Senior Security Advisor GRC

Overview

Trustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. We uncover threats that others can't and respond quicker than others can to protect against the devastating impacts of cyberattacks. We're a world-class team of cyber consultants, threat hunters and researchers serving clients in 96 countries. At Trustwave, you can learn alongside the best, make a personal impact on a global scale, and solve new challenges every day. Learn more about us at https://www.trustwave.com.

• $5k and 5 days' training / continued education allowance per year
• Career growth - receive mentoring, coaching, and support to progress your career
• Flexible work arrangements and a supportive team (you\'ll never feel alone)

Everyone's voice matters here. We aren't looking for passengers, we're looking for those interested in an opportunity to develop their skills and experience in information security and make a real difference.

About the role

Trustwave is seeking a versatile Senior Security Consultant who can provide a broad range of advisory services, covering security strategy, governance, risk, audit and compliance topics, as well as possessing enough of a technical background to be able to confidently work within high-complexity environments. Naturally we expect most candidates will be stronger in certain disciplines; and we are happy to look at candidates with varying strengths provided there is a versatility across all. If you like risk analysis vendor security assessment methodologies in the same way most people like donuts or kittens (or both), then we want to hear from you

Your day to day tasks will vary considerably – from leading and delivering client projects, working with clients / prospective clients and identifying their security needs and whether we can assist, mentoring and coaching more junior staff and more.

Typical delivery tasks

• Undertaking security threat and risk assessments
• Developing security strategies and roadmaps
• Developing and reviewing solution / capability design artefacts
• Developing and refining policies, standards, principles and strategies, and assessing their effectiveness
• Assisting in the evaluation of emerging technologies, service providers, tools, platforms and applications that are best suited to the specific needs of a given organization
• Delivering security architecture advice (particularly surrounding cloud services)

Job Requirements

• Top-notch written and verbal communication skills
• An analytical mindset (particularly when it comes to technology and business risk)
• An ability to deliver multiple consulting projects at a high quality, often under pressure, while also developing strong relationships with our customers
• Self-starting team mentality; can take ownership and lead GRC engagements with minimal guidance and provide coordination of others.
• Demonstrable evidence of strong stakeholder engagement skills, delivering high quality policies and standards to deadline and budget.
• Has conducted risk assessment and proposed mitigating controls
• Has played a significant role in assisting on or more organisations through an ISO 27001 certification and / or SOC 2 attestation
• ISO 27001 Lead Auditor / Lead Implementor or higher

Desired Skills and Experience

• Awareness of Australian and international privacy regulations
• Awareness of the Security of Critical Infrastructure Act and its obligations
• Experience considering security practices for AD & Azure / AWS / GCP environments.
• CISA / CISM / CRISC / CISSP

Education

• A high school diploma or equivalent is required; a college or university degree is a plus.

To All Agencies

Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave's policy is to only accept resumes from agencies via the Trustwave Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Consulting

Industries

• Computer and Network Security

Referrals increase your chances of interviewing at Trustwave, A LevelBlue Company by 2x

Sign in to set job alerts for 'Security Advisor' roles.

Brisbane, Queensland, Australia 1 week ago

#J-18808-Ljbffr

---