Cyber Security Risk and Compliance Specialist

1 week ago

Sydney, Australia THE ICONIC Full time

**Cyber Security Risk and Compliance Specialist**

At THE ICONIC, innovation drives us; we believe that innovation should not be sitting in a siloed team but rather be part of everyone and everything we do & deliver. Every person in tech has a voice and we find that our best work is achieved through collaboration (usually over a coffee in front of a whiteboard).

We have over 100 people in tech. This means that our skills and experience are diverse, allowing for greater collaboration and constant learning. All of our teams are cross-functional, mission-driven and able to iterate from inception to production (DevOps mentality) without being blocked or having to ask permission from other teams. We love to move fast and validate learning using data (lucky for us our Data Science & Analytics team is also world-class)

As part of THE ICONIC's growing Security team, you will be responsible for helping continuously improve the overall security landscape for THE ICONIC. You will be responsible for performing testing and ensuring compliance for local and global security standards. You will work closely with our stakeholders to enhance all aspects of THE ICONICs cybersecurity practices as they work to implement the changes you recommend.

**What's involved**

You will be working in an agile environment on enterprise-level, high-quality software to support THE ICONIC as a leader in the online retail space allowing you to constantly adapt technology to maintain a safe and secure environment for our customers, employees and business.

**About you**
- We are looking for the below skills and experience:_
- +2 years experience with compliance testing against ISO27001 or NIST 800-53
- +2 years experience in IT Audit, operations, or risk consulting
- +1 year experience in risk-based visibility and reporting
- +1 year experience in audit and reporting tooling for risk reporting and remediation
- Experience with the following a plus_
- SACA CISA, ISO 27001 Lead Auditor certification
- Knowledge of, or experience working with, at least one cloud platform including AWS, Azure, or GCP technologies/environments.
- Experience working with Information Security, GRC, ERM, Technology, Business, and Legal/Privacy functions
- Strong verbal and written communication skills, including the ability to provide technical thought leadership on security risk calls with other technology teams, and the ability to translate complex technical concepts into plain English for consumption by non-technical audiences.
- Familiarity with agile and lean software development

**Life at THE ICONIC...**

**Additional Information**:

  • Cyber Security Consulting Team Lead

    7 days ago

    Sydney, Australia Vertex Cyber Security Full time

    **Core Duties**: The Cyber Security Consulting Team Lead manages the Consulting Team to deliver end-to-end cyber security consulting services, undertaking duties that include, but are not limited to: - Conducting comprehensive cyber security risk assessments and audits of client technical environments (cloud and on-premise) and policies and procedures,...

  • Lead Cyber Security Consultant

    2 weeks ago

    Sydney, New South Wales, Australia Skylight Cyber Security Full time $120,000 - $180,000 per year

    About Skylight CyberAt Skylight Cyber, we're young, transparent, and culture-focused boutique cyber security firm specialising in providing high-end services to enterprises globally. We provide our customers with world class expertise to build and continuously evolve an effective security stack across people, process, and technology.We thrive and are...

  • Cyber Governance, Risk, and Compliance

    3 days ago

    Sydney, New South Wales, Australia AI Talent Full time $70,000 - $120,000 per year

    About the RoleWe are seeking an experienced Cyber Governance, Risk, and Compliance (GRC) Specialist to lead the implementation and continuous improvement of our organisation's cybersecurity governance framework. This position is pivotal in ensuring that our systems, data, and infrastructure adhere to internal policies and external regulatory obligations,...

  • Cyber Security Compliance

    2 weeks ago

    Sydney, Australia QBE Full time

    Primary Details Time Type: Full time Worker Type: Employee- Location: Sydney- Type: Permanent, full time The opportunity The role works to make QBE safe, secure and resilient; working to continuously out pace and outsmart cyber threat faced by our business. This intellectually challenging and highly influential role is a technical and people leader...

  • Cyber Governance, Risk, and Compliance

    4 weeks ago

    NSW - Sydney - City & Inner West, Australia AI Talent Pty Ltd Full time

    About the Role We are seeking an experienced Cyber Governance, Risk, and Compliance (GRC) Specialist to lead the implementation and continuous improvement of our organisation’s cybersecurity governance framework. This position is pivotal in ensuring that our systems, data, and infrastructure adhere to internal policies and external regulatory obligations,...

  • Manager Cyber Governance, Risk and Compliance

    7 days ago

    Sydney, Australia TAL Full time

    Company Description Welcome to This Australian Life. From the millions of Australians we protect, to those that make it happen every day at TAL, people really are what we’re all about. We want to grow with you. Achieve with you. And support you to do your best work. That's why we're focused on developing leadership, promoting diversity, rewarding...

  • Cyber Security Specialist

    5 days ago

    Sydney, Australia SyncUp Full time

    Work with industry leaders in cybersecurity - Competitive salary + benefits - Career growth opportunities & ongoing training Are you a skilled **Cyber Security Specialist** looking to make a real impact? SyncUp is working with a leading organization in the Sydney CBD who is looking to find top talent in **cybersecurity, network defense, and risk...

  • Cloud Cyber Security Specialist

    5 days ago

    Sydney, Australia IT People Australia Pty. Ltd. Full time

    CyberSecurity - Cloud Risk & Compliance - Azure Compliance & Security Controls **The Role** Senior Consultant - Cloud Cyber Security Specialist **Essential Skills**: CyberSecurity -cloud Risk & Compliance ,APRA knowledge ,Azure Compliance & Security Controls / Threat Modelling,CDaaS Pipeline (framework to onboard use - Cloud security & risk control...

  • Cloud Cyber Security Specialist

    5 days ago

    Sydney, Australia Starling Services Full time

    **_Cloud Cyber Security Specialist - Sydney_** **_ Job Type - Contract (4-5 Months)_** **_ Contract Type - Full Time_** Starling Services is an Australian owned primary player in recruitment, resource management and facility management services in Australia. The footprints of Starling Services are spread among all segments of the industries - Logistics,...

  • Manager Cyber Risk

    1 day ago

    Sydney, Australia Commonwealth Bank Full time

    **See yourself in our team**: The Technology and Operations (Tech & Ops) Risk team is responsible for providing specialist Operational Risk and Compliance (OR&C) advice and assurance of decisions made across the Technology, Chief Operating Office, and Business Unit divisions. **Do work that matters**: The Manager Cyber Risk plays and essential role within...