EY Director Cybersecurity 

Australia 

214979545

Director of Cybersecurity

As ourDirector of Cybersecurity,focus on leading our cybersecurity competency. The ideal candidate will have a proven track record in leading security audits, implementing large-scale cybersecurity programs, and providing strategic advice to C-Suite executives. This role requires a deep understanding and experience using of Australian government security frameworks, including the Protective Security Policy Framework (PSPF), Defence Security Principles Framework (DSPF), and the Information Security Manual (ISM). The Director will be responsible for developing cybersecurity strategies, frameworks, and operating models while growing and mentoring teams within the security competency.

This is a role based inCanberra – Ngambri.

Your key responsibilities

• Lead and manage comprehensive security audits to assess and enhance organizational security posture.
• Oversee the implementation of large-scale cybersecurity programs, ensuring alignment with business objectives and compliance with relevant frameworks.
• Provide strategic advice and guidance to C-Suite executives on cybersecurity risks, trends, and best practices.
• Develop and implement robust cybersecurity strategies that align with organisational goals and regulatory requirements.
• Design and establish cybersecurity frameworks and operating models tailored to the organisation’s needs.
• Identify business opportunities within the cybersecurity domain and develop strategies to grow a book of business.
• Foster a culture of continuous improvement and innovation within the cybersecurity team.
• Build, mentor, and grow high-performing teams across the cybersecurity competency.
• Collaborate with cross-functional teams to ensure cybersecurity considerations are integrated into all business processes.
• Stay abreast of emerging cybersecurity threats, technologies, and regulatory changes to inform strategic decision-making.

Skills and attributes for success

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field; Master’s degree preferred.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role.
• Proven experience in leading security audits and large-scale cybersecurity implementation programs.
• Strong understanding of Australian government security frameworks, including PSPF, DSPF, and ISM.
• Demonstrated ability to develop and implement effective cybersecurity strategies and frameworks.
• Experience in identifying business opportunities and growing a book of business within the cybersecurity sector.
• Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels.
• Strong analytical and problem-solving skills, with a strategic mindset.
• The following certifications are highly desirable:

• CISSP - Certified Information Systems Security Professional
• CISM - Certified Information Security Manager
• CRISC - Certified in Risk and Information Systems Control
• CIPM - Certified Information Privacy Manager
• ISO 27001 - Information Security Lead Auditor.

Ideally, you’ll also have the skills and attributes below but don’t worry if you don’t tick all the boxes. We’re interested in your aptitude, attitude and willingness to learn.

• Ability to navigate complex regulatory environments and ensure compliance with applicable laws and standards.
• Experience in crisis management and incident response planning.
• Proven track record of managing budgets and resources effectively.
• Strong leadership skills with the ability to inspire and motivate teams.
• Commitment to professional development and staying current with industry trends and advancements.

What we offer you

. Learn

• Career development:At EY, your career is yours to shape!We’ll develop you with future-focused skills and equip you with world-class experiences
• Flexible work arrangements:Our flexible work policies empower you to balance your professional and personal life, fostering a culture of trust and autonomy.

• A comprehensive benefits package

Acknowledgement of Country

or +61 3 8650 7788 (option 2). Anything you tell us will be kept completely confidential.

Our preferred applicant will be required to undertake employment screening by EY or our external third-party provider.

© 2025 Ernst & Young Australia. A member firm of Ernst & Young Global Limited. All Rights Reserved. Liability limited by a scheme approved under Professional Standards Legislation.