Lead Analyst, Governance Risk Compliance

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status. EEO/AA/M/F/Disabled/Vets

Job Description:
About News Corp:
News Corp is a global diversified media and information services company focused on creating and distributing authoritative and engaging content to consumers and businesses throughout the world. The company comprises businesses across a range of media, including: news and information services, book publishing, digital real estate services, cable network programming in Australia and pay-TV distribution in Australia.

What You’ll Do

The Governance, Risk and Compliance (GRC) Lead will have a strong understanding of security and privacy principles as well as a sound understanding of regulatory and compliance requirements affecting the business.

Support and maintain the Cyber GRC Program, including the development, implementation and maintenance of security policies, standards, guidelines and processes to ensure compliance is maintained and risk is mitigated.

We work In a collaborative environment that encourages innovation and challenges the norm, employees have the opportunity to pioneer new ways forward within the industry. With a variety of work where no two days are the same, team members can enjoy engaging tasks that keep them constantly learning and growing. By being exposed to global operations and networks, employees can expand their knowledge and connections on an international scale. Ultimately, working as part of Australia's most influential media organisation allows individuals to make a real difference in the world of media and communication.

**Responsibilities**:
- Engage with key internal and external stakeholders to ensure compliance with PCI DSS, SOX and Privacy compliance requirements and targeted audits and assessments- Perform risk assessments and report on enterprise-wide and third party security controls and services- Support management of audits, external assessments and assurance processes including, but not limited to PCI DSS, SOX and NIST CSF- Report on meaningful metrics, including KPIs and KRIs to measure and track cyber risk and the effectiveness of the Cyber Security function- Conduct compliance readiness assessments against standards
- and framework-based requirements- Track technology and cyber related audit findings and actions- Support user education and awareness training for all employees

Required Experience & Qualifications- 5+ years’ experience within Cyber Security or related fields- Demonstrated experience in governance, risk and compliance in dynamic and complex cyber security, technology and business environments- Experience with Risk Frameworks such as ISO 31000- Strong knowledge and experience with Industry Frameworks and Standards such as NIST CSF, PCI DSS and ISO 27001- Awareness of, and ideally experience with, SOX compliance requirements is desirable- Strong communication skills- Degree Qualification in Information Security, Computer Science, Engineering or similar- Professional security certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar preferred

Location: Sydney, NSW

Working Arrangement: Hybrid - a minimum of three days in office per week

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, protected veteran status, or disability status. EEO/AA/M/F/Disabled/Vