Technology & Information Security Manager

Location: Hybrid – Adelaide or Melbourne
Engagement: 6‑month contract
Client: Evoltech’s enterprise client

About the Role

Evoltech is seeking an experienced Technology & Information Security Manager to support our client’s technology operations, security governance, and risk management functions. This senior role requires strong IT operational leadership, deep information security expertise, and experience within regulated industries such as financial services.

You will be responsible for overseeing technology operations, uplifting security controls, managing incidents, and driving vendor accountability, ensuring that technical matters are clearly translated into business‑focused insights for senior stakeholders.

Key Responsibilities

• Provide oversight of technology operations, infrastructure, and security controls
• Lead information security risk management activities and maturity uplift initiatives
• Manage incidents, issues, and service disruptions end‑to‑end, ensuring RCA and remediation
• Coordinate and oversee third‑party vendors and managed service providers, ensuring accountability and service excellence
• Deliver clear, concise reporting on risk posture, incidents, operational performance, and remediation progress
• Support internal and external audit requirements, as well as regulatory and assurance activities (including CPS 234)

Core Skills & Experience

• Minimum 8+ years of senior experience across IT operations, infrastructure, and information security
• Strong understanding of information security risk, governance, and control frameworks (e.g., NIST, ISO27001)
• Experience in regulated environments, ideally financial services with CPS 234 exposure
• Solid understanding of network and cloud infrastructure, endpoint security, IAM, and security tooling
• Proficient in incident, problem, and change management processes
• Experienced in vendor management, MSP oversight, SLAs, and CAB participation
• Strong ability to assess and articulate technical risks in business language
• Experience working with SIEM tools, vulnerability management platforms, and ITSM systems (ServiceNow beneficial)

Technical Skills

• Infrastructure & Operations: server management, cloud platforms (AWS/Azure), networks, patching, monitoring
• Security Technologies: SIEM, EDR, firewalls, vulnerability management, identity & access management
• Risk & Governance: risk assessments, control assurance, policy frameworks, compliance reporting
• Incident Management: incident response, threat analysis, RCA documentation, remediation planning
• ITSM Processes: ITIL (incidents, problems, changes), CAB processes, service delivery metrics
• Audit & Compliance: evidence collection, audit remediation, regulatory reporting (incl. APRA-aligned requirements)

Behavioural & Leadership Skills

• Strong stakeholder engagement: able to communicate confidently with executives, business leaders, and technical teams
• Strategic thinker: able to anticipate risks, identify gaps, and recommend pragmatic solutions
• Analytical and detail‑oriented: thorough in root cause analysis and control assessment
• Calm under pressure: capable of leading during incidents and making sound decisions
• Accountability & ownership: takes responsibility for outcomes and drives initiatives to completion
• Collaborative leadership: works effectively across cross‑functional teams, vendors, and service providers
• Adaptability: comfortable operating in dynamic environments with evolving priorities
• Business‑focused mindset: balances risk, practicality, and commercial considerations
• Clear communicator: translates complex issues into simple, actionable insights for non‑technical audiences

Applicable only for Australia PR holders/Citizens