Head of Security Strategy and Architecture at Medipass Solutions

Security, Full-time, 55 Market St, Sydney, NSW sydney full-time
Posted a month ago

Why work for us

We're not just like every other bank. Tyro has always been a tech company at heart, but fostering a diverse and inclusive environment, and a passion for continuous learning has always been one of the most important parts of our company's culture.

Tyros are a highly collaborative mix of people. You will work closely with our awesome teams and individuals in engineering, product management, customer support, sales and other functions within the business. Our strong team of 600+ Tyros, just like our customers, are the lifeblood of our business. We go to great lengths to ensure a positive and enjoyable employee experience for all. Everyone is committed to delivering great outcomes for our customers, and you will have the chance to change the face of payments and commerce for Australian businesses.

🎥 Take a look here what it's like to work at Tyro

About the role

The role of Head of Security Strategy and Architecture is to work with Tyro internal stakeholders to develop Tyro’s security strategy to protect its data, applications, and infrastructure from emerging threats & vulnerabilities. You will lead a team of security advisors, architect and data governance who work with internal teams to conduct security assessments, and leading projects to enhance security on behalf of the Information Security team
This role is accountable for the management of Security Architecture and Security Advisory.
This role will work closely with the CISO and Information Security Leadership team to execute and maintain Tyro’s Information Security Strategy Program. You will also work closely with the internal security team and boarder technology teams to implement security controls.
The role is expected to divide the work week as follows:
 20% Influencer | 30% Strategist | 20% People | 30% Execution

What you'll do

  • Leadership and oversight of Information Security strategy, architecture and people management.
  • Accountable for defining and execution of the Information Security Strategy including a “future state” and a risk-prioritised implementation roadmap, supported by other teams and third parties.
  • Accountable for leading the security architecture function and establishing appropriate architecture for operating internal cyber security services, products, and processes aligning with Tyro’s goals and objectives.
  • Build the security architecture service by developing security reference architectures and patterns to promote efficiency and reuse of sensible security defaults.
  • Experience with implementing a Secure By Design methodology for embedding security throughout the product development lifecycle.
  • Experience with securing a hybrid cloud environment, with a mixture of on-premise, multi-cloud providers, and container platforms.
  • Accountable for leading the security advisory function and ensuring that Tyro’s product development teams are embedding security requirements during product development and following Tyro’s cybersecurity standard.
  • Accountable for implementing secure data controls and governance.
  • Expert knowledge of at least one cyber security frameworks including NIST CSF, ISO27001, CIS and PCI-DSS including practical implementation
  • Uphold and contribute to Tyro’s strong risk culture by complying with our policies, completing mandatory training and identifying and managing risks within your day-to-day work
  • What you'll bring

  • Influence change across Cyber Security Operations team, broader technology team, and business to accelerate strategy execution, mind-set change and accountability
  • Build strategic internal and external relationships, including with external vendors.
  • Support Chief Technology Officer (CTO) and Technology Leadership Team
  • Use foresight thinking for innovation. Bring business knowledge, continuous improvement and insight to create distinctive value
  • Act to support the overall strategy – growth, product and people – while managing the impact on own team
  • Perks & Benefits
    We offer some amazing employee benefits such as a flexible working environment with a mix of in-office and remote working, learning & development opportunities for professional and personal development, 16 weeks paid primary carers leave, 12 weeks paid secondary carers leave, annual team based volunteer day, novated leasing, social events which includes multiple craft beer kegs (selection of beers carefully selected by our beer connoisseurs), wide selection of wine, variety of snacks and a ping pong table, selection of board and video games and many more!

    Our Story
    Launching in 2003, Tyro has grown to become Australia’s largest EFTPOS provider of all ADIs outside the big four banks. With over 600 staff, $34 billion in transactions in FY22, we’re much more than an EFTPOS provider – Tyro is an Australian bank and operates under the supervision of the Australian Prudential Regulation Authority (APRA). With 10 industry firsts to market, Tyro is a leader in credit, debit and EFTPOS card acquiring, Medicare and private health fund claiming and rebating services to Australian businesses.

    Wow the Customer - We love our customers and we want them to love us too.
    Be Good - We're open and transparent, and we do the right thing - even when nobody's watching or it's really hard.
    Commit to Greatness - We think big, move fast and dare to be different. We're always asking "what's next?"
    Stay Hungry - We ooze passion and determination and we play as a team to win.
    Win Together - We are a united team. With growth mindsets and without ego, we embrace diversity to collaborate, innovate and accelerate.

    Privacy and Submitting your Application
    By proceeding to submit your application, you acknowledge that you have read and understood Tyro’s Privacy Policy (www.tyro.com/privacy-policy/) and Privacy Statement & Consent for Job Applicants (www.tyro.com/privacy-statement-job-applicants/) and consent to Tyro collecting, using, holding and disclosing your personal information in accordance with these policies.

    Tyro does not accept unsolicited agency CV’s.  Please do not forward resumes to the team if you are not one of our listed preferred recruitment partners. Tyro is not responsible for any fees related to unsolicited resumes.    

    We are a Circle Back Initiative Employer and commit to responding to every applicant.