▷ [15h Left] GRC Security Consultant

Spirit Managed Services is now branded Infotrust. SOCEmergency Number: 1300 554 798

GRC Security Consultant

Brisbane, QLD Home Careers GRC Security Consultant

Let’s Get STARTED

CONTACTUS CALLUS

The Security Consultant will work with the wider Consulting team, responsible for the development and delivery of Governance, Risk and Compliance services. This involves the end-to-end delivery for our customers and to a certain extent, business development.

A key part of the role will involve directly engaging customers to provide security consulting, aligned to deliverables. These include information security assessments, information security awareness, risk assessments and more.

The role will also involve working with the Sales teams and Pre-Sales teams across Infotrust.

Responsibilities

1. Delivery of Consulting Services

- Information Security Assessments

- Information Security Awareness consulting

- Pre-sales - working with the sales function to present and respond to technical requirements

- Technical expertise on specific services/products for pre-sales for key/large enterprises as/when needed

- Delivery of consulting services to clients, as per the scopes of work that are signed before commencement

- Delivery of ad-hoc advisory to clients within the realms of information security, governance, risk and compliance

- Evangelise security best practice, research and knowledge sharing amongst customers and prospective customers

2. Services Delivery Management

- Adhere and contribute to SLA’s, metrics, reporting, project scoping and management, customer escalation, engagement management, etc

- Management of internal security governance, risk and compliance - using the ‘eating our own cooking’ approach.

Key Competencies & Experience:

- Develop Information security governance & risk management strategies, frameworks (ISO27001 & PCI-DSS), policies, standards and metrics to measure maturity of overall security operations in alignment with business priorities and its tactical/strategic objectives

- Perform reviews, assessments and system implementations based on industry/regulatory requirements such as ISO27001, NIST Cybersecurity Framework, Australian ISM, etc).

- Scope required activities and perform project estimates as required, ensuring that consulting activities defined in these scopes are delivered to the highest standards

- Engage in skills transfer - both internally and with customers

- Deliver assignments securely on time within budget and share results and recommendations to both technical and non-technical customers, in the form of either in-person presentations, written or verbal reports

- Develop and maintain strong relationships with customers through timely delivery of projects

- Conduct project management, where required

- Maintain InfoTrust’s internal security standards and confidentiality of customer material as defined in out ISO 27001 aligned ISMS

- Performing reviews and assessments based on industry and regulatory requirements including ISO 27001, NIST Cybersecurity Framework, PCI DSS, Essential Eight, CPS 234 and the Australian Information Security Manual

Skills:

- Minimum of 2-3 years’ experience in IT, preferably in information and cybersecurity

- Minimum 1-2 years’ experience in GRC focussed role

- Experience in conducting IT security and cyber/information security assessments

- Experience assisting with audits (internal & external) and auditors

- Proven track record building strong relationships with key business leaders and stakeholders

- Practical understanding of Information Security Standards & Frameworks, for e.g. NIST CSF, ISO 27001, GDPR, ASD, ISM

- Good to have – 1 or more professional Information Security certifications (ISO 27001, CISSP Associate, CompTIA Security+ or equivalent)

Personal Attributes:

- Strong Stakeholder management capabilities

- Outstanding verbal and written communication

- Adaptability to change

- Ability to align Cyber/Information Security objectives with key business goals

- Prepared to act as a ‘hands-on’ leader, as required

How to Apply

Please send resumes to: pauline.tabirara@infotrust.com.au

Would You Like to Know More?

Contact Us

Connect with us:

Services

- Offensive

- Defensive

- Compliance

- Managed SOC

- Secure Modern Workplace

- Network Security

- Managed IT Support

Solutions

- Secure Email Ecosystem

- Secure Endpoint

- Secure Cloud Access

- Secure Network

Business Challenges

- Building Ransomware Resilience

- Preventing Data Breaches

- Driving Security Connectivity

- Ensuring Regulatory Compliance

- Managing Cyber Security Awareness

- Industries

Company

- About Us

- Careers

- Investor Hub

- Resources

- Contact Us

Terms and Conditions Privacy Policy Copyright © 2025 Infotrust ABN 86 169 030 568. All Rights Reserved.

#J-18808-Ljbffr