21 Information Security Manager jobs in Australia

Vice President, Cyber Incident Response Manager, Global Information Security, Australia
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**What you can expect**
Cyber Incident Response and Management is part of the Cyber Response & Recovery division who provides a globally coordinated and managed response capability for information security events and incidents that may impact the confidentiality, integrity, and/or availability of the Bank's information and information systems or has privacy implications.
The role of the Senior Incident Manager is to coordinate the response and recovery activities from information security incidents. This includes collaboration with appropriate response, assist with determining the root cause of incidents and work with stakeholders and responsible parties to remediate any identified control gaps or failures; Escalate issues to management in a timely manner with appropriate information regarding severity, exposure, and action items; this role requires critical thinking and investigative mindset coupled effective written, and verbal communication skills.
This is a senior role on the team with high visibility at the global level including interacting with and providing direct updates to executives and senior leadership stakeholders. A Senior Incident Manager provides their knowledge and expertise in incident response to lead, mentor, and challenge associates on the team. The team conducts follow-the-sun (FTS) operations which you will work closely with AMRS and APAC regions.
**What you will do**
+ Establish oversight of information security events and cyber incidents and communicate analysis, containment and remediation efforts to all business partners.
+ Cyber incident response and recovery plans will be available to use and should be maintained by the team. Any issues that require management escalation will be expected to be completed in a timely manner including all appropriate information in relation to risk and action times.
+ The Cyber Incident Manager will be expected to provide status updates and post-incident findings for executives and stakeholders in non-technical terms encompassing risk, impact, likelihood, containment and remediation activities and threat actors.
+ Risk management including briefing and recommending actions to executive leadership within Global Information Security and other business partners on events and incidents.
**Your background**
+ Proven experience handling Information Security related events and incidents.
+ Experience in an operations focused role with an emphasis on cyber incident response.
+ Demonstrable experience in the coordination of containment activities related to cyber security incidents.
+ Familiarity with security vulnerabilities exploits and APT tools, techniques, and procedures.
+ Familiarity with network security vulnerabilities, exploits, malware, and digital forensics desirable.
+ An excellent verbal and written communicator who can adapt to their audience.
+ Decisive and can make difficult decisions in what can be a high-pressure environment.
+ Exercise independent judgment in methods, techniques, and evaluation criteria for obtaining results.
+ Able to handle multiple competing priorities in a fast-paced environment and act without causing an undue delay.
+ Supportive and can work well as part of a team as well as independently.
+ Ability to remain calm under pressure.
+ Ability to work in a strong team-orientated environment with a sense of urgency and resilience.
+ Must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks whilst remaining risk and objective focused, with an investigative mindset.
+ Security+ or equivalent certification.
+ GCIH or equivalent certification required within six months of employment.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Description
AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain - and we're looking for talented people who want to help.
You'll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You'll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our customers. And you'll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.
Amazon Web Services (AWS) is looking to hire a Data Center Security Manager to manage the physical security at one of our Sydney Data Centers. You will be responsible for managing the on-site operational physical security of our Data Center and will have a thorough knowledge of access control systems and process, guard force management, reporting security metrics, security audits and incident reporting.
You will also understand and maintain compliance requirements with international standards such as (SOC1, SOC2 and ISO27001). You will also be responsible for the implementation of new processes and adherence to existing Amazon policy and procedure relating to security guarding, media security, CCTV monitoring and the protection of customer data. You will possess exceptional people management skills and will build relationships with internal and external partners to maintain and enhance the security and safety of Amazon. You will coordinate physical security (security services, access control and CCTV systems, site surveys), investigations, risk/threat assessments. You will supervise employees and contractors performing specific security objectives and monitor vendor performance.
As part of a global leader in this space you will also be required to work with peers in other geographic regions and travel as required by Amazon.
Key job responsibilities
- Manage security operations at an AWS Data Center
- Direct contract guard force operations
- Manage security incidents and conduct post-incident investigations
- Support business continuity responses to emergencies
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
Here at AWS, it's in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Basic Qualifications
- Bachelor's degree or equivalent professional experience in security or related fields; i.e., compliance, logistics, transportation, facilities
- 2+ years of commercial or industrial work experience
- Proficiency in Microsoft Office software
Preferred Qualifications
- Experience working in a high security environment
- Conflict resolution training
- Experience performing security risk assessments
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Description
AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain - and we're looking for talented people who want to help.
