Cyber Compliance Analyst
2 months ago
The McMillan Shakespeare Group (MMS) is a trusted provider of salary packaging, novated leasing, disability plan management and support co-ordination, asset management and related financial products and services. From our origins in 1988 when we created Australia's salary packaging industry to today, MMS has a proud history of innovation and exceptional service.
Through our subsidiaries, we offer a breadth of services and expertise designed to responsibly deliver superior long-term value to our clients and customers, which include Federal and State governments and some of the largest public and private sector, health and charitable organisations.
At the heart of achieving this mission is our team. Driven by a passion for the work we do, we work together with our customers to make a real difference to people's lives.
MMSG has several compliance obligations imposed by the regulatory and contractual environment in which we operate. The Cyber Compliance Analyst is tasked with analysing and monitoring strict compliance of internal IT general and cyber controls, providing support in internal and external audits and contributing to improving risk posture of our digital and traditional on-premises services.
A key component of the role is monitoring compliance of IT security controls (ISO27001, ASD (Essential Eight), NIST), conducting risk assessments, managing security education and awareness programs, ensuring staff and 3rd parties are abreast of due diligence and compliance requirements, writing business communications about new security threats and working with IT functional teams and business stakeholders to ensure baseline security requirements are met and assets remain protected within these functional areas.
The Cyber Compliance Analyst is also responsible for developing, maintaining and reporting risk management frameworks that aim to protect the confidentiality, availability and integrity of group assets including data. The role also requires experience in IT General controls and/or IT Audits, preferably from a Big4 or consulting experience background.
**Key Responsibilities**:
- Map existing contracts against security standards identifying potential gaps in compliance and for input into the information security policy and standards
- Provide support and relevant guidance to external IT auditors and ensure relevant artefacts are timely provided
- Evaluate cyber-security standards including NIST, ASD (Essential Eight), ISO27001 and PCI DSS for alignment with internal frameworks
- Ensure internal security standards, policy, audit, and contracted security requirements are communicated across the business and with 3rd Parties
- Ensure 3rd parties comply with all relevant due diligence obligations and provide regular attestations
- Manage the cyber-security education, training and awareness program and educate employees in security best practices
- Periodically conduct security reviews and workshops to report business effectiveness in meeting documented standards, controls, and compliance to contractual or policy objectives
- Oversee the Information, Communication and Technology Risk management framework
- Conduct regular risk assessments and workshops to ensure risks to the organisation are assessed and understood, and are fed back to stakeholders to ensure the continued effectiveness of the risk management strategy
- Contribute to improve risk posture, contribute solutions for remediating or mitigating risks and assess residual risks
- Work with all stakeholders to educate and identify controls and compliance requirements that are applicable
- Respond to information security incidents, as requested
- Maintain and develop cyber incident response processes and procedures when new threats to the organisation arise
- Be an active participant in incident management to support controlled and coordinated responses
- Contribute to policy development
- When necessary, prepare Post Incident Reviews
- Any other security risk and compliance initiatives, as requested.
**You will bring**:
- Experience with IT General Controls and/or IT Audits is essential
- Experience with legal and regulatory obligations such as the Australian Privacy Principles.
- Experience with ISO27001 -a formal certification is a basic requirement
**Not essential but advantageous if you have experience in**:
- IT Security and Risk Management such as ISO 31000
- ASD Essential Eight = preferred but not compulsory
- NIST = nice to have but not essential
- PCI DSS = nice to have
- CRISC Certification - nice to have
**What we can offer you**:
- Our strong people-first culture
- Flexible/hybrid working to enhance your work/life balance
- Novated lease benefits and discounts
- 12 weeks Paid Parental leave and access to our Parents Portal
- Exempt Employee Share Plan
- Paid Income Protection Insurance under MMSG default Super plan
- Access to a broad range of learning and development programs
- Career break and volunteering leave
- Access to Emp
We have other current jobs related to this field that you can find below
-
Cyber Compliance Analyst
2 months ago
Melbourne, Australia McMillan Shakespeare Group Full timeCyber Compliance Analyst The McMillan Shakespeare Group (MMS) is a trusted provider of salary packaging, novated leasing, disability plan management and support co-ordination, asset management and related financial products and services. From our origins in 1988 when we created Australia's salary packaging industry to today, MMS has a proud history of...
