Information and Safety Group, Ngā Tohu Ratonga ...



General Manager, Information & Safety/Chief Security Officer Information and Safety Group, Ngā Tohu Ratonga | Organisational Capability and Services BranchThe General Manager, Information and Safety/Chief Security Officer is responsible for all aspects of protective security, including Information and Information Communication Technology (ICT) security and health and safety. The role is responsible for driving the Department’s business continuity planning and for ensuring the Department has a clear Privacy strategy and meets all of its obligations under the Health and Safety legislation. The GM Information and Safety/Chief Security Officer is also the Department’s designated Privacy Officer and is required to monitor the Department’s compliance with the Privacy Act.As the Chief Security Officer (CSO) the role is responsible for leading and building a strong security culture where people have a high degree of security awareness and good security practises become an integral part of how we do things around here. The CSO also assumes the function of Incident Controller in major and emergency situations, in line with DIA’s Incident Management Framework. Reporting to: Deputy Chief Executive, Organisational Capability and ServicesLocation: WellingtonSalary range: Corporate Band MWhat we do matters – our purposeOur purpose is to serve and connect people, communities and government to build a safe, prosperous and respected nation.In other words, it’s all about helping to make New Zealand better for New Zealanders.How we do things around here – our principlesWe make it easy, we make it work Customer centredMake things even betterWe’re stronger together Work as a teamValue each otherWe take pride in what we do Make a positive differenceStrive for excellenceWorking effectively with MāoriTe Aka Taiwhenua – our Māori Strategic Framework – enables us to work effectively with Māori. Te Aka Taiwhenua is underpinned by our mātāpono – Kotahitanga, Manaakitanga, Whānaungatanga, He Tāngata.As DIA is an agent of the Crown, Te Tiriti o Waitangi/The Treaty of Waitangi is important to everything we say or do. We recognise it as an enduring document central to New Zealand’s past, present and future. Building and maintaining meaningful relationships is important to work effectively with Māori, stakeholders and other agencies. We accept our privileged role and responsibility of holding and protecting the Treaty of Waitangi / Te Tiriti o Waitangi.What you will do to contributeAs a result we will seeStrategic LeadershipLead the development and execution of a clear strategy for the group which will include security, privacy, information and health and safety.Lead the development and execution of a clear plan to manage departmental risks that set the journey and direction for how security is considered and embedded into the business. Provide strategic, advice and assurance to ELT and senior business leaders on the key risks and issues impacting the department.Establish strong, strategic and working relationships with ELT, senior business leaders and the wider community within DIA ensuring a common understanding of DIA’s security, safety and information direction and expectations and promoting good security management and leadership.Establish strong, collaborative relationships with security, safety and information leaders from other Government agencies and proactively engage in Government wide forums.Establish strong, strategic relationships with key AoG stakeholders.DIA has a strategy and framework that is well positioned and fit for purpose.ELT and Senior Leaders across DIA are well informed and advised and demonstrate a leader led approach.Strong, collaborative and productive relationships developed across DIA and with external agencies and professional bodies that enhance the security, safety and information group’s culture and practice within DIA. ELT is assured that the organisation is covering all areas of the group’s framework and taking a comprehensive and appropriate response to security management and management of business anisational Change Management Lead the development and execution of the organisational change management strategy and implementation plan to raise awareness and engage the hearts and minds.Lead the capability and maturity uplift desired and deliver agreed SSI outcomes and objectives for DIA whilst meeting its obligations to wider government mandated and legislative initiatives and requirements.Visibly champion the desired the business units behaviours.Provide support to senior leaders and people managers in effecting the desired culture with their staff and teams.DIA has a strong security, safety and information culture where people have a high degree of awareness and a proactive approach to good security, safety and information practises embedded in all aspects of DIA’s business from design through to operations and governance.The practice of incident management becomes part of the way we “do business round here”.Improving level of security related risksIncreased capability and organisational resilience in respect of responding to incident management risks that sit within the SSI group.Planning and Performance Lead the development of comprehensive strategic objectives, priorities and plans in SSI that enable the achievement of the desired culture maturity, capability uplift and business outcomes, whilst meeting its obligations to wider government mandated initiatives.Oversee the effective running of the SSI group and ensure regular reviews of the strategic documentation and frameworks are completed. Lead the development and implementation of the SSI group policies, procedures, standards and guidelines to form the baseline for DIA achieving its transformation and business as usual objectives.Provide oversight of management of critical risk and threat identification, remediation and establishment of protective controls and measures for continued strengthening of all facets of security across DIA.Provide assurance to Executive Leaders and Governance bodies that all areas of the wider SSI group’s (security, privacy, health and safety, information and resilience and recovery) controls and measures are being implemented and effective.Develop and implement Security/Risk monitoring material and report these on a regular basis through the DIA Governance system.DIA has a fit for purpose operating model for the development of the SSI group’s capability, cultural change and effective impact to business outcomes.There is a consistent approach to good security practise across DIA.Strategies are in place to continuously improve all practises in SSI across DIA. DIA has a risk based security plan under action and organising trends for better managed security risksDIA understands new emerging security threats and how they might impact the DIA’s risk profile.Relevant and effective policies, procedures, standards and guidelines are embedded across the organisation.Robust security and incident management frameworks are in place and working in DIA, supported by appropriate practices and processes.Incident ManagementActivate and direct DIA’s response to major/emergency incidents.Assess impact on staff, property, critical business functions and services and the Department’s credibility.Manage the Emergency Operations Centre and Incident Response team.Ensure responsibilities under the CDEM Act are met.Manage media and public information.Run twice yearly major incident management simulation sessions.Major/emergency incidents are responded to with urgency, well-co-ordinated with clear direction and control.ELT is assured that responses to major/emergency incidents are effectively managed.The business is prepared to respond to major/emergency incidents.PrivacyEncourage compliance with the Information Privacy Principles and the Privacy Act 1993.Provide advice to the Senior Leadership Team about any risks to the Department’s ability to protect and manage the personal information it holds.In conjunction with the Principal Advisor Privacy, lead and lift the Department’s capability in relation to privacy requirements.Work with the Office of the Privacy Commissioner in relation to any investigations the Privacy Commissioner may be undertaking.Collaborate with the Government Chief Privacy Officer.An increase in awareness across the Department about effective management of personal information.All advice on privacy related issues is recognised as high quality by the Department.People Leadership and Management Provide context, translate and communicate the Department’s direction within your team; Set appropriate directions, priorities and expectations for direct reports and agree the work programmes, tasks and performance; Lead and inspire by working with direct reports to set clear and positive team objectives and line of sight for each staff member for the achievement of those objectives.Manage the performance, development and engagement of direct reports in accordance with DIA processes and the needs and priorities of the team.Demonstrate leadership support for all Departmental initiatives and organisational development activities, modelling expected behaviours to direct reports to create a desired workplace culture.Behaviour in line with the Senior Leader profile of the DIA Capability Framework.Staff have a clear line of sight between their work and the direction of the team, Directorate and the wider OCS business unit Regular culture and engagement activities are undertaken and owned by the team.The performance and development of direct reports is appropriately planned and managed in accordance with DIA processes and business needs.Financial ManagementSet annual team budget and ensure forecast and budget is accurate, monitored and reported on;Proactively look at opportunities for cost savings, ensuring value for money in all activities;Ensure all expenditure is within budget and financial delegate policy.Outputs are delivered on time, within budget and to agreed quality standards.Health and safety (for self)Work safely and take responsibility for keeping self and colleagues free from harm.Report all incidents and hazards promptly.Know what to do in the event of an emergency.Co-operate in implementing return to work plans.A safe and healthy workplace for all people using our sites as a place of work.All requirements of DIA’s Health and Safety policy and procedures are met.Health and safety (for team)Inform, train and equip staff to carry out their work safely.Ensure prompt and accurate reporting and investigation of all workplace incidents and injuries.Assess all hazards promptly and ensure they are managed.A safe and healthy workplace for all people using our sites as a place of work.All requirements of DIA’s Health and Safety policy and procedures are met.AdviseCollaborate withInfluenceInformManage/leadDeliver toWho you will work with to get the job doneInternalChief Executive OfficerExecutive Leadership TeamDeputy Chief Executives (DCEs) across DIAGeneral Managers (across DIA)Privacy OfficerDirectors in Organisational Capability and Services BranchStrategy and Risk FunctionSecurity specific roles across DIAPrincipal Advisor, Resilience & RecoveryExternalGovernment Chief Information Officer (GCIO)Government Chief Privacy OfficerNZSISGovernment Security ForumsCSOs across the Government SectorYour delegations as a managerHuman Resources and financial delegationsLevel CDirect reports6 (and 25.8 indirect reports)Your success profile for this roleWhat you will bring specificallyAt DIA, we have a Capability Framework to help guide our people towards the behaviours and skills needed to be successful. The core success profile for this role is Senior Leader.Keys to Success:Adaptive leadershipDriving innovation and transformationStrategic agilityPolitical savvyEmpowering people for successInspiring others through vision and purposeExperience: Experience in leading significant organisational/transformational change at a senior level in a diverse, complex and changing business environment.Experience in delivering strategic business outcomes through harnessing virtual teams across a diverse, complex organisation.Experience in taking leadership action in major/critical situations.Knowledge:Understanding of the public sector environment.Understanding of governance and frameworks for systems and continual business and process improvement.Understanding of the security challenges facing Government departments and the drivers behind the implementation of Protective Security Requirements (PSR) is an advantage.Skills:Evidence of excellence in communication and negotiation, especially in complex settings and in a cross-cultural environment.Demonstrated sound judgement in dealing with complex, sensitive or ambiguous issues.Strong stakeholder engagement skills with the ability to establish and maintain a wide range of effective relationships and manage issue resolution.Pragmatic, solution-focused approach with well-developed perceptions and judgement. Other requirements:A relevant tertiary qualification or equivalent knowledge, skills, and experience, and a commitment to ongoing professional development.Able to obtain and maintain a Secret security clearance ................
................

In order to avoid copyright disputes, this page is only a partial summary.

Google Online Preview   Download