Cyber Security Advisory Lead
- University of New South Wales
- Australia, NSW
- Jun 16, 2026
Job Description:
- Employment Type: continuing role within our Cyber directorate in UNSW IT
- Attractive salary package available
- Location: Kensington campus in NSW (Hybrid Flexible Working) 2-3 days in the office
About UNSW:
UNSW isn’t like other places you’ve worked. We’re a large organisation with a diverse and talented community; a community doing extraordinary things. Together, we are driven to be thoughtful, practical, and purposeful in all we do. Taking this combined approach is what makes our work matter. It’s the reason we’re one of the top 50 universities in the world and a member of Australia’s prestigious Group of Eight. If you want a career where you can thrive, be challenged and do meaningful work, you’re in the right place.
Reporting to the Deputy CISO, the role exercises university-wide strategic authority for the operational delivery and continual evolution of the Information Security Management System (ISMS) through the assessment of information security risk associated with ICT services and IT initiatives, and the provision of cyber security subject matter expertise, risk assessment and advisory services to executive leadership and University stakeholders. The role is accountable for shaping cyber security strategy, governance, and risk posture to enable institutional objectives, ensuring alignment with regulatory, legislative, and sector-wide obligations.
Specific accountabilities for this role include:
- Provide strategic leadership and direction to the Cyber Security Advisory team in the delivery of risk advisory and risk assessment services to University stakeholders.
- Influence and advise executive leadership, faculties, and divisions in the practical application of security and risk management concepts, principles and strategies, and relevant industry standards. Driving consistent adoption across the institution.
- Own the institutional cyber risk framework and oversee the identification, assessment, and aggregation of security risks., Recommend and document risk treatment actions, in respect of IT services, solution designs and technology architectures.
- Provide expert advice on cyber security compliance by developing, documenting, and communicating adherence to architecture, blueprints, components, standards, and strategies.
- Lead the development, execution, and continuous refinement of the Cyber Security Strategy, policies and standards in conjunction with the Cyber Security Leadership team.
- Oversee institutional threat and risk awareness capability, ensuring the University maintains proactive and adaptive responses to emerging cyber security threats.
- Build, key effective working relationships with internal and external stakeholders to develop innovative solutions that meet business needs.
- Promote a culture of continuous improvement, championing professional standards, innovation and methods.
- Any other activities as directed by the Deputy CISO.
- Align with and actively demonstrate the Code of Conduct and Values
- Ensure hazards and risks psychosocial and physical are identified and controlled for tasks, projects, and activities that pose a health and safety risk within your area of responsibility.
Who you are:
- Extensive experience in the delivery of cyber security risk assessment and advisory services within major organisations, including demonstrated impact at an enterprise or sector-wide level.
- Excellent understanding of industry-wide security standards and compliance frameworks such as ISO/IEC 27001, NIST, PCI DSS, HIPAA, COBIT 5, GDPR, Mitre ATT&CK etc.
- Excellent understanding of contemporary security technologies, products and services, including native cloud security controls in AWS and Azure, and their strategic application to enterprise architecture.
- Strong leadership and people management skills, with experience in building high performing teams and in the development of staff.
- Strong interpersonal, communication and negotiation skills including ability to develop effective relationships and influence key stakeholders at all levels in the organisation.
- Proven ability to exercise independent judgement and problem solving with the ability to resolve and address issues as they arise.
- Relevant industry certification(s) such as CISSP, CISM, CRISC, CISA, ISO/IEC 27001 Lead Implementer/Auditor and/or relevant industry experience (highly desirable)
- Ability and capacity to direct and monitor the implementation and effectiveness of the safety management system.
- An understanding of and commitment to UNSW’s aims, objectives and values in action, together with relevant policies and guidelines.
Benefits and Culture
- Flexible Working Options (work from home, flexible hours etc)
- Career development opportunities
- 17% Superannuation contributions and additional leave loading payments
- Additional 3 days of leave over Christmas period
- Discounts and entitlements (retail, education, fitness)
For further details on the benefits, please visit https://www.jobs.unsw.edu.au/lifestyle-benefits
How to Apply: please apply through the portal, we would like you to submit a full application including resume and addressing the who you are section.
Applications close: Tuesday June 30th at 11.30pm
Pre-Employment Checks
Aligned with UNSW’s focus on cultivating a workplace defined by safety, ethical conduct, and strong integrity preferred candidates will be required to participate in a combination of pre-employment checks relevant to the role they have applied for.
These pre-employment checks may include a combination of some of the following checks:-
- National and International Criminal history checks
- Entitlement to work and ID checks
- Working With Children Checks
- Completion of a Gender-Based Violence Prevention Declaration
- Verification of relevant qualifications
- Verification of relevant professional membership
- Employment history and reference checks
- Financial responsibility assessments/checks.
- Medical Checks and Assessments
Compliance with the necessary combination of these checks is a condition of employment at UNSW.
Get in Touch:
Jen MacLachlan
Talent Acquisition Partner – UNSW IT
Please apply through the application portal and not via the contact above.
UNSW is committed to equity diversity and inclusion. Applications from women, people of culturally and linguistically diverse backgrounds, those living with disabilities, members of the LGBTIQ+ community; and people of Aboriginal and Torres Strait Islander descent, are encouraged. UNSW provides workplace adjustments for people with disability, and access to flexible work options for eligible staff. The University reserves the right not to proceed with any appointment.
