Information Security Analyst

Acknowledgement of Country:

Hostplus acknowledges the Traditional Owners of the land, sea and waters, of the area that we live and work on across Australia. We acknowledge their continuing connection to their culture and pay our respects to their Elders past, present and emerging.

About us:

At Hostplus, we passionately provide our over one million members with the best possible service; constantly looking for new ways to deliver better value while helping members get the most out of their super. We are inspired to help our members achieve greater security for their future and ensure they retire with dignity.

Your role at Hostplus will give your career meaning, whether you're in marketing, financial advice, Operations or any of our other divisions - you'll be contributing to ensuring our members retire with the best possible outcomes, and what better feeling is there than knowing your role helps someone to retire with dignity and security?

About the role:

In this newly created position as our Information Security Analyst, you will play an important role in supporting our Information Security team - ensuring ongoing security risk, governance, compliance and supporting the implementation of information security initiatives.

Some of your key responsibilities will be to:

• Conduct supplier security assessments on the design and operational effectiveness of the supplier’s security controls.
• Collaborate with the risk team on developing a supplier security control framework that is aligned with Hostplus’s Enterprise Risk methodology.
• Report on security risk assessments to the business.
• Assist in security incident response activities.
• Conduct security awareness training.

About you:

We're looking for someone from an information/cyber security background who is looking for a position they can own. You'll have experience & knowledge of security, risk, compliance and control practices expected of third party vendors we work with.

Some other key skills & experience you'll need to succeed are:

• Certification in auditing, controls and risk management e.g. Certified Information Security Auditor (CISA), ISO 27001 Lead Auditor or CISSP is highly desirable.
• Security framework experience - COBIT, NIST, CIS, Essential 8.
• Knowledge across a wide variety of technologies such as networks, applications, platforms, cloud and digital.
• Strong project management and stakeholder management to coordinate with various business and internal stakeholders.

Why work for us:

Our employees are passionate about what we do and are proud to be part of an organisation which helps everyday Australians achieve a brighter future. We value diversity of thought and have an open & flexible workplace. Some industry leading benefits we offer include:

• 15% superannuation.
• Access to a Financial Planner.
• Salary packaging.
• Excellent EBA conditions eg: extended parental leave, long service leave at 5 years, additional leave over Christmas shutdown.

What next:

If you are interested in this opportunity, please follow the prompts to formally apply.

We are passionate about creating an inclusive workplace that promotes and values diversity. We believe diversity of thought, background and experience strengthens relationships and delivers meaningful benefits to our people, our members, and the communities we operate in.

We welcome and encourage applications from people of all backgrounds, ages, religions, including Aboriginal and Torres Strait Islander Peoples, LGBTIQ+ people, those with a disability, women, and people with a cultural or linguistically diverse background.

We Care: We care about our work, our clients and colleagues.

Better Together: We’ve got each other’s backs, and we never walk alone.

Go For it: We are optimistic, and we focus on solutions, not problems.

Keep it real: We are honest, genuine, straightforward and transparent.

Be Proud: We are proud of who we are and the work we do every single day.