- Report directly to the Chief Information Officer
- Opportunity to work remotely and in office
- Free fitness classes, wellness program & regular social events
About the role
Reporting directly to the Chief Information Officer, the Information Security Officer plays a pivotal role in our firm’s overall security posture. Responsible for managing cyber security awareness, maintaining compliance with ISO27001, and protecting the firm against information security threats. This role also involves onboarding and offboarding security provisioning to ensure seamless
transitions without compromising security.
While this role is based in our Sydney CBD office, at Bartier Perry we all have the opportunity to work flexibly and remotely. Bartier Perry offers structured career progression for those who want it, within a warm, friendly and supportive environment.
Key responsibilities include:
- Develop and manage our firm’s cyber security awareness program, including creating training content, conducting phishing simulations, and leading the Automated Security Awareness Program (ASAP).
- Perform regular Security Awareness Proficiency Assessments (SAPA) and administer Security Culture Surveys (SCS).
- Maintain the Action Register, ensuring the firm’s information security actions are tracked and implemented.
- Review and update our firm’s policy framework, ensuring alignment with ISO27001 standards.
- Manage Asset and Risk Registers, conducting regular reviews and updates to identify and mitigate potential risks.
- Handle ISMS Calendar and committee meetings, ensuring regular maintenance and compliance with security standards.
- Execute Statement of Applicability (SOA) items review/action.
- Implement and oversee Data Leakage Prevention (DLP) strategies, including policy creation and monitoring system usage to prevent unauthorized data exfiltration.
- Review all system access controls, including Active Directory, door security, and cloud applications, to prevent unauthorized access.
- Manage the incident response for data breaches and cyber incidents, conducting post-incident reviews and implementing preventative measures.
About you
Our ideal candidate possesses:
-
Bachelor’s or master’s degree in information security, Computer Science, or a related field; professional certifications (e.g., ISO27001 Lead Auditor) preferred.
- 3+ years of hands-on experience in information security, with a thorough understanding of ISO27001 standards.
- Expertise in legal industry systems, and experience with onboarding and offboarding security procedures.
- Proven track record of developing and delivering effective cyber security awareness programs.
- The ability to communicate complex security issues to a non-technical audience.
About Bartier Perry
Recognised as a 2024 Employer of Choice, Bartier Perry is a firm where our culture shapes everything we do. We pride ourselves on being approachable and high-performing while actively promoting a healthy work-life balance. We engage respectfully with one another, our clients, and the wider community.
We share a united commitment to excellence, and our supportive, inclusive culture empowers everyone to reach their full potential and thrive in their careers and beyond.
As a progressive law firm, we are dedicated to nurturing your unique talents and providing opportunities at every stage of your career. Our professional training and development programs are designed to support growth,high performance, and career progression.
We have a clear strategy and purpose that guides us.
From accessible partners who actively mentor and provide guidance to secondment opportunities with industry-leading clients, we create pathways for our people to flourish professionally and personally.
Culture & Benefits
- Flexible work arrangements to support work-life balance
- Incentive bonus program inclusive of all staff
- Regular social and team-building activities
- Generous 20 weeks paid parental leave for all eligible caregivers
- In-house learning and development opportunities
- Reward and recognition programs
- Comprehensive Health & Wellbeing initiatives
- Learn more about working at Bartier Perry.
How to Apply:
Please upload your CV. Alternatively, you can email your application documents directly to our People and Culture team at careers@bartier.com.au.
All applications will be treated with the highest confidentiality.
Please note: Only applicants with the legal right to work in Australia will be considered for this role.
We are currently inviting direct applications only and will not be engaging recruitment agencies for this role.
Bartier Perry is committed to being an inclusive, flexible, and welcoming workplace where diversity is valued and respected. We celebrate differences, including age, gender identity and expression, cultural background, disability, sexual orientation, religion, family and caring responsibilities, and more. We strongly encourage applications from Aboriginal and Torres Strait Islander peoples and are dedicated to creating a culturally safe and supportive environment.
If you require any adjustments during the recruitment process or in the workplace, please contact our People & Culture team. We encourage you to inform us at the time of application—we welcome hearing from you.
