Energy One is an Australian-based, ASX listed, company with offices in Sydney, Brisbane, Melbourne, Adelaide, Paris, Belgium and the UK. We are facilitating the green energy revolution by providing innovative trading software solutions, trading operation services, commercial advisory and risk transfer broking services to the global energy industry. Energy One is building a team across the globe, where staff are supported, encouraged to take on new opportunities and who live by the following Cultural Principles: Say what you mean – straightforward, authentic, communication Be dependable – trustworthy, consistent, accountable Grow together – unified, cohesive team, team mindset, diversity and inclusiveness Bring your best – openness, passion Creative minds – daring, designs, innovate, creative solutions Why work for Energy One - This is an exciting time to join Energy One as the globalisation program which aims to bring together five companies across four countries has recently been launched. This will provide opportunities to be part of an innovative, growing international company, become involved in a global project, learn from our overseas comrades and be part of something great. You will join a global, proactive security team working with state-of-the-art technologies in an increasingly vibrant industry. The Energy One security team is an independent department which has large operational converged scope with room to improve. Who we are looking for - Due to the ongoing growth of the business, we are looking for a switched-on individual to join the energy trading division. The individual will need to be self-motivated with a keen interest to learn. In-depth training will be provided, we want someone who has a passion for complex quantitative problem-solving exercises, involving research, analysis, and building analytics capabilities, exceptional attention to detail and excellent communication and interpersonal skills. Your Responsibilities - Working on GRC activities for security is a primary responsibility Maintaining a vulnerability management and remediation Developing and implementing a comprehensive plan to secure our computing network Providing guidance to the tech team Reporting on the implementation of the security baseline Keeping up to date with developments in IT security standards and threats Collaborating with management and the IT department to improve security Documenting any security breaches and assessing their damage Educating colleagues about security software and best practices for information security Assist the CISO in day-to-day tasks Proactively responding to threat actor activities to mitigate potential risks Conducting detailed analysis of malware alerts and events in coordination with the SOC Improving risk management strategies – in line with ISO3100 Monitoring and analysing security logs and establishing detection rules Conducting initial triage of incidents and developing escalation and contingency protocols Anticipating key cyber regulations Ensure operational resilience of different parts of the business are monitored and continuously improved Ensure physical security risks are managed Qualifications - GRC experience or penetration tester Excellent problem-solving and analytical skills Ability to educate a non-technical audience about various security measures Effective verbal and written communication skills English speaking, French desirable Degree in computer science or a technology-related field Professional information security certification Minimum 5 years experience in an information security role or similar Solid knowledge of various information security frameworks Energy One benefits include: Access to our Employee Assistance program You Day (an additional day off each year) Great team environment Opportunities for career and personal development Growing global company Hybrid working conditions – 3 days in the office Energy One promotes diversity, inclusion and equal opportunity. If you are ready to embrace this exciting challenge, send us your CV today. Please note unsuccessful applicants will not be individually contacted.