft Skills: Excellent leadership and team management skills. Consultative, collaborative, proactive. Strong analytical and problem-solving abilities. Strategic thinking and data-driven decision-making. Exceptional stakeholder engagement and relationship management, especially with senior stakeholders. Advanced communication, negotiation, conflict resolution, and interpersonal skills. Ability to translate technical issues into plain language. View security as a business enabler, with a risk-based approach. Applicants must be Australian citizens eligible for NV1 security clearance. About APRA The Australian Prudential Regulation Authority (APRA) plays a central role in Australia’s financial services industry, ensuring stability, efficiency, and competitiveness. APRA is committed to an inclusive workplace that values diversity and fosters a respectful environment. Applicants are encouraged to inform us of any adjustments needed during the interview process. J-18808-Ljbffr
