15 minute read
Every voice deserves to be heard
MICHELLE RIBEIRO
by Michelle Ribeiro, Cyber and Information Security Content Director, APAC
Companies around the world are investing billions of dollars to prevent and minimise cyber risks. Australia’s spending in cybersecurity is expected to hit $7.6 billion by 2024, according to an AustCyber report.
Cybercriminals are putting organisations under immense pressure with their high-level, sophisticated practices. Their activities are increasingly impacting businesses’ daily operations, limiting organisations’ ability to grow and critically affecting the lives of their clients and end users—us.
As we recognise the importance of cybersecurity awareness, most of us feel the urge to do something that will help protect the companies we work for, the people we love the most, the countries we live in and the communities we belong to. However, even experienced security practitioners are often unclear about how to achieve this objective.
Attending business conferences, gathering with peers and like-minded people and sharing intelligence are crucial to strengthening our collective cyber resilience posture, preventing threats and minimising risks of attacks and breaches.
But, despite the countless events and initiatives available for cybersecurity practitioners to share knowledge and collaborate, the low number of women talking about their practices and experiences is distressing.
On the one hand, there is a lack of diversity and inclusion in the workplace to support women seeking to improve their professional performance and advance their careers in cybersecurity. On the other hand, many women lack the confidence to speak up about their achievements.
Speaking at cybersecurity conferences is an incredibly effective way for women in cybersecurity to support the industry while raising their profile and advancing their careers. However, one of the biggest objections event organisers face when approaching female executives to speak at conferences is the women’s insecurity and fear of not meeting the audience’s expectations. It is hard to believe, but most of these women are doing amazing jobs in their cybersecurity roles and delivering outstanding results for their organisations. Often, they have been referred to event organisers by their peers and the community.
So, how can you recognise your successes and trust yourself to get up and speak? Whether you are a senior leader with considerable experience speaking at conferences locally and globally, a first-time speaker or someone who is just starting to consider speaking, there are many things you
can do to help women share and celebrate their professional achievements.
For first time speakers or those just starting to think about speaking, a great way to begin is by listing the career achievements you are most proud of. How did it all start? What did you do? How was your journey? What challenges did you have to overcome? What did you learn, and what would you recommend to others who are in the same position as you were?
It is important for women to embrace new challenges and understand they do not need to be a CISO or an executive manager at one of Australia’s Top 500 companies to do something meaningful that will support their community and drive change.
Everyone loves an inspiring presentation. In fact, the best business conferences are those offering a balance of strategic and technical sessions combined with inspirational presentations from both senior leaders and rising stars. If you have achieved something you are proud of, rest assured you have a good story to share that will inspire someone.
If you are a senior leader you can help uplift the women in your team by empowering, inspiring and supporting them. When you receive an invitation to speak you can ask the organisers if they have sessions for first-time speakers and rising stars, and if so, recommend someone from your team. You can also work in collaboration with your organisation’s internal communications and training teams to offer public speaking and media training for interested members of your team. There are many initiatives to support women who want to embrace the challenge of public speaking. The Australian Women in Security Network (AWSN) and the New Zealand Network for Women in Security (NZNWS) are networks that provide valuable membership benefits. They organise and run inspiring events that could be great starting points for anyone looking for speaking opportunities. They also offer many opportunities for women to advance their careers.
Another great network to join and collaborate with is the WomenSpeakCyber LinkedIn group, run by Louisa Partridge and Louisa Vogelenzang. The Australian Information Security Association (AISA) also offers support for first-time speakers. You can join them and submit a paper for presentation at one of their conferences. Commercial event organisers are constantly on the lookout for inspiring speakers. On their websites you can register your interest in speaking.
The most important thing is to recognise your own successes and achievements because there are many people interested in hearing what you have to say. Be proud of that! Share your successes with others. Be courageous: you will inspire other amazing women to do the same. Take one step at a time and keep going. This is how we improve security together and drive change.
