Director of Cybersecurity

Director of Cybersecurity

The opportunity

As our Director of Cybersecurity, you’ll focus on leading our cybersecurity competency. The ideal candidate will have a proven track record in leading security audits, implementing large-scale cybersecurity programs, and providing strategic advice to C-Suite executives. This role requires a deep understanding and experience using of Australian government security frameworks, including the Protective Security Policy Framework (PSPF), Defence Security Principles Framework (DSPF), and the Information Security Manual (ISM). The Director will be responsible for developing cybersecurity strategies, frameworks, and operating models while growing and mentoring teams within the security competency.

This is a role based in Canberra – Ngambri. Our roles can potentially be adjusted to work flexibly with reduced hours. Please speak with us about potential options.

Your key responsibilities

• Lead and manage comprehensive security audits to assess and enhance organizational security posture.
• Oversee the implementation of large-scale cybersecurity programs, ensuring alignment with business objectives and compliance with relevant frameworks.
• Provide strategic advice and guidance to C-Suite executives on cybersecurity risks, trends, and best practices.
• Develop and implement robust cybersecurity strategies that align with organisational goals and regulatory requirements.
• Design and establish cybersecurity frameworks and operating models tailored to the organisation’s needs.
• Identify business opportunities within the cybersecurity domain and develop strategies to grow a book of business.
• Foster a culture of continuous improvement and innovation within the cybersecurity team.
• Build, mentor, and grow high-performing teams across the cybersecurity competency.
• Collaborate with cross-functional teams to ensure cybersecurity considerations are integrated into all business processes.
• Stay abreast of emerging cybersecurity threats, technologies, and regulatory changes to inform strategic decision-making.

What we look for   

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field; Master’s degree preferred.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role.
• Proven experience in leading security audits and large-scale cybersecurity implementation programs.
• Strong understanding of Australian government security frameworks, including PSPF, DSPF, and ISM.
• Demonstrated ability to develop and implement effective cybersecurity strategies and frameworks.
• Experience in identifying business opportunities and growing a book of business within the cybersecurity sector.
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels.
• Strong analytical and problem-solving skills, with a strategic mindset.
• The following certifications are highly desirable:

• CISSP - Certified Information Systems Security Professional
• CISM - Certified Information Security Manager
• CRISC - Certified in Risk and Information Systems Control
• CIPM - Certified Information Privacy Manager
• ISO 27001 - Information Security Lead Auditor.

Ideally, you’ll also have the skills and attributes below but don’t worry if you don’t tick all the boxes. We’re interested in your aptitude, attitude and willingness to learn.  

• Ability to navigate complex regulatory environments and ensure compliance with applicable laws and standards.
• Experience in crisis management and incident response planning.
• Proven track record of managing budgets and resources effectively.
• Strong leadership skills with the ability to inspire and motivate teams.
• Commitment to professional development and staying current with industry trends and advancements.

What we offer you

At EY, we’ll fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more.

• Career development: At EY, your career is yours to shape! We’ll develop you with future-focused skills and equip you with world-class experiences ey.com/au/careerdevelopment
• Flexible work arrangements: Our flexible work policies empower you to balance your professional and personal life, fostering a culture of trust and autonomy.

• A comprehensive benefits package: From a yearly wellness incentive, to access to additional 8 weeks of flex leave per year, and family-friendly policies, including 26 weeks of gender-neutral paid parental leave, we cater to your diverse needs to help you thrive both personally and professionally www.ey.com/au/benefits    

Acknowledgement of Country

EY acknowledges the Traditional Owners and Custodians of the lands on which EY offices are located around Australia. We pay our respects to their cultures, and to their Elders — past, present, and emerging. Find out more about our vision for reconciliation at ey.com/en_au/careers/indigenous

Diversity, equity, and inclusiveness (DE&I) are core to who we are, how we work and how we live our values. We encourage applications from people of all ages, nationalities, abilities, cultures, sexual orientations, and gender identities and are committed to providing an equitable and barrier free recruitment experience for all. We encourage you to share any support and adjustments you need to be your best and participate equitably in our recruitment process. We understand sharing your needs with us can be daunting, so if you have questions before or during your application, we welcome you to get in touch at contactrecruitment@au.ey.com or +61 3 8650 7788 (option 2). Anything you tell us will be kept completely confidential.

Are you ready to shape your future with confidence? Apply today.

EY | Building a better working world 

Our preferred applicant will be required to undertake employment screening by EY or our external third-party provider. 

© 2025 Ernst & Young Australia. A member firm of Ernst & Young Global Limited. All Rights Reserved. Liability limited by a scheme approved under Professional Standards Legislation.