We are one of Australia's leading national providers of outsourced sales and customer service support.

Our Success comes down to a positive work culture where the hard work and dedication of our employees are rewarded with a range of benefits including:

• An active social engagement program, monthly VIP nights and incentives
• Health & wellbeing initiatives including group fitness classes, cash rewards and others
• Multiple reward & recognition programs
• Career development and progression opportunities

We are looking for a qualified Information Security & Compliance Lead with experience in the management of IT Security Controls. This person will be program managing all IT Compliance initiatives and ensure compliance for Technology Programs and Projects.

The position is responsible for overseeing the IT security, risk, and compliance controls for TSA including security, privacy and other financially related Key controls. This person will be instrumental in collaborating across IT, business, as well as with Internal and External Audit teams throughout the compliance process.

This person will be responsible for managing the process of gathering, analysing & assessing the current & future information security and privacy threats to the organisation as well as maintain & monitor the information security best practices as they develop.

Responsibilities: 

• Support and manage IT security controls, Collaborate on Risk Control Matrix, and all Compliance related activities to ensure they are well established, documented, and followed.
• Assist in the maintenance and preparation of clear, detailed and accurate compliance documentation, including process narratives, flow charts, control descriptions, risk control matrices, test programs, test results, and management responses and remediation. Being responsive to questions and assistance requests from control owners and business owners
• Drive consensus on measurable gains in IT compliance and information security practice maturity and measure progress towards them

• Maintain the deficiency dashboard and monitor remediation status. Advise leadership on how to remediate deficiencies. Document and report status of agreed upon remediation plans, owners and commitment dates

• Collaborate with IT control owners to ensure timely completion of period controls and compliance
• Lead walk throughs between process owners and audit teams
• Work with control owners to help develop testing procedures for testing of security controls
• Assists in annual planning and maintenance of risk control matrix for relevant IT systems and controls
• Review and help refinement of controls and compliance and identify opportunities to ensure proactive management and mitigation of Risks.
• Interface closely with cross-functional teams including IT Operations, IT Engineering automation, Business Accounting, Finance, and Internal/External Audit
• Project Manage internal and external auditor requirements and compliance adherence
• Collaborate with teams to ensure new software programs meets compliance requirements before they are made operational
• Support and manage detailed testing of controls to ensure risks are appropriately identified, associated audit procedures are applied and related controls are designed and operating to mitigate the identified risks
• Assist Governance, Risk and Compliance teams in documenting and reporting control deficiencies upon discussion with business owners, Internal Auditors and collaborate with business owners regarding recommendations to address the root cause of issues and report support implementation of management remedial actions
• Partner with external advisors regarding ISO certification
• Lead Privacy Impact Assessment processes
• Contributes to and/or leads drafting of statements of work and/or RFPs to secure 3rd party services required to achieve business objectives. Leads the effort to select 3rd party services to execute projects and manages on-boarding and collaborative working relationships with selected Vendors. 

Must have 

• Good communicator and able to articulate requirements and expectations

• Collaborative in nature
• Excellent oral and written communication skills.
• Performs related duties as assigned or requested.
• Ability to foster working relationships with the IT team, Management and Clients.

• Ability to take lead and guide the stakeholders
• Ability to operate when requirements are not clear and manage dynamic changes to environment etc. Dynamic approach to problem solving etc…
• Technical awareness:
  • Familiarity with the ISO27000 family of certifications
  • Knowledge of australian privacy principles
  • PCI DSS requirements and systems

COVID – Safety

At TSA, the health, safety, and well-being of our team is our number one priority! In response to the COVID-19 pandemic, we have introduced a number of robust practices to keep our team safe, such as; physical distancing measures, control measures for our visitors, temperature testing, isolation requirements where applicable and so much more. We take our responsibility to protect the health and well-being of our team and our community very seriously

Check out our social media pages:

Website: https://tsagroup.com.au/

Instagram: tsa_group_

LinkedIn: https://www.linkedin.com/company/tsa-group-australia/