Specialist, Security, Risk & Compliance

You're agile, keen and open to meaningful work and opportunities that come your way.

You bring structure, mitigation and education to our organisation. Our records and datasets are vast and varied. This is your opportunity to safeguard critical infrastructure, order and protect sensitive data, and defend against emerging cyber threats. You'll be part of an expert team who protect against thousands of threats every day.

In this role, you'll:

• Lead cybersecurity risk management for operational technology systems, ensuring compliance with regulatory requirements such as the NSW Cyber Security Policy and Critical Infrastructure Act, and drive continuous improvement through audits and risk assessments.
• Promote cybersecurity readiness by developing and implementing incident response plans, conducting tabletop exercises, and embedding best practices to enhance resilience and prepare for cyber events.
• Engage with Engineering & Maintenance teams and other key stakeholders to assess risks, advise on mitigation actions, and ensure effective cybersecurity measures for critical operational systems.

For more information on this position and business unit, view the role description and information pack.

About you

• Tertiary qualifications in a relevant Engineering, IT or Risk discipline or have equivalent experience with an understanding of IEC 62443 and ISO 27001 standards.
• Recognised for your strong stakeholder engagement and communication skills which help you to excel in presenting highly technical information in an understandable manner, and for your ability to engage with stakeholders to follow the required cyber security standards that will drive continuous improvement and change.
• Demonstrated experience in cyber security and operational technology and a demonstrated understanding of managing interface issues between various technical and operational disciplines. You will have a strong understanding of cyber security risk management and the various cyber security standards and frameworks.  Cyber Security and/or Risk Certifications such as CISSP, CISM, and CRISC, will be highly regarded.

If you're ready to make a meaningful impact by leading cybersecurity risk management and safeguarding critical operational systems, apply now and help shape the future of public transport safety and resilience.

Who we are
Transport for NSW provides a safe, integrated, and efficient transport system. We connect people, communities and industry every day.

At Sydney Trains, our rail services keep Sydney moving by putting our customers at the centre of everything we do. We work with our local communities to deliver safe, timely and efficient rail services 24 hours a day, seven days a week.

Our trains and network are evolving to meet the needs of our customers now and well into the future. We’re continuing to integrate technological innovations that help us deliver a smarter and more sustainable network.

Join us
Our workforce is as diverse as the community we serve. If you’d like further information on our inclusion and diversity initiatives, visit Transport careers.

We offer a wide range of employee benefits, like our award-winning flexible and hybrid work options.

This role is hybrid-friendly, meaning you can mix in-person days at your team’s home base location with remote days.

What are you waiting for…? Connect with us.  Apply now!

Applications close: 11:59 pm Sunday, 2nd Feburary 2025.

For more information about this role, please contact renee.campbell@transport.nsw.gov.au.

People living with disability are supported throughout the recruitment process and at work. Visit Supporting people with disability for more info or speak to your talent team member to arrange any adjustments to how you interact with us.

Need some help with your application? Take a look at our application tips video series.
#LI-Hybrid
#tccsj