Current jobs related to IT Security GRC Manager - Sydney, New South Wales - xceltium

  • IT Security GRC Manager

    4 weeks ago

    Sydney, New South Wales, Australia Minter Ellison Full time

    MinterEllison is one of Australia's largest law firms, with nearly 200 years of business history. We're known for our legal and consulting expertise - and for our inclusive and authentic character.Our purpose is to create sustainable value with our clients, people and communities. That means we have a proud history of providing excellence to clients,...

  • GRC Consultant Expert

    7 days ago

    Sydney, New South Wales, Australia Jenkin Beattie Full time

    Job OverviewWe are seeking a Junior GRC ServiceNow Consultant to join our team at Jenkin Beattie. As a consultant, you will play a key role in governance, risk, and compliance projects, supporting enterprise clients in maintaining security, compliance, and risk management frameworks.This is an exciting opportunity for someone with experience in GRC, SecOps,...

  • GRC Governance Expert

    5 days ago

    Sydney, New South Wales, Australia Prezzee Full time

    Job Overview:The GRC Governance Expert will be responsible for supporting our security team's efforts in enhancing our security posture and driving compliance across the organization. This includes implementing and maintaining essential security frameworks, supporting compliance assessments, and collaborating with internal stakeholders.Key...

  • Compliance Officer

    2 weeks ago

    Sydney, New South Wales, Australia GRC Talent Full time

    About GRC Talent:We are a leading talent acquisition firm specializing in risk management and compliance recruitment. Our mission is to connect top professionals with exciting career opportunities in the field.

  • ServiceNow GRC Consultant

    7 days ago

    Sydney, New South Wales, Australia Jenkin Beattie Full time

    2 days ago Be among the first 25 applicantsDirect message the job poster from Jenkin BeattieSenior Consultant | ServiceNow | Microsoft Dynamics 365Junior GRC ServiceNow Consultant – Melbourne/Sydney/BrisbaneStart Date: End of April/MayAbout the Role:We're on the lookout for a Junior GRC ServiceNow Consultant to join a leading consultancy and be involved in...

  • Senior Principal- Grc

    2 weeks ago

    Sydney, New South Wales, Australia Infosys Singapore & Australia Part time

    Location: Sydney/Melbourne, Please do not apply if you reside outside of Australia.Infosys Consulting works with clients to develop and implement innovative strategies and drive process improvements that create business value, including technology-enabled business transformation.We look for opportunities to improve financial, risk and operational performance...

  • GRC Account Growth Manager

    5 days ago

    Sydney, New South Wales, Australia Techium Consulting Group Full time

    About Us:">Techium Consulting Group is a pioneering GRC solutions provider, committed to helping organisations strengthen their governance and compliance practices.">Your Role:">As a seasoned Enterprise Account Manager, you will be responsible for driving client success and fostering long-term partnerships within the GRC domain. You will serve as the primary...

  • GRC Specialist, AWS Security

    2 weeks ago

    Sydney, New South Wales, Australia Amazon Full time

    Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their...

  • Cyber Security Consultant SAP GRC Access Controls Specialist

    2 weeks ago

    Sydney, New South Wales, Australia Avature Full time

    About AvatureAvature is a global leader in recruitment marketing and talent acquisition software. We provide innovative solutions to help businesses attract, engage, and hire top talent. Our mission is to empower companies to make informed decisions and drive business success through data-driven insights and expert guidance.Job OverviewWe are seeking a...

  • Senior Principal- GRC

    2 days ago

    Sydney, New South Wales, Australia Infosys Singapore & Australia Full time

    Location: Sydney/Melbourne, Please do not apply if you reside outside of Australia.Infosys Consulting works with clients to develop and implement innovative strategies and drive process improvements that create business value, including technology-enabled business transformation. We look for opportunities to improve financial, risk and operational...

IT Security GRC Manager

1 month ago

Sydney, New South Wales, Australia xceltium Full time

Lacking a great mentor and leader who will develop you and give you a progression path to elevate your career?

I get it. I've been there. You know what you want but you're not getting it where you are.

You want an environment where you can grow, progress and build your skills.

You want ownership and empowerment where you can make your mark and drive tangible business impact.

You want to work with a company with a mature cyber posture, long term ISO27001 accreditation, modern tooling and where you can help innovate and take them from good to great.

You get excited and motivated to inspire people at all levels to implement and uphold information security best practices and standards.

You want a structured development plan, external training and to be connected to mentors outside your immediate team or employer.

You want a leader who appreciates and values you, who gives you the vision, autonomy and empowerment to learn, grow and be the best version of yourself.

You want recognition, clear goals and accountability. You want a company where you get to do great work with like-minded people and make an impact.

You also know that to be your best at work, you need balance and a focus on your wellbeing and family, so hybrid working and flexibility is also high on your agenda.

What you'll do:

You'll be responsible for managing and maintaining the end-to-end IT security GRC portfolio within the IT security assurance practice. The IT security assurance practice covers cyber risk management, compliance framework and certification program, client assurance and contract reviews, supply chain security, internal audit, and cyber awareness.

You'll develop and lead a high-performing and well-established IT security GRC practice, fostering a culture of excellence, collaboration, and continuous learning. You will implement a robust IT security compliance framework that integrates multiple certifications, frameworks, policies, and standards while maintaining key certifications and internal audits. You will oversee cyber hygiene audits to ensure compliance with regulations, policies, and client contracts. Additionally, you will lead the client assurance program by managing client audits and cyber security contracts. You will collaborate with the Chief Risk Office to manage the cyber risk lifecycle, including risk registers and dashboards. You will lead supply chain cyber risk management through annual reviews and spot checks, maintain cybersecurity awareness and training programs, and provide high-quality reporting on security metrics to senior leadership. You'll also identify opportunities for how AI and emerging technologies can elevate the secure assurance landscape.

Your responsibilities will extend to supporting IT security operations during cybersecurity incidents and ensuring the efficient use of managed security services and external consultants. You will also have people leadership responsibility for one direct report.

Who you'll do it for:

Highly profitable global professional services business with 2,850 staff. This business views technology as a key strategic enabler and has a track record of investment to stay cutting edge. They are very open to new opinions and process improvements. They're a humble, good-humoured and refreshingly down-to-earth business with accessible leadership. They have an award-winning CIO who is highly regarded in the industry. They have high staff engagement scores and strong tenure across their teams, particularly in Technology. This is due to their flat structure and focus on the wellbeing and development of their people.

What you'll need:

  1. Minimum 3 years managing large assurance programs.
  2. Leadership experience, both with direct management of small teams and vendor partners.
  3. Expert knowledge of information security principles, standards and frameworks such as ISO27001. You'll also have familiarity with NIST, APRA CPS234, ASD essential 8 etc.

Next steps from here?

Your CV may not be up to date, no problem. Just send what you have. Alternatively, feel free to call Matthew Downey on 0406 505 591 for an informal chat or send me a message on LinkedIn. Every applicant will receive a response.

#J-18808-Ljbffr