You'll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You'll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our customers. And you'll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.
The AWS Data Centre Communities organization manages the data centre facilities and equipment that power Amazon Web Services. Safety of our employees, the security of our customers' data, and the flawless operations of our infrastructure are our top priorities.
We are looking for a Facility Security Manager for our cloud infrastructure in Australia. We need someone with experience managing security of large critical installations, ideally data centres; and who can set strategy, manage budgets, lead projects, and drive improvements in our security practices and operations.
Key job responsibilities
- Responsible for providing comprehensive program security guidance concerning personnel, physical, operational, technical, industrial, counterintelligence, and media management.
- Create, implement, communicate, and manage security requirements at a large, government accredited sites, while providing day-to-day multi-discipline program security operations support.
- Draft and review security documentation to include transportation plans, procedures, and CONOPs.
- Proactively identify program and physical security requirements, problems, and sound solutions to successfully sustain and enhance the security of program execution.
- Perform and/or support the operations and maintenance of security hardware and systems employed onsite to meet government and AWS requirements.
- Develop and strengthen relationships with internal (operations staff, engineers, teammates, etc.) and external (vendors, contractors etc.) partners to heighten security awareness and engagement.
- Direct and manage onsite security forces to run daily security operations.
- Manage the classified material program to ensure procedures are developed and operated in accordance with internal and customer security policies and practices.
- Experience with workflow ticketing and extraction of performance metrics.
- Must be willing to share on-call rotations in support of alarms, security incidents, escalations and critical service outages.
- Provide after-hours on-call management support and participate in emergent, large scale event response when needed.
- Participate in re-occurring security audits and reviews.
- Executes established compliance processes with AWS policies, standards, guidelines and relevant legal and regulatory requirements.
- Manage the security P&L for assigned site(s), assist management with financial analysis and contribute to financial decisions for security requirements.
- Must be able to travel between local facilities.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
The incumbent ensures the data centre security mission succeeds by continuous coordinating with team stakeholders in Operations, HR, Logistics, Design and Engineering, and Construction, to ensure security services are synchronized with other business processes. You will promulgate clear guidance and direction to a team of contracted security officers, while ensuring they are resourced to support day-to-day activities in a high-tempo environment.
About the team
The team is comprised of security professionals with a cross section of national security, law enforcement, and private sector experience, providing a range of perspectives required for creative problem solving. We value diversity of thought, creativity, and a strong Bias for Action. We believe that there are no "perfect" security solutions and we develop and iterate using a continuous improvement process.
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Basic Qualifications
- Expertise in Physical Security Systems to include Facility Security Installations, Surveillance Systems, and Electronic Access Control Systems.
- Demonstrated track record of growth and increasing responsibility that require maturity, judgment, negotiation, analytics, and influence. skills.
- Demonstrated ability to effectively employ a third-party guard force in a dynamic operating environment.
Preferred Qualifications
- Proven ability to influence business partners and supporting teams
- Ability to manage 24x7 security operations to include short-notice response to emerging operational issues
- Ability to able to credibly coordinate between technical teams and business stakeholders
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Description
AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain - and we're looking for talented people who want to help.
You'll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You'll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our customers. And you'll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.
Amazon Web Services (AWS) Infrastructure Physical Security is seeking a highly talented and motivated Security Program Manager to join our team. AWS is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. The role is responsible for overseeing physical security design and the installation of security features and systems including Access Control, Intrusion Detection, Camera Surveillance, Passive and Active Barriers, and other security features and capabilities consistent with AWS security standards and public sector contract requirements. This role will perform security program management in support of new data centers, support facilities, data center expansions, and special security programs and projects.
You will be an individual contributor on a three-builder team and will work directly with the Cluster Security Managers (CSMs), the Data Center Engineering Operations Team, and other customers, both internal and external, to integrate business and operations requirements into long-term physical security design and implementation. You will work with limited guidance to support the design and deployment of physical security packages and security program enhancements for AWS data centers and supporting facilities. Additionally, you will work across multiple teams and serve as the subject matter expert to author security design, Concept of Operations (CONOPS), security installation and sustainment contracts, and other security documents for submittals. You will lead projects and develop short-term solutions in the physical security program. You may influence and manage vendor contracts to ensure industry leading systems are deployed and sustained.
