Join a Remote-First, Globally Distributed Team! 🌍

Are you passionate about cybersecurity and governance? Do you thrive in a remote work environment, ensuring systems are secure and compliant? We’re looking for an Information Security Specialist to play a key role in our cybersecurity initiatives and ISO 27001 certification process.

Please note that we are only able to accept applications from candidates who are Permanent Residents of Australia who are able to successfully pass security clearance.

About X-Team

X-Team is an adaptive hiring agency providing high-performing, on-demand teams of software developers to the world’s leading brands. Since 2006, we have been building and representing an elite community of heavily-vetted, senior software engineers from 75+ countries. Today, we place our developers (individually or as a team) to innovative companies across all industries that need support managing the shrink and swell nature of engineering teams.

Learn more about us here: https://x-team.com/

• Remote-first culture – work from anywhere in Australia
• A strong, values-driven company – our HEROIC values (Honesty, Excellence, Respect, Ownership, Innovation, Curiosity) guide everything we do
• An engaging, energised community – continuous learning, growth, and unique opportunities for adventure
• Trusted by leading companies – we’ve partnered with Fortune 500 companies and some of the world’s most innovative brands

At X-Team, we invest in our people, providing a rewarding, enriching experience where you can keep moving forward in your career.

About the Role 🔎

As an Information Security Specialist, you’ll work across Governance, Risk, and Compliance (GRC) while supporting our ICT/Cyber operations, particularly in Identity Access Management, Google Workspace security, and device management. You’ll collaborate with internal teams and external consultants to enhance our security posture and ensure best practices.

📍 Location: 100% Remote

⏳ Hours: Full-time (38 hours/week), with some flexibility to collaborate across global time zones

✈️ Travel: Occasional domestic and international travel

Key Responsibilities 🎯

• Analyse and assess security requirements, identifying potential vulnerabilities, and recommending appropriate solutions
• Conduct risk assessments for new platforms and applications, evaluating new technologies for threats against existing cybersecurity controls and posture
• Manage the Cyber Security awareness training across the organisation
• Assist in achieving ISO 27001 certification by developing and implementing security controls and processes with assistance from an external consultant
• Work with the Director of GRC to ensure adherence to relevant laws, regulations, and standards by developing, implementing, and maintaining security policies and procedures
• Ensure our Google Workspace and other systems are optimally configured for security
• Oversee Identity Access Management (IAM) protocols to ensure onboarding and offboarding are done correctly and in a timely manner
• Liaise with our MSSP (Managed Security Services Provider) to manage endpoint detection responses, monitor networks and systems, conduct investigations, and respond to incidents
• Work closely with various departments to support and implement cyber security best practices
• Work with third-party providers to ensure correct configuration and timely dispatch of devices
• Be the primary point of contact for users to assist with device setup, security configuration, and supporting the correct use of security software (e.g., 1Password)
• Review and develop appropriate mobile security policies
• Stay informed on emerging cybersecurity threats and implement proactive strategies to mitigate risk

Who You’ll Work With

• Reports to: Director of GRC (during ISO 27001 certification), then CTO
• Team Structure: No direct reports, but strong cross-functional collaboration

What We’re Looking For 🛠️

Technical Skills & Experience:

• 3+ years of IT experience (Security, Service Desk, or Technical Support)
• 1+ years in a Cybersecurity/Information Security role
• Hands-on experience with security tools and Google Workspace (Enterprise level)
• Exposure to ISO 27001 compliance and cybersecurity frameworks
• CompTIA Security+, CISM, or CISSP (preferred but not required)

Soft Skills:

• Strong analytical and problem-solving skills
• Clear and professional written & verbal communication
• Highly organised, motivated, and execution-oriented
• Able to work effectively in a fully remote environment
• A team player with a candid and respectful approach

Why Join Us? 🌟

• Fully remote – work from anywhere in Australia
• Be part of a fast-growing company with a strong security-first culture
• Exciting opportunity to lead security initiatives and make a real impact
• Collaborate with a global team and expand your cybersecurity expertise
• Continuous learning and career development opportunities
• Access to our Unleash+ program that provides up to US$2,500 per year to spend on things that energise you and your family!

Application Process & Timeline 📅

We are reviewing applications on a rolling basis, and the position will close once a suitable candidate is found. Early applications are encouraged—first in, best dressed! If this role excites you, apply now to secure your spot in the process.

Ready to Apply?

Hit “Apply Now” and take the next step in your cybersecurity career! 🚀