-
Cyber Compliance Analyst
4 weeks ago
Melbourne, Australia McMillan Shakespeare Group Full timeCyber Compliance Analyst The McMillan Shakespeare Group (MMS) is a trusted provider of salary packaging, novated leasing, disability plan management and support co-ordination, asset management and related financial products and services. From our origins in 1988 when we created Australia's salary packaging industry to today, MMS has a proud history of...
-
Senior Business Analyst Cyber Security
2 weeks ago
Melbourne, Victoria, Australia Cyber Crime Full timeLead and manage requirements for cyber security initiatives and improvementsDevelop business cases and cost-benefit analyses for cyber security investmentsMax term contractProgram Visionary: Lead Business Analysis for Cyber SecurityInsignia Financial is transforming its cyber security landscape with a strategic 3-year program, encompassing four strategic...
-
Senior Business Analyst Cyber Security
2 weeks ago
Melbourne, Victoria, Australia Cyber Crime Full timeLead and manage requirements for cyber security initiatives and improvementsDevelop business cases and cost-benefit analyses for cyber security investmentsMax term contractProgram Visionary: Lead Business Analysis for Cyber SecurityInsignia Financial is transforming its cyber security landscape with a strategic 3-year program, encompassing four strategic...
-
Senior Business Analyst Cyber Security
2 weeks ago
Melbourne, Victoria, Australia Cyber Crime Full timeLead and manage requirements for cyber security initiatives and improvements Develop business cases and cost-benefit analyses for cyber security investments Max term contract Program Visionary: Lead Business Analysis for Cyber Security Insignia Financial is transforming its cyber security landscape with a strategic 3-year program, encompassing four strategic...
-
Cyber Compliance Analyst
2 weeks ago
Melbourne, Victoria, Australia McMillan Shakespeare Group Full timeThe McMillan Shakespeare Group (MMS) is a trusted provider of salary packaging, novated leasing, disability plan management and support co-ordination, asset management and related financial products and services. From our origins in 1988 when we created Australia's salary packaging industry to today, MMS has a proud history of innovation and exceptional...
-
Cyber Grc Analyst
4 weeks ago
Melbourne, Australia FourQuarters Full time**The Company** *** This large critical infrastructure organisation has a multitude of projects in the pipeline across 3rd party risk and Identity. Due to this, a new role for a Cyber GRC Analyst has been created to perform the work above as well as generalist security governance, risk and compliance functions. **The Role** This job opportunity would...
-
Grc Cyber Analyst
2 weeks ago
Melbourne, Australia Arup Full timeA career at Arup offers you the chance to make a positive difference in the world. Independently owned and independently minded, we attract a diverse mix of people to work on ground-breaking global projects. We have an ambitious commitment to be the digital leader in the built environment and have digital teams and experts all over the world, who collaborate...
-
Governance, Risk, and Compliance Analyst
3 weeks ago
Melbourne, Australia Staffx Pty Ltd Full time**About the Company** This IT Services and IT Consulting company is an Australian company that has core competencies in banking and financial services. They work with leading and local companies across the APAC region. Their highly skilled, talented IT specialists are experts in their fields, and employees are placed in key value-adding roles with our...
-
Cyber Risk Analyst
3 weeks ago
Melbourne City Centre, Australia HAYS Full timeCyber Risk Analyst, Melbourne CBD, 6- month contract, $900.00 - $1000.00 p/d + Super **Your new company** This role sits with organisation collaborate with aerospace industry, for our client looking for a Security Risk Analyst to join their cyber security team. **Your new role** As a Cyber Risk Analyst you’ll be joining the team to coordinate IT risk...