At UNSW, we take pride in the broad range and high quality of our teaching programs. Our teaching gains strength and currency from our research activities, strong industry links and our international nature; UNSW has strong regional...
Job ID:
Location:
Discipline:
Job Views:
Job Description:
- Employment Type: continuing role within our Cyber directorate in UNSW IT
- Attractive salary package available
- Location: Kensington campus in NSW (Hybrid Flexible Working) 2-3 days in the office
About UNSW:
UNSW isn’t like other places you’ve worked. We’re a large organisation with a diverse and talented community; a community doing extraordinary things. Together, we are driven to be thoughtful, practical, and purposeful in all we do. Taking this combined approach is what makes our work matter. It’s the reason we’re one of the top 50 universities in the world and a member of Australia’s prestigious Group of Eight. If you want a career where you can thrive, be challenged and do meaningful work, you’re in the right place.
Reporting to the Deputy CISO, the role exercises university-wide strategic authority for the operational delivery and continual evolution of the Information Security Management System (ISMS) through the assessment of information security risk associated with ICT services and IT initiatives, and the provision of cyber security subject matter expertise, risk assessment and advisory services to executive leadership and University stakeholders. The role is accountable for shaping cyber security strategy, governance, and risk posture to enable institutional objectives, ensuring alignment with regulatory, legislative, and sector-wide obligations.
Specific accountabilities for this role include:
- Provide strategic leadership and direction to the Cyber Security Advisory team in the delivery of risk advisory and risk assessment services to University stakeholders.
- Influence and advise executive leadership, faculties, and divisions in the practical application of security and risk management concepts, principles and strategies, and relevant industry standards. Driving consistent adoption across the institution.
- Own the institutional cyber risk framework and oversee the identification, assessment, and aggregation of security risks., Recommend and document risk treatment actions, in respect of IT services, solution designs and technology architectures.
- Provide expert advice on cyber security compliance by developing, documenting, and communicating adherence to architecture, blueprints, components, standards, and strategies.
- Lead the development, execution, and continuous refinement of the Cyber Security Strategy, policies and standards in conjunction with the Cyber Security Leadership team.
- Oversee institutional threat and risk awareness capability, ensuring the University maintains proactive and adaptive responses to emerging cyber security threats.
- Build, key effective working relationships with internal and external stakeholders to develop innovative solutions that meet business needs.
- Promote a culture of continuous improvement, championing professional standards, innovation and methods.
- Any other activities as directed by the Deputy CISO.
- Align with and actively demonstrate the Code of Conduct and Values
- Ensure hazards and risks psychosocial and physical are identified and controlled for tasks, projects, and activities that pose a health and safety risk within your area of responsibility.
Who you are:
- Extensive experience in the delivery of cyber security risk assessment and advisory services within major organisations, including demonstrated impact at an enterprise or sector-wide level.
- Excellent understanding of industry-wide security standards and compliance frameworks such as ISO/IEC 27001, NIST, PCI DSS, HIPAA, COBIT 5, GDPR, Mitre ATT&CK etc.
- Excellent understanding of contemporary security technologies, products and services, including native cloud security controls in AWS and Azure, and their strategic application to enterprise architecture.
- Strong leadership and people management skills, with experience in building high performing teams and in the development of staff.
- Strong interpersonal, communication and negotiation skills including ability to develop effective relationships and influence key stakeholders at all levels in the organisation.
- Proven ability to exercise independent judgement and problem solving with the ability to resolve and address issues as they arise.
- Relevant industry certification(s) such as CISSP, CISM, CRISC, CISA, ISO/IEC 27001 Lead Implementer/Auditor and/or relevant industry experience (highly desirable)
- Ability and capacity to direct and monitor the implementation and effectiveness of the safety management system.
- An understanding of and commitment to UNSW’s aims, objectives and values in action, together with relevant policies and guidelines.
Benefits and Culture
- Flexible Working Options (work from home, flexible hours etc)
- Career development opportunities
- 17% Superannuation contributions and additional leave loading payments
- Additional 3 days of leave over Christmas period
- Discounts and entitlements (retail, education, fitness)
For further details on the benefits, please visit https://www.jobs.unsw.edu.au/lifestyle-benefits
How to Apply: please apply through the portal, we would like you to submit a full application including resume and addressing the who you are section.
Applications close: Tuesday June 30th at 11.30pm
Pre-Employment Checks
Aligned with UNSW’s focus on cultivating a workplace defined by safety, ethical conduct, and strong integrity preferred candidates will be required to participate in a combination of pre-employment checks relevant to the role they have applied for.
These pre-employment checks may include a combination of some of the following checks:-
- National and International Criminal history checks
- Entitlement to work and ID checks
- Working With Children Checks
- Completion of a Gender-Based Violence Prevention Declaration
- Verification of relevant qualifications
- Verification of relevant professional membership
- Employment history and reference checks
- Financial responsibility assessments/checks.
- Medical Checks and Assessments
Compliance with the necessary combination of these checks is a condition of employment at UNSW.
Get in Touch:
Jen MacLachlan
Talent Acquisition Partner – UNSW IT
Please apply through the application portal and not via the contact above.
UNSW is committed to equity diversity and inclusion. Applications from women, people of culturally and linguistically diverse backgrounds, those living with disabilities, members of the LGBTIQ+ community; and people of Aboriginal and Torres Strait Islander descent, are encouraged. UNSW provides workplace adjustments for people with disability, and access to flexible work options for eligible staff. The University reserves the right not to proceed with any appointment.
Posted:
