Manager Data, Privacy and Assurance

Lead the cybersecurity, privacy and data governance function at the NSW Education Standards Authority (NESA) as Manager, Privacy, Data and Governance. Provide strategic oversight of cybersecurity, privacy, and data governance aligned with business and technology goals; foster security and privacy awareness across the organisation; oversee records, information sharing and privacy governance in line with relevant Acts; develop and strengthen data governance capability; drive the cybersecurity roadmap and risk oversight; deliver policy, governance, and governance reporting to support compliance, assurance and regulatory obligations; build trusted relationships with senior stakeholders, government agencies and regulators, providing clear, risk-based advice to executive leadership and the board; lead a high-performing team and shape the function’s ongoing growth and impact. Essential experience includes overseeing security frameworks such as ISO 27001, ISM and Essential Eight, knowledge of privacy legislation (NSW PIPA 1998, HRIPA, Privacy Act 1988, GIPA Act, Data Sharing (Government Sector) Act 2015), and a track record of stakeholder engagement and driving governance in complex environments.