The ideal candidate for the role has a deep understanding of Security Construction and Equipment Committee (SCEC) physical security requirements and leverages that expertise to make the right decisions for physical security projects and site sustainment. The candidate will handle a difficult security problems and compliance program elements clearing blockers and escalating appropriately when unable to clear the blocker. The candidate will be comfortable identifying risks and asking the right question to the appropriate team to identify tradeoffs and suggesting recommendations and solutions. Additionally, the candidate will work across multiple teams within an Amazon Security organization to influence both internal and external customers, system owners, and business leaders. The candidate will effectively communicate with stakeholder audiences in a single domain and actively participate in meetings to drive business and technical discussions and decisions. This candidate will support their Manager in AWS engagements with internal and external stakeholders to coordinate physical security approvals.
Key job responsibilities
- Participate in physical security design and system installation for new data centers, data center expansions and special projects.
- Provide physical security project lifecycle management including bid packages, specifications, drawings, code compliance, vendor management, budget, change orders, and close-out documentation.
- Manage vendor on-boarding, Request For Proposal / Request For Quote bidding, contracting, contract execution, QA/QC, and support processes.
- Effectively and accurately manage multi-million dollar security project budgets. Own and track the finance and budgeting process for security programs and projects.
- Lead physical security team acceptance, sign-off, and operational readiness validation for high security facilities in conjunction with other AWS teams.
- Reporting performance metrics such as physical security system installation vendor service delivery performance, actual spend vs. budget variance, cost reduction goal attainment, post installation defect rates, physical security program analysis, etc.
- Collaborate across teams to drive global, regional, and local security initiatives.
- Support Cluster Security Program Manager Team Lead by providing physical security analysis and recommend program enhancements to maximize security of assigned locations.
- The role will involve some travel for project management and and hand-off of completed projects to local security operations teams.
- Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
This position is focused on physical security expertise only. Expertise in cyber, personnel, information technology, or other non-physical security disciplines is not translatable.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Basic Qualifications
- 3+ years of experience working with physical security design and/or implementation of electronic security systems such as Access Control System, Intrusion Detection System, and CCTV Surveillance systems. Familiarity with security in depth strategies.
- 2+ years of experience in program or project management, working with both technical and non-technical teams focusing on physical security standards and designs.
- 2+ years working as a Security Construction and Equipment Committee Consultant incorporating AUS Protective Security Policy Framework 15 (PhySec for Entity Resources) and AUS Protective Security Policy Framework 16 (Entity Facilities) and/or other AUS government regulatory standards and requirements.
Preferred Qualifications
- Familiar project management and design and construction software.
- Ability to communicate effectively with both technical and non-technical individuals regarding physical security standards and system designs.
- Proficient understanding of construction plans, elevations, and other design and construction artifacts for architectural, mechanical, electrical, civil, and telecommunications plans.
- Training and Experience with Lenel Access Control Systems and Digital Monitoring Products.
- Training in Crime Prevention Through Environmental Design (CPTED).
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.
The **ServiceNow Security Organisation** is dedicated to delivering **world-class, innovative security solutions** that minimize risk and protect both our company and our customers. By enabling the secure migration of sensitive data and workloads to the cloud, we help accelerate ServiceNow's position as the **most trusted SaaS provider** in the industry.
**About the Team - Global Security Support Center (GSSC)**
The **Global Security Support Center (GSSC)** at ServiceNow is a diverse and highly skilled team of security professionals who play a pivotal role in strengthening both our internal and external security posture. The team collaborates closely with various functions across the company and serves as a key interface with our customers on security-related matters.
Through expertise, communication, and a commitment to excellence, the GSSC team reinforces ServiceNow's reputation as a **security-first organization** , consistently demonstrating our commitment to protecting our platform, our data, and our customers.
**Responsibilities**
+ Represent security organization in customer-facing Security Incidents, cases, Security findings, tasks and questions and calls related to Security & Privacy.
+ Own, triage, investigate and respond to security matters of ServiceNow platform, ensuring timely communication, resolution and enhance customer experience and processes.
+ Act as the primary point of contact for all security-related matters in ServiceNow, supporting both internal and external stakeholders.
+ Facilitate the efficient workflow/triage of security-related incidents/cases by collaborating with customers and other internal ServiceNow teams.
+ Build and maintain a high level of customer trust and confidence through exceptional service and communication.
+ Customer Outreach Communications on Security & escalation handling.
+ Understand and deliver excellent capability maturity models to fine tune Security processes.
+ Create and enhance documentation and processes to strengthen security maturity and operational excellence.