-
Head Of Cyber Security Strategy
2 weeks ago
Melbourne, Victoria, Australia Cyber Crime Full timeHead of Cyber Security Strategy & Governance Insignia Financial Helping Australians secure their financial wellbeing. View company page Champion transformation, building a future-proof cyber security framework for Insignia Financial Lead an expert team, fostering a culture of security awareness and best practices Position Insignia Financial as a cyber...
-
Cyber Security Analyst
7 days ago
Melbourne, Australia Ignite Specialist Recruitment Services Full timeContract Type Contract Reference BH-369650 Industry IT Salary Negotiable - The Security Expert will provide services as a senior information and cyber security analyst, to oversee the technical implementation and delivery of a suite of priority cyber security services to the department and its partners, including the Australian Signals Directorate...
-
Cyber Grc Analyst
2 weeks ago
Melbourne, Victoria, Australia FourQuarters Full timeThe Company***This large critical infrastructure organisation has a multitude of projects in the pipeline across 3rd party risk and Identity.Due to this, a new role for a Cyber GRC Analyst has been created to perform the work above as well as generalist security governance, risk and compliance functions.The RoleThis job opportunity would suit someone who has...
-
Cyber Security Analyst
4 weeks ago
Melbourne, Australia Public Sector People Full timeAs soon as possible start - Hybrid working - Inner Melbourne location - $700 daily rate + super **Public Sector People (PSP) **are currently looking to speak to a **Cyber Security Analyst** would be interested in a 6-month contract within Local Government. - _As soon as possible start date _ - _6-month contract with potential extension_ - _Inner Melbourne...
-
Grc Cyber Analyst
2 weeks ago
Melbourne, Australia Arup Full time**Joining Arup** Arup’s purpose, shared values and collaborative approach has set us apart for over 75 years, guiding how we shape a better world. As a governance, risk and compliance (GRC) cyber analyst for our growing global cyber security team you will help protect Arup’s digital infrastructure and data from cyber-attack. You will help to assess...
-
Cyber Security Analyst
2 weeks ago
Melbourne, Victoria, Australia Ignite Specialist Recruitment Services Full timeContract TypeContractReferenceBH-369650IndustryITSalaryNegotiable The Security Expert will provide services as a senior information and cyber security analyst, to oversee the technical implementation and delivery of a suite of priority cyber security services to the department and its partners, including the Australian Signals Directorate (ASDs) recommended...
-
Cyber Security Analyst
4 weeks ago
Melbourne, Australia Caleb and Brown Pty Ltd Full timeCaleb & Brown is the world’s leading cryptocurrency brokerage, providing a professional service by which our clients can safely buy, sell and swap cryptocurrencies through their very own personal broker. Founded by a small team of crypto experts in 2016, we have grown to a team of 55 staff with offices in Australia and Europe, serving 20,000 clients across...
-
Cyber Security Analyst
2 weeks ago
Melbourne, Victoria, Australia Compare Club Full timeSt Kilda Rd office with flexible working environment Vibrant & inclusive culture Small, dynamic team, where a proactive, problemsolving approach is requiredCompare Club is one of Australia's leading personal finance marketplaces. We have over 280 employees across Melbourne, Sydney, Brisbane. Our experts make it easy to find better value health insurance,...
-
Cyber Security Analyst
3 weeks ago
Melbourne City Centre, Australia Parliament of Victoria Full timeParliament of Victoria - Department of Parliamentary Services We have an exciting opportunity for a Cyber Security professional. Reporting to the Cyber Security Coordinator you will work closely with the IT Team on Cyber Security activities within the Parliament of Victoria. You will play a vital role in keeping Parliament's proprietary and sensitive...
-
Cyber Security Analyst
2 weeks ago
Melbourne City Centre, Victoria, Australia Parliament of Victoria Full timeAbout the roleWe have an exciting opportunity for a Cyber Security professional. Reporting to the Cyber Security Coordinator you will work closely with the IT Team on Cyber Security activities within the Parliament of Victoria. You will play a vital role in keeping Parliament's proprietary and sensitive information secure.As Cyber Security Analyst you will...
