• Melbourne based, Full time and perm on a hybrid basis (4 days in the office).
• Play a key role in implementing ISO 27001 & ASD ISM compliance frameworks.
• Gain hands-on experience in risk, internal audits, and incident response.

We're partnering with a growing organisation that takes information security seriously and values structured, standards-based compliance. They're looking for a motivated GRC Officer to join their team, gain exposure to senior stakeholders, and contribute to keeping operations and client services secure and aligned with best practices.

About the role:

• Assist in drafting, reviewing, and updating security policies, procedures, and guidelines
• Maintain documentation for ISO 27001 and ASD ISM compliance requirements
• Conduct risk assessments, monitor control effectiveness, and support risk treatment plans
• Perform compliance checks, internal audits, and support remediation efforts
• Support security awareness programs, training sessions, and promote a culture of proactive risk management
• Assist with incident response activities, client/vendor engagements, and compliance reporting

About you:

• 2-4 years of experience in GRC, cybersecurity, or IT audit roles
• Working knowledge of ISO/IEC 27001 and ASD ISM frameworks
• Strong attention to detail and excellent organizational skills
• Ability to communicate clearly with both technical and non-technical stakeholders
• Bachelor's degree in IT, Cybersecurity, Risk Management, or a related field

If you're ready to grow your career in a supportive environment and play a key role in shaping an organisation's governance and compliance posture, apply now!