Apply now »

Cyber Lead - Policy & Regulations - Hawthorn East

We’ve been proudly serving Australian communities since 1914 and have grown to become a top 30-listed company on the ASX with a portfolio of iconic homegrown brands. At the heart of our continued success is over 115,000 team members working across the country, all contributing to bringing our customers smiles. You’ll not only get to see your work make a difference, you’ll be part of a team working together to help Australians eat and live better every day.

 

About the team

Our Technology team is the backbone of the business, building and maintaining the information technology infrastructure that support Coles Group. As a part of the Technology team, you get the opportunity to work through complex, challenging, meaningful problems using large data sets and new technologies to expand your skills and experience.

 

 

About the role

We are currently recruiting for a Cyber Lead to lead and coordinate the planning, execution, delivery, and monitoring of specific, often complex, cyber security initiatives, projects, functions, or services (e.g., vulnerability management program, security awareness campaign, GRC process implementation, project security engagement).

You will also provide specialist advice, guidance, and oversight to a range of stakeholders (business, technology, project teams) on the application of relevant policies, standards, processes, or frameworks within an area of expertise.

 

Key Responsibilities

 

Essential Eight Uplift / SoCI Compliance

  • Lead the specialist advisory on E8 requirements to Control Owners, the Assurance team, E8 Program and Technology Owners.
  • Lead the uplift and sustenance of CKT to E8 Lvl 1 maturity, through ongoing tracking and reporting of E8 uplift.
  • Enable E8 Cyber Assurance activities (support planning/scoping, tracking, reporting).

 

Government / Sector Engagement

  • Lead and facilitate internal/external engagements on industry control frameworks.
  • Lead and facilitate internal/external compliance engagements (e.g. SoCI Act, Cyber Act, Privacy Act).
  • Provide secretariat, administrative & research support for bilateral government (external) liaison meetings.

 

Cyber Business Protect (Cyber Gov's Business Stakeholders Only)

  • Lead quarterly discussions with business leader within Cyber Governance and their LT (secretariat, administrative & research support).
  • Cyber risk profiling for business (consolidating SBD + Assurance + findings management).
  • Lead targeted risk workshops with business stakeholders

 

Risk & Control Framework

  • Lead the maintenance and improvement of the Cyber Risk Framework

 

Cyber Reporting

  • Lead Cyber KRI tracking for Group Cyber (coordination with metric/control owners, updating Archer).
  • Lead Cyber reporting to the Snr. Business leaders and Board (Monthly reporting to Board and Quarterly reporting to QBR).
  • Enable the delivery of quarterly Cyber updates to ARC (maintain reporting schedule, ARC action tracking).

 

Policy & Standards

  • Lead in the development and rollout of Cyber policies & standards.
  • Lead in promoting awareness of the policies & standards across the enterprise

 

Corporate Support Functions

  • Enable the uplift of capability and embedding of the Corporate Support Functions, as part of the cyber incident response process (training and awareness, documentation/review of playbooks, table-top exercises).
  • Provide secretariat, administrative support for Corporate Support Functions (internal) liaison.

 

Cyber Risk Profiling

  • Lead the bi-annual review and refresh of the Group's Cyber Risk profile (with stakeholders inside and outside of Group Cyber) and quarterly reporting to the ARC.
  • Lead the annual bow-tie assessment of the top 3 Cyber Risks (with stakeholder inside and outside of Group Cyber) and quarterly reporting to the ARC (including root cause & consequence analysis, alignment to industry frameworks and specialist advisory).

 

Cyber Insurance

  • Lead the annual cyber risk quantification with key stakeholder across the business, to support annual renewal of cyber insurance - Changing from Support.
  • Lead the annual renewal of Coles' Cyber Insurance (completing questionnaire, gathering of artefacts, documenting insurance place mat, briefing CISO).

 

Coaching & Mentoring

  • Support the Cyber Specialist role onboarding & knowledge management process.
  • Facilitate skill-building and immediate performance improvement.

 

Cyber Findings Management

  • Enable and lead the delivery of Cyber Findings Management.
  • Support the governance of Cyber findings.

 

 About you and your skills

  • Proven experience leading or coordinating the delivery of a technical service, function, or project stream within a cyber security or relevant technology context.
  • Demonstrated ability planning, scheduling, monitoring, and reporting on complex activities and progress against objectives.
  • Experience managing a pipeline of work or a portfolio of security initiatives, including demand intake, prioritisation, tracking progress, and ensuring effective resource allocation to meet delivery timelines and objectives.
  • Experience engaging with diverse stakeholders at various levels, facilitating collaboration, managing relationships, and influencing outcomes.
  • Experience providing specialist guidance on applying policies, standards, or processes within a defined technical or functional area.
  • Track record contributing to the development or refinement of operational practices, processes, or frameworks.
  • Experience investigating and resolving a broad range of complex issues related to an area of responsibility.
  • Experience navigating complexity and ambiguity to deliver results is highly desirable.

 

Skills and Qualifications

  • Strong knowledge and practical application skills in relevant cyber security domains (e.g., Information Security principles, Risk Management frameworks).
  • Excellent communication and interpersonal skills, including the ability to lead discussions and explain complex concepts clearly.
  • Strong collaboration and stakeholder management skills.
  • Effective planning, organisational, and workflow management skills, demonstrating autonomy and prioritisation.
  • Analytical and problem-solving skills with a broad systems perspective.
  • Ability to provide informal leadership, coaching, and mentorship.
  • Relevant industry certifications (e.g., CISSP, CISM, CRISC, relevant domain-specific certs) are highly regarded.

 

What’s in it for you?

 

Flexible working options: We know that work is only one part of your life, so we actively encourage a positive work-life balance and provide hybrid working options to help you achieve it.
Office perks: Take advantage of our gym facility and fitness classes, free parking, BBQ area, mini-Coles supermarket, fooderie hub where you can sample new products before they hit the shelves, school holiday program and so much more when you come in.
Discounts: Eligible team members receive 5% discount all year round on your Supermarket and Liquor online and in-store purchases. We also offer additional periods of double discount (10%) at various times throughout the year. As well as hotdeals exclusive to team members that translate into additional savings.
Reward through recognition: Give and receive recognition, linked to our Coles values, through our digital recognition platform ‘mythanks’. You can accumulate points to redeem in the online shop for exciting gifts and electronic gift cards from an extensive range of retailers.
Opportunities for learning and development: No matter where you start within our diverse business, you’ll have experiences, exposure, and education to satisfy you. Discover and explore a variety of career development programs and job-specific training.
Paid parental leave: We understand how important your life outside work is and offer permanent team members paid parental leave to support you in balancing work and family.
Investment in your future: Our annual team member share plan offer allows eligible team members to make regular pre-tax salary sacrifice deductions to purchase Coles Group shares.

 

About the recruitment process

 

We’re continuing to build a gender equitable team, and a culture that is just as diverse, inclusive and welcoming as the communities we serve. We are committed to creating a workplace that is safe and respectful for our team. We encourage applications from people of all ages, cultures (including Aboriginal and Torres Strait Islander peoples), abilities, sexual orientation and gender identities.

 

We’re happy to adjust our recruitment process to support candidates with disability. For further information and additional contact details visit the ‘Our Recruitment Process’ section of our careers site or email inclusionrecruitment@coles.com.au

 

Job ID: 174635

Employment Type: Full time

#LI-OR1

Apply now »