+ Develop and deliver training/enablement programs on Security, for internal and external customers on security awareness and best practices.
+ Develop AI Solutions for automating repetitive activities & design new solutions leveraging AI.
+ Work with Legal on security/privacy-related matters & a global team spread across different time zones, so flexibility of times is **required** .
+ Provide support and be **available** as a responsible resource for the On-Call rotation (weekends, public holidays and after hours) as rostered.
**To be successful in this role you have**
+ Experience: A minimum of 5 years of professional experience in information security or application security roles.
+ Certifications: Relevant certifications are highly preferred, including but not limited to:
+ **Required** : ServiceNow Certified System Administrator (CSA)
+ **Preferred** (Two or more): Azure AI Fundamentals, AWS Certified AI Practitioner, Offensive Security Web Assessor (OSWA), GIAC Web Application Penetration Tester (GWAPT), GIAC Security Essentials Certification (GSEC), GIAC Certified Incident Handler (GCIH), CISSP, CISM.
+ Skills & Competencies
+ Technical Skills:
+ Solid understanding of cloud computing models and major hyperscaler cloud models.
+ Hands-on experience with using and understanding security tools and technologies, including: SIEM solutions, logging tools, load balancers, firewalls, WAFs, IDS/IPS, vulnerability management platforms, encryption techniques etc.
+ Basic to Intermediate-level programming knowledge in **Java/JavaScript** with the ability to read, interpret & understand to explain code effectively.
+ Intermediate to Advanced proficiency in using web proxy tools for security testing and assessments.
+ Application Security: In-depth understanding of web application vulnerabilities (e.g., OWASP Top Ten) and corresponding mitigation strategies.
+ Risk Management: Ability to clearly explain security risks to non-technical stakeholders using straightforward, non-technical language.
+ Compliance & Regulatory Knowledge: Good knowledge of key compliance and regulatory frameworks including: NIST, CIS, GDPR, HIPAA, PCI DSS, ISO standards etc.
+ Artificial Intelligence: Experience working with AI technologies and designing AI-based solutions.
+ Analytical Thinking: Strong analytical and problem-solving capabilities, with the ability to evaluate and address complex security challenges.
+ Communication: Excellent verbal and written communication skills, with the ability to convey technical information to non-technical audience.
+ Team Collaboration: Demonstrated ability to thrive in a team-oriented, collaborative environment working in a follow the sun model.
+ Security Concepts: Good understanding of Security concepts and articulating Security and risk in simple terms without using jargons and make sense to customers.
+ Education: Bachelor's degree in computer science or information security or relevant information security experience.
+ Preferred Additional Experience: Hands-on experience with web-based vulnerability exploitation and experience is a strong plus to succeed in this role.
_This Senior Information Security Analyst role is an exciting opportunity to join a dynamic and forward-thinking company. If you have the skills, experience, and passion for ensuring the security and integrity of information systems, we invite you to apply and become part of the ServiceNow team._
**Work Personas**
We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here ( . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.
**Equal Opportunity Employer**
ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements.
**Accommodations**
We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact for assistance.
**Export Control Regulations**
For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities.
From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.
The Senior Information Security Engineer, as a key member of the Platform Support Administration team, is accountable for the administration, optimization, and continuous improvement of the ServiceNow platform, with a particular emphasis on SecOps applications. This role ensures the platform's stability and performance while aligning with organizational objectives. The individual will collaborate closely with end-users and stakeholders to provide timely and effective support.
**Key Responsibilities:**
+ Lead the day-to-day administration of the ServiceNow platform, including user and group management, access controls, data imports, and platform upgrades.
+ Develop tools in Python, bash, and/or JavaScript to replace manual work and improve customer maintenance experience.
+ Prepare to onboard new ServiceNow products. Provide training and knowledge transfer to the end users.
+ Use broad knowledge and experience of systems administration and networking principles to proactively prevent and address incidents while constantly improving documentation.
+ Participate in escalations and Root Cause Analysis of issues.
+ Configure and maintain core ServiceNow applications such as:
+ ITSM (Incident, Problem, Change, Request)
+ SecOps Applications (Vulnerability Response, Configuration Compliance Security Incident Response)
+ Serve as a lead technical expert for integrations between ServiceNow and third-party systems (e.g., via REST/SOAP APIs, MID servers).
+ Monitor platform health, performance, and security, implementing tuning and hardening measures as needed.
+ Evaluate and apply ServiceNow patches, upgrades, and hotfixes in accordance with release cycles.
+ Provide mentorship and oversight to internal and external teams.
+ Partner with stakeholders across internal Security, Digital transformation and other business units to gather requirements and implement scalable solutions.
**_Due to the nature of the role and regulatory requirements for this role, only candidates who are Australian citizens and on Australia soil can be considered._**
+ Bachelor's degree in computer science, Information Systems, or related field, or equivalent experience.
+ 5+ years of hands-on system administration experience in a complex enterprise environment.
+ Proficiency in scripting languages used in ServiceNow (e.g., JavaScript, GlideScript).
+ Experience with ServiceNow update sets, ACLs, client/server scripts, UI policies, and customizations.
+ Strong understanding of ITIL/ITSM processes.
+ Demonstrated experience managing ServiceNow upgrades and platform migrations.
**Preferred Skills:**
+ ServiceNow Certified System Administrator (CSA) certification.
+ SecOps Applications Specialist Certificate
+ AIOps experience
+ Familiarity with Agile or Scrum delivery methodologies.
+ Experience with automated testing tools in the ServiceNow ecosystem (e.g., ATF).
**Work Personas**
We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here ( . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.
**Equal Opportunity Employer**
ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements.
**Accommodations**
We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact for assistance.
**Export Control Regulations**
For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities.
From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.

Title:
Senior Information Security Officer - Defence Sector
Your KBR future - delivering solutions and changing the world
About KBR:
We are a company of innovators, thinkers, creators, explorers, volunteers and dreamers who all share one goal - to improve the world.
KBR delivers science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 34,000 people performing diverse, complex, and mission-critical roles in 33 countries.
For 65 years, KBR and its heritage companies are proud to have delivered some of Australia's largest and most complex projects.
With around 2,000 employees in 6 primary offices throughout Australia, we are committed to social and environmental sustainability and delivering projects with a digital mindset driving innovation within our business and for our customers.
We help ensure mission success on land, in the air, at sea, in space and cyberspace for our Defence customers. From individual technologies and services to comprehensive project delivery and mission execution, no other company can match the breadth and depth of KBR.
KBR comprises a talented team who provide a broad spectrum of capabilities across Australia and the Asia Pacific. Our proven project teams readily address complex and multi-disciplinary activities, providing low-risk and cost-effective solutions to the Defence force.
The Opportunity:
KBR is inviting expressions of interest from highly skilled and experienced Senior Information Security Officers to support critical Defence programs based in Brisbane or Canberra.
As a Senior Information Security Officer, you will play a vital role in ensuring the protection of Defence systems, information, and assets, supporting the ongoing delivery of secure, reliable, and compliant Defence capabilities. This is an exciting opportunity to contribute to national security outcomes and work with a diverse team of experts on high-impact Defence projects.
The key responsibilities of the role will include, but is not limited to:
+ Lead the development, implementation, and maintenance of Information Security Management Systems (ISMS) to ensure Defence compliance with ISO 27001, ACSC Essential 8, and Defence Security requirements.
+ Conduct risk assessments and vulnerability management, ensuring appropriate information security controls are in place to protect Defence systems and data across their lifecycle.
+ Develop and enforce information security policies, procedures, and best practices, ensuring Defence IT infrastructure and systems are protected against cyber threats and vulnerabilities.
+ Support the implementation and maintenance of cybersecurity frameworks and ensure compliance with national and international information security standards.
+ Provide expert advice to Defence stakeholders and project teams on information security best practices, emerging threats, and mitigation strategies.
+ Collaborate with cross-functional teams, including Defence security, engineering, and project management, to ensure robust security governance for all Defence programs.
+ Conduct security audits, assessments, and incident response activities to ensure the availability, integrity, and confidentiality of Defence information assets.
+ Maintain awareness of current cybersecurity trends and emerging threats, and continuously update security practices to protect Defence information systems.
As the ideal candidate you will bring:
+ Tertiary qualifications in Information Security, Computer Science, Information Technology, or a related discipline.
+ Minimum 5 years of experience in an Information Security role, ideally within Defence, Government, or similarly regulated industries.
+ Expertise in implementing and managing Information Security Management Systems (ISMS) and conducting security risk assessments.
+ Strong knowledge of Defence security policies, standards, and frameworks, including ISO 27001, NIST, ACSC Essential 8, and DEF(AUST) 3000.
