Compliance Assessor

Exciting time to join a top 100 ASX listed business with big goals
- Hybrid working arrangement - mix of WFH/office in Barangaroo
- Access to a great selection of benefits

We’ve only just begun, but what a beginning. In a once in a generation moment, we’ve brought together powerful brands to create one united force. TPG Telecom has a powerhouse of brands which include Vodafone, TPG, iiNet, Internode, Lebara, AAPT and felix. The latest technology and brave thinking let us connect our people and communities. You could play a role in that. A big one. We invite you to bring your boldness and stand out. You are empowered. Opportunities are plenty for those ready to accept the challenge.

**This opportunity**

Your role and responsibilities will revolve around ensuring adherence to industry standards, regulatory and legislative requirements and internal policies related to information security. You will play a pivotal role in evaluating and enhancing our security practices, collaborating closely with the Senior Compliance Manager, IT teams, Legal & Privacy team, Enterprise Risk, and other identified stakeholders.

Your primary focus will be on conducting audits, monitoring compliance, and identifying areas of improvement. By assessing our security controls, identifying gaps, and providing recommendations, you will contribute to strengthening our overall compliance posture and protecting data customers. Your efforts will also play a crucial role in demonstrating compliance to clients, stakeholders, and regulatory bodies.

You will generally assist with other Compliance activities as agreed with your line manager.

**Responsibilities**
- Perform comprehensive assessments and audits of organisational processes, procedures, maturity and practices to ensure compliance with applicable regulations, standards, and internal policies.
- Evaluate documentation, conducting interviews, and analysing data to identify areas of non-compliance or potential risks.
- Identify gaps or deficiencies in the compliance framework and practices.
- Review current processes with regulatory requirements, industry standards, and best practices to determine areas for improvement and develop actionable recommendations.
- Collaborate with stakeholders and relevant teams to develop strategies for addressing compliance gaps and improving overall compliance posture.
- Offer guidance and support to employees and stakeholders on compliance matters.
- Prepare detailed reports and documentation summarising compliance assessment findings, including identified issues, recommendations, and action plans.
- Maintain accurate records of assessments, remediation activities, and compliance-related communication for future reference and reporting purposes.

**Key Tasks**
- Prepare the organisation for audits, including facilitating necessary documentation and evidence gathering.
- Stay updated on relevant regulations and standards and assess their impact on the organisation's compliance requirements.
- Develop and implement policies, procedures, and controls to address compliance gaps and mitigate cybersecurity risks.
- Collaborate with stakeholders to communicate and reinforce compliance requirements throughout the organization.
- Identify vulnerabilities, gaps, and non-compliance issues and recommend remediation actions.
- Develop and implement monitoring mechanisms to track compliance progress and ensure ongoing adherence to requirements.
- Prepare reports and presentations on compliance status, findings, and recommendations for senior management and relevant stakeholders.
- Establish and maintain a repository of compliance-related documentation, including policies, procedures, and records of compliance activities.
- Ensure compliance documentation is up-to-date, accessible, and readily available for internal and external audits or inspections.
- Advise and guide internal teams on compliance requirements, ensuring they understand and adhere to cybersecurity regulations, standards, and policies.
- Collaborate with IT teams, legal departments, and other stakeholders to develop and implement controls, safeguards, and best practices to address compliance gaps.
- Stay updated on cybersecurity regulations and industry standards:

- Continuously monitor changes in cybersecurity regulations, industry standards, and best practices.
- Stay informed about emerging trends and technologies that impact compliance requirements.
- Coordinate and manage external audits or regulatory inspections related to cybersecurity compliance.

**Knowledge and experience**
- Knowledge of cybersecurity laws, regulations, and industry standards
- Certification in ISO 27001 Auditor or Lead Auditor.
- Familiarity with cybersecurity risk management principles and practices

**Similar roles that you might already have**
- Internal Auditor
- Environmental Compliance
- Risk and compliance officer, specialist, or manager
- IT Auditor
- Quality Assurance Auditor

**About You**:
Your experienc