Grc Specialist

**Join our Team**:
Our aim is to change the tech industry, with you beside us. We’re renowned for partnering with Australia’s most progressive, forward-thinking businesses that share our vision of a future where technology is the enabler of bolder, faster, and smarter ways of operating.

We are passionate about what we do, how we do it, and most importantly, why we’re doing it. And we’re just as hungry for your growth and success as we are for ours. In fact, the two should go hand in hand.

At Tecala, we’re proud to be a Great Place To Work Certified organisation and to have been listed in Australia’s Best Workplaces in Technology List. These accolades reflect our commitment to fostering an environment where our team can thrive. We’re always looking for incredible talent in full-time, part-time, and freelance capacities. If Tecala sounds like the kind of business you’d like to be a part of, let’s chat

**GRC Specialist**

**WHO ARE WE?**:
Tecala is an award-winning national ICT managed services provider. We work hard to help our customers transform their businesses through the innovative use of technology and need more great people to join our vibrant and growing team.

We pride ourselves on our reputation for quality and consistently delivering the right solution for our customers. You have the opportunity to become part of a supportive team, working together to provide solutions that make a difference to our broad customer base. If you are passionate about technology and motivated by assisting customers in improving their ICT operations, you will thrive with us.

**about THE ROLE**:
Reporting to the Cyber Security Manager. The primary function of this role is to manage and maintain compliance certifications (ISO27001, DISP, PCI-DSS) for both Tecala and our customers. The role also ensures alignment with key standards and frameworks. This is achieved through proactive technical guidance, robust risk management, comprehensive framework alignment, internal audits, and overseeing external audits.
- Implementing and maintaining compliance controls and certifications, including ISO27001, DISP and PCI-DSS, for Tecala and its customers.
- Provide technical guidance for compliance controls, collaborate with departments to align with standards, and recommend enhanced security tools and processes.
- Identify, assess, and mitigate information security risks while developing and implementing risk management strategies.
- Assist customers with compliance queries and adherence to applicable standards.
- Ensure alignment with frameworks such as Essential 8 and CIS.
- Develop and deliver compliance training programs while promoting a culture of compliance and continuous improvement.
- Manage internal and external audits and generate compliance reports for senior management and customers.

**WHAT WE’RE LOOKING FOR?**:

- Certifications: CISA, CISSP, ISO27001 Lead Implementer/Auditor (desirable/but not required).
- Proven experience in a GRC role with a focus on technical compliance, and maintenance of both controls and certifications.
- In-depth understanding of ISO27001, DISP, CPS234, Essential 8, NIST, SOC2 and CIS frameworks.
- Extensive experience with risk management and audit processes.
- Demonstrable experience in leading org change management in support of GRC.
- Strong technical capability in leading compliance controls implementation.
- Excellent analytical and problem-solving abilities.
- Strong communication and interpersonal skills.
- Ability to work independently and collaboratively and experience working within an MSP, ISP or NOC/SOC-oriented organisation is highly regarded.

**WHAT CAN WE OFFER YOU?**:
As part of our team, you’ll be able to learn and grow in a supportive environment. We were certified as a Great Place to Work for 2023 and 2024 and ranked in the top 20 of Australia’s Best Workplaces in Technology 2024.

We have listed some of those benefits below for you:

- Paid Birthday Leave.
- Health & Wellness perks including discounted gym membership.
- Access to ongoing Learning & Development opportunities, including self paced learning through our learning management system.
- Access to Career Pathways so you can continue to build a career in the business.
- Reward & Recognition Program where you can also thank and reward your team mates.
- Employee discounts - Access discounted rates and offers from a variety of providers, including health insurance and IT Hardware.
- Employee Assistance Program (EAP).

**Note**:As an essential part of our hiring process, you will be required to undertake a National Criminal History Check.

**HOW TO APPLY**:
No agencies, please - we’ve got this one covered.
- Which of the following cybersecurity certifications have you completed?
- Which of the following statements best describes your right to work in Australia?
- Do you have a current Police Check (National Police Certificate) for employment?
- How many years’ experience do you have as