+ Experience with security tools, such as SIEM, firewalls, endpoint protection, and vulnerability scanning tools.
+ Proven ability to communicate effectively with senior stakeholders, providing expert guidance on complex security issues.
+ Australian Citizenship is essential due to security clearance requirements.
+ NV1 security clearance (or the ability to obtain) is highly desirable.
Benefits of KBR
+ A workplace culture certified as a Great Place To Work (Aus, India, UK & US)
+ Flexible working conditions
+ Competitive salary (including annual reviews)
+ Paid Parental leave
+ Paid Reservist leave
+ Income protection
+ Corporate rewards
+ Salary packaging/Novated leasing
+ Discounted employee stock purchase plans
+ Flu shots, skin checks and private health insurance discounts
+ Career development: Online learning, mentorship and career pathways
If you're ready to shape tomorrow, let's get started. Apply Now!
KBR acknowledges the Traditional Custodians of Country throughout Australia and their continuing connections to land, sea, community and culture. We pay our respects to Elders past and present.
As a Major Service Provider of the Australian Defence Force, an AGSVA security clearance will be required and compliance to International Traffic in Arms Regulations (ITAR). As such, our hiring decisions are based on the key requirements of each role and candidates are selected based on their unique strengths and experiences.
#LI-JAW1

Title:
Senior Information Security Officer - Defence Sector
Your KBR future - delivering solutions and changing the world
About KBR:
We are a company of innovators, thinkers, creators, explorers, volunteers and dreamers who all share one goal - to improve the world.
KBR delivers science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 34,000 people performing diverse, complex, and mission-critical roles in 33 countries.
For 65 years, KBR and its heritage companies are proud to have delivered some of Australia's largest and most complex projects.
With around 2,000 employees in 6 primary offices throughout Australia, we are committed to social and environmental sustainability and delivering projects with a digital mindset driving innovation within our business and for our customers.
We help ensure mission success on land, in the air, at sea, in space and cyberspace for our Defence customers. From individual technologies and services to comprehensive project delivery and mission execution, no other company can match the breadth and depth of KBR.
KBR comprises a talented team who provide a broad spectrum of capabilities across Australia and the Asia Pacific. Our proven project teams readily address complex and multi-disciplinary activities, providing low-risk and cost-effective solutions to the Defence force.
The Opportunity:
KBR is inviting expressions of interest from highly skilled and experienced Senior Information Security Officers to support critical Defence programs based in Brisbane or Canberra.
As a Senior Information Security Officer, you will play a vital role in ensuring the protection of Defence systems, information, and assets, supporting the ongoing delivery of secure, reliable, and compliant Defence capabilities. This is an exciting opportunity to contribute to national security outcomes and work with a diverse team of experts on high-impact Defence projects.
The key responsibilities of the role will include, but is not limited to:
+ Lead the development, implementation, and maintenance of Information Security Management Systems (ISMS) to ensure Defence compliance with ISO 27001, ACSC Essential 8, and Defence Security requirements.
+ Conduct risk assessments and vulnerability management, ensuring appropriate information security controls are in place to protect Defence systems and data across their lifecycle.
+ Develop and enforce information security policies, procedures, and best practices, ensuring Defence IT infrastructure and systems are protected against cyber threats and vulnerabilities.
+ Support the implementation and maintenance of cybersecurity frameworks and ensure compliance with national and international information security standards.
+ Provide expert advice to Defence stakeholders and project teams on information security best practices, emerging threats, and mitigation strategies.
+ Collaborate with cross-functional teams, including Defence security, engineering, and project management, to ensure robust security governance for all Defence programs.
+ Conduct security audits, assessments, and incident response activities to ensure the availability, integrity, and confidentiality of Defence information assets.
+ Maintain awareness of current cybersecurity trends and emerging threats, and continuously update security practices to protect Defence information systems.
As the ideal candidate you will bring:
+ Tertiary qualifications in Information Security, Computer Science, Information Technology, or a related discipline.
+ Minimum 5 years of experience in an Information Security role, ideally within Defence, Government, or similarly regulated industries.
+ Expertise in implementing and managing Information Security Management Systems (ISMS) and conducting security risk assessments.
+ Strong knowledge of Defence security policies, standards, and frameworks, including ISO 27001, NIST, ACSC Essential 8, and DEF(AUST) 3000.
+ Experience with security tools, such as SIEM, firewalls, endpoint protection, and vulnerability scanning tools.
+ Proven ability to communicate effectively with senior stakeholders, providing expert guidance on complex security issues.
+ Australian Citizenship is essential due to security clearance requirements.
+ NV1 security clearance (or the ability to obtain) is highly desirable.
Benefits of KBR
+ A workplace culture certified as a Great Place To Work (Aus, India, UK & US)
+ Flexible working conditions
+ Competitive salary (including annual reviews)
+ Paid Parental leave
+ Paid Reservist leave
+ Income protection
+ Corporate rewards
+ Salary packaging/Novated leasing
+ Discounted employee stock purchase plans
+ Flu shots, skin checks and private health insurance discounts
+ Career development: Online learning, mentorship and career pathways
If you're ready to shape tomorrow, let's get started. Apply Now!
KBR acknowledges the Traditional Custodians of Country throughout Australia and their continuing connections to land, sea, community and culture. We pay our respects to Elders past and present.
As a Major Service Provider of the Australian Defence Force, an AGSVA security clearance will be required and compliance to International Traffic in Arms Regulations (ITAR). As such, our hiring decisions are based on the key requirements of each role and candidates are selected based on their unique strengths and experiences.
#LI-JAW1

Description
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure.
As a Senior Security Technical Program Manager (Sr. Security TPM) within our team, you'll influence and own long-term security outcomes for AWS. You'll be working with external customers and regulated industries to understand their needs. You'll be able to technically review and/or design security systems and solutions that enable them to operate more effectively, securely and safely. You will work with your team, partners, and customers to innovate and deliver on the vision and purpose of your programs. While working directly with AWS service teams, infrastructure, and administrative teams, you'll identify opportunities to improve AWS' security posture. This will include specifying tools, driving process improvements, and working with service owners and cutting-edge technology to develop innovative solutions to complex technical challenges.
You will be responsible to identify, plan and deliver program security outcomes by independently engaging a broad set of internal and external stakeholders
Key job responsibilities
- Coordinate security-related engagements with both internal and external customers, ensuring effective communication and alignment of security objectives.
- Identify security packages of work and meticulously plan for their delivery within agreed timeframes, leveraging strategic foresight to anticipate and address potential challenges.
- Implement ISM, PSPF, DSPF, ASIO T4, NIST and/or other security compliance frameworks into design and build baselines to achieve the agreed security posture.
- Be proactive in removing roadblocks, fostering innovation, and managing multiple competing priorities in a fast-paced environment, driving continuous improvement and efficiency.
- Create, optimize, and support cross-functional working groups and projects, fostering collaboration and synergy across departments to enhance security capabilities.
- Utilize domain expertise to develop thought leadership material on cloud and emerging technologies, contributing to industry discourse and organizational knowledge sharing.
- Manage tight deadlines with precision and drive results, exhibiting exceptional attention to detail and ensuring the successful completion of projects and initiatives.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
You'll immerse yourself in teams and leaders from different program stakeholders and businesses at AWS. You'll play a vital role in ensuring security outcomes crucial to our mission. You'll witness various facets of AWS's operations firsthand. Your contributions will directly shape our program's well-being and establish standards for technical security achievements. You'll own the responsibility of shaping and implementing processes to meet our program's goals.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of national security and private sector experience, providing a range of perspectives required for creative problem solving. We value diversity of thought, creativity, and a strong Bias for Action and Earn Trust. We believe that there are no "perfect" security solutions and we develop and iterate using a continuous improvement process.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Basic Qualifications
- Significant years experience working in areas related to security, such as delivering cyber-security programs, design and delivery of Security Operations Centres (SOC), auditing, security architecture, regulatory affairs or public sector agencies involved in cybersecurity management.
- A deep understanding of at least three of the following areas - information security, cryptography, communication security, service-orientated architectures, cloud-based systems, security risk assessments, or threat modelling.
- Degree or equivalent experience in (Computer Science, Engineering, Cyber Security, IT Security Management, Security Risk Management) a related security field.
- Experience in implementing security industry frameworks, policies and standards (e.g. PSPF, ISM, DSPF. ASD Essential Eight).
- Strong (written and verbal) communication skills. Ability to produce detailed and complex written narratives.
Preferred Qualifications
- Experience in implementing and operationalising security to meet business outcomes.
- Experienced in the delivery and operationalisation of cloud-based security programs.
- Proven ability to not only influence but lead business partners and supporting teams.
- Ability to coordinate between technical teams and business stakeholders.
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.