Job Description:

Governance, Risk and Compliance Cyber Lead

Job Summary:

Our client is seeking a skilled and experienced professional to lead the governance, risk, and compliance (GRC) functions within their Cyber Security team. This role is pivotal in ensuring that both existing and new IT systems align with the organisation’s cybersecurity and risk management standards. Acting as a trusted advisor, the successful candidate will engage with internal and external stakeholders to drive strategic GRC initiatives and enhance the organisation’s overall cyber security posture.

What’s in it for you?

• An attractive salary of circa $180K + Super
• Influence key decisions for defence/intelligence against supplier requirements.
• Be a key resource in the cyber team, to help drive the direction by liaising with internal and external stakeholders.
• Work in a unique, challenging and rewarding environment
• Collaborative, team-based culture.

What will you be doing?

• Leading the charge on cyber security GRC initiatives across the organisation.
• Building and managing systems and processes that keep our cyber security posture strong.
• Writing and maintaining policies, procedures, and compliance documents.
• Coordinating system authorisation activities with internal teams and external partners.
• Helping design secure architecture for our operations.
• Running risk assessments and managing cyber risk data within our enterprise frameworks.
• Reporting on performance metrics for corporate and executive audiences.
• Working closely with stakeholders and vendors to roll out security solutions.
• Building strong relationships across the business to support key objectives.
• Navigating risk across multiple systems in a fast-moving environment.
• Managing risk in a complex technical ecosystem.
• Developing cyber security solutions that meet Defence accreditation standards.
• Juggling priorities in a small, agile team.
• Supporting governance outcomes for government clients.

Skills and experience required to succeed in this role?

• Solid experience in cyber security GRC and a good grasp of modern frameworks.
• Strong understanding of cyber security and networking principles.
• A knack for reducing risk and improving system security.
• Great teamwork skills, especially with IT Operations.
• Knowledge of the MITRE ATT&CK Framework.
• Familiarity with DSPF, ISM, and the Essential Eight.
• Sharp analytical thinking and problem-solving abilities.
• Clear communication skills – both written and verbal.
• Ability to work well with both technical and non-technical people.
• Experience with Defence ICT system accreditation.
• Technical writing skills.
• Industry certifications like CISSP, CISM, CRISC, or ISO 27001.
• NV2 clearance (or the ability to get one).

How to apply?

To apply and be considered for this role, please apply through the link in this add and share a current resume/CV for review. If suitable, you will be contacted for an initial screening and for us to share more information.