Senior Manager - Information Security & Technology (Melbourne)

About the Company Davidson is one of Australia's leading workplace performance companies. With over 30 years of experience, we partner with public and private sector clients to enhance workplace performance through tailored people solutions. Our broad offering, spanning recruitment, tech consulting and advisory, sets us apart in the market. About the Role We are seeking a Senior Manager
- Information Security & Technology to lead and mature Davidson's internal information security capability. Reporting to the General Manager
- Group Operations & IT, this role is Davidson's senior internal security authority. You will maintain and strengthen our information security posture across security controls, technical risk, incident response, remediation activity and practical cyber security advice. You will work closely with DavidsonIT, our managed services provider, Security Operations Centre, business leaders and risk and assurance stakeholders to ensure information security is embedded into day‑to‑day business and technology operations.
- Maintain and mature Davidson's operational security controls.
- Own DLP monitoring, incident review and policy tuning.
- Coordinate with the SOC, managed services provider and internal teams on threat monitoring and incident response.
- Lead triage, containment support, root cause analysis and remediation planning for security incidents.
- Review technology changes, system configurations, integrations, AI tools and vendor controls through a security lens.
- Support ISO27001, DISP and assurance activity through evidence, audit support and remediation updates.
- Provide practical security advice to technical teams, business leaders and client‑facing teams.
- Support tenders, proposals, security questionnaires, due diligence requests and client audits. About You You will bring strong experience in information security, cyber security operations, security engineering, technology risk, incident response or security control management. Additionally, you will:
- Practical knowledge of ISO27001, ISMS control environments and audit support.
- Experience working with outsourced IT managed services, SOC providers and internal technology teams.
- Strong knowledge of DLP, identity and access management, cloud security, endpoint security, vulnerability remediation and security monitoring.
- The ability to review technology changes, systems, integrations and architecture decisions from a security perspective.
- Solid stakeholder engagement and written communication skills.
- The ability to explain complex security concepts clearly to technical and non‑technical audiences. Relevant certifications such as CISSP, CISM, CRISC, CISA, ISO27001 Lead Implementer or Lead Auditor, Security+, Azure Security or Microsoft Security will be highly regarded. Benefits
- A flexible, hybrid work environment.
- A culture defined by purpose, excellence, care and opportunity.
- Direct access to decision makers through a flat, agile structure.
- Learning and development opportunities tailored to your career goals.
- Recognition programs celebrating individual and team contributions.
- Fun things we do include high achievers' lunches, monthly celebration hours, values awards and dinners. Desired Skills and Experience
- Information security, cyber operations or technology risk experience.
- Strong knowledge of ISO27001, DLP, IAM, cloud, endpoint security and incident response.
- Experience working with SOC, MSP and internal technology teams.
- Ability to assess technical change, integrations and security risks.
- Clear communication skills across technical, business and executive audiences.
- Relevant cyber security or technology certifications highly regarded. #J-18808-Ljbffr Apply on Kit Job: kitjobau.com/job/3rvvag