“The secret of getting ahead is getting started.” - Mark Twain
www.linkedin.com/in/michelle-r656e6
JOB BOARD
DEPUTY CHIEF INFORMATION SECURITY OFFICER (CISO) | PWC
SYDNEY AUSTRALIA FULL TIME
EXECUTIVE BUSINESS CONSULTING AND SERVICES
AS THE DEPUTY CISO IN OUR NIS TEAM YOUR IMPACT WILL BE SEEN BY:
• Demonstrating extensive knowledge of, and/or proven record of success in, firm priorities, Network Information Security concepts, principles and standards and their application in a large enterprise environment, preferably for a global network of professional services firms. • Demonstrating thought leader-level knowledge and/or a proven record of success directing efforts in driving execution of strategic priorities. • Proven, refined abilities and success in identifying and addressing leadership and stakeholder needs to overcome challenges and gain a positive result. • Extensive experience in stakeholder management including and influencing others through leadership interactions across a broad structure to build and maintain relationships across a network to effectively deliver security activities.
ABOUT YOU
• 10 year(s) progressive professional roles involving information security and/or IT management. Bachelor degree preferred. • You will have a proven record of managing multi-function relationships throughout major transformation and collaborating with multiple stakeholders across functional and technical skillsets to identify, build and maintain security capabilities or controls. Extensive abilities, and/or proven record of success, supporting and/or coordinating
Information Security Governance to enhance to decrease repeat findings and issues, and make other process efficiency improvements. • Also, it is crucial in this leadership role to have a proven people management experience to provide coaching and development for others to maximise their potential. • You’re collaborative and enjoy working in an innovative environment. You’re a problem solver by nature and want to join a firm that values the kind of people who reimagine the possible for their clients and stakeholders. Most importantly, you act with integrity and show care for the people you work with.
APPLY NOW
ADELAIDE FULL TIME ANNUAL BONUS BENEFITS
We are presently seeking a talented Security Advisor to support the P-8 Poseidon for the security of people, information, property and operations based at RAAF Base Edinburgh.
RESPONSIBILITIES:
• Consult, advise and apply Government security standards, including but not limiting to the Principle Security
Policy Framework (PSPF), the Defence
Security Principles Framework (DSPF), the Defence Industry Security Program (DISP) and the Information Security
Manual (ISM). • Provide internal subject matter expertise on Australian Government IT & protective security accreditation requirements and
how to interpret and implement policy. • Execute internal security controls through performance of compliance assessment reviews and self-inspections to ensure compliance with Government and company regulations and requirements. • Identify deficiencies, develop and implement corrective actions. • Collaborate with Enterprise specialists, project managers and S&FP team members on the development and maintenance of Personnel Security, Information Security, Physical Security, and Governance.
BENEFITS
• Flexible working options • Study assistance • Salary packaging • Employee Incentive Program • Global opportunities
If you are ready to join an innovative industry leader and would like to register your interest in working for Boeing, please click Apply Now.
APPLY NOW
BRISBANE FULL TIME ANNUAL BONUS BENEFITS
We are presently seeking a talented Security Advisor to support the MQ28A Ghost Bat for the security of people, information, property and operations based at Brisbane.
RESPONSIBILITIES:
• Collaborate with Enterprise specialists, project managers and S&FP team members on the development and maintenance of Personnel Security,
Information Security, Physical Security, and Governance. • Conduct Communication Security (COMSEC) duties and responsibilities (including inventory, distribution and destruction), in compliance with
Government regulations/requirements. • Lead and perform Personnel Security to assist in obtaining individual security clearances/accesses for customer requirements. • Assist in the implementation of a security awareness training and education program to educate, refresh and motivate personnel to protect
people, property and information. • Empower a culture of safety, security and compliance across the business.
BENEFITS
• Flexible working options • Study assistance • Salary packaging • Employee Incentive Program • Global opportunities
If you are ready to join an innovative industry leader and would like to register your interest in working for Boeing, please click Apply Now.
APPLY NOW
SENIOR SECURITY ANALYST | REA GROUP
MELBOURNE AUSTRALIA FULL TIME GREAT BENEFITS PACKAGE
If you are looking to work alongside some of the brightest and best in the industry – read on! The Security Operations (aka “Defence Against the Dark Arts”) team is expanding! Do you love investigating suspicious process trees? Do you dream about finding C2 beacons in network logs? Do you want to work in the most diverse*, happiest* and least stressed* incident response team in Australia? Applications are open now, so get in quick and come see why we’re a great place to work.
THE SENIOR SECURITY ANALYST SUPPORTS THE GROUP SECURITY TEAM IN THE FOLLOWING WAYS:
• Lead the adoption of security threat management capabilities throughout REA. • Monitoring emerging security threats, providing recommendations and direction to management. • Analysing and investigating security events, through monitoring of the REA environment. • Drive continuous improvement of security detection and incident response processes by providing technical security leadership. • Contribution to automations that reduce alert fatigue whilst maintaining effective escalation of true positives. • Mentoring and development of junior security analysts to support their growth. • Participating in internal and external security forums, working group activities to promote security concepts.
WE OFFER:
• A flexible working environment, meaning we strike the balance of what you need and what works for the business (and yes, our leaders fully understand the benefits of working flexibly) • A hybrid approach to the future of work – https://rea.to/hybrid-working • Generous and flexible parental leave offering for primary and secondary carers • Summer Fridays – time back to focus on your wellness every Friday afternoon from December through to March • Support for your mental and physical health and wellbeing via our ‘You Matter’
Program • Because We Care program which includes volunteer leave and community grants, to ensure you have the opportunity to give back to your community • Hack Days for you to bring so you can bring your big ideas to life in a supportive learning environment • An additional day of leave just for your birthday
APPLY NOW
JOB BOARD
TECHNICAL LEARNING DESIGNER | DATA SECURITY INSTITUTE
ANY LOCATION PART TIME
Do you have technical skills and the ability to build cyber security training labs? DSI is seeking a range of people who can create lab-based training focused on areas including Penetration Testing, Threat Intelligence, DFIR and SOC. This is a casual role working with leading educational designers to create the next generation of cyber security training.
WHAT’S IN IT FOR YOU?
• influence future cyber security training • Use your your creative and technical skills • Work with leading educational designers • Make use of your spare time, get paid, and build out your CV Please direct enquiries to Nigel.phair@gmail.com
APPLY NOW
CYBER SECURITY & TECHNOLOGY RISK MANAGER | FOODSTUFFS
CHRISTCHURCH CANTERBURY NEW ZEALAND
ON-SITE FULL TIME
ABOUT THE ROLE:
• This newly created role, reporting to our newly appointed Chief Digital Officer, will work together with our leaders to ensure the future state of the Digital and
IT team will enable us to deliver on our strategic outcomes. • This role will provide the vision and leadership to proactively manage cyber and technology risk and build technology resilience in FSSI, by delivering a comprehensive management framework. • You will lead and own the development and delivery of Cyber Strategy, Business
Continuity and Resilience Strategy, in collaboration with the CDO, ensuring alignment with the wider business strategy.
THE KEY FOCUS OF THIS ROLE INCLUDES:
• Strategic, technical and functional leadership for Cyber Security and
Technology Risk • Subject Matter Expertise and thought leadership to develop cyber security, technology risk, and data protection. • Evaluate the existing data protection framework and identify areas of noncompliance to rectify any issues • Promote a culture of data protection compliance across all business divisions • Develop, implement and promote fit for purpose policies, standards and guidelines. • A strong emphasis on continuous improvement in the operational space.
WHAT YOU’LL BRING
As a Senior Leader, you will bring significant experience in developing and delivering cyber security and technology risk outcomes. You will have a proven record in driving and leading change, effectively able to lead and develop high performing teams and demonstrate solid business acumen. Along with your extensive project management capability, you will have excellent analytical and problem-solving skills.
WHAT WE OFFER
• Competitive remuneration package including a company vehicle • Medical Insurance for you and your family after a qualifying period • Excellent work environment • A really good on-site cafe
If this sounds like the opportunity you have been waiting for please apply online now including a CV and Covering Letter. If you have any questions about this role or would like a copy of the position description, please contact our recruitment team on centralrecruitment@foodstuffs-si.co.nz
APPLY NOW
TECHNICAL ACCOUNT MANAGER - SYDNEY | FORTINET
AUSTRALIA FULL TIME REMOTE
ROLE OVERVIEW:
As a member of the Technical Account Support Team, you will use your deep understanding of network/security architectures and general knowledge about the current trends in the market to help promote product quality, while providing best in class solutions. You will work with research and development groups, sales teams and regional support teams in a fast paced environment. For this position, you have to demonstrate experience in participating in the postsales support escalation processes, which includes pre-sales experience, as well as strong customer facing skills particular in the telco and large enterprise space. This position requires strong oral and written communication skills. Oral communication skills include the ability to speak clearly and persuasively, to listen carefully to ensure full understanding of the situation, and to respond well to questions when dealing with both positive and negative situations. This position also requires the ability to write clearly to provide full information as well as to understand and interpret written information. This role can be based in Canberra, Sydney or Melbourne.
RESPONSIBILITIES
• Primary point of contact for the dedicated account. • Provide technical solutions to address customer issues. • Centrally manage and prioritize customer issue to assure timely resolution. • Reproduction of customer environments on lab equipment. • Follow-up with R&D departments to resolve product issues. • Responsible for tracking, maintaining
and resolving incident reports and customer support requests. • Creation of technical documentation and bulletins to improve internal and external knowledge base. • Update and provide guidance on new releases and features to dedicated accounts. • Develop best practice deployment and troubleshooting methodology documentation. • Conduct periodic site visits for the managed accounts. • Exercise independent judgment in methods, techniques and evaluation criteria for obtaining results. • Provide both technical and customer relationship handling mentorship to junior Technical Account Managers. • Lead initiatives that contributes to the success of the Advanced Services team and the company.
APPLY NOW
POSTDOCTORAL RESEARCH FELLOW (CYBER SECURITY) | THE UNIVERSITY OF QLD
FULL TIME ACADEMIC LEVEL A
FIXED TERM POSITION FOR UP TO 12 MONTHS
ABOUT THIS OPPORTUNITY:
This is an exciting opportunity for a Postdoctoral Research Fellow to focus their efforts on developing their expertise and emerging research profile in their discipline. At this level it is expected that the incumbent will contribute to service and engagement roles and activities. This position will engage in postgraduate and honours thesis supervision, and support contract work and grant application development, industry research collaborations and other activities associated with the School of Information Technology and Electrical Engineering (ITEE) and UQ Cyber Security. Working with leading researchers from UQ Cyber Security and CSIRO’s Data61, the Postdoctoral Research Fellow will gain access to state-of-the-art industrial control systems equipment through Data61’s facilities, UQ Energy Testlab, and specific domain expertise through collaboration with healthcare and energy research groups at ITEE..
WHAT WE CAN OFFER
This is a Full Time, 100% FTE Fixed Term position through to 30 September 2023 at Academic Level A. The full-time equivalent base salary will be in the range $87,006.34 - $96,530.67 plus super of up to 17%. The total FTE package will be in the range $101,797.42- 112,940.91 per annum. The following flexible employment options may be available for this role: Part time/ job share; some working from home; variable start or finish times; compressed hours; purchased leave; flex-time. To discuss this role please contact Prof Ryan Ko (ryan.ko@uq.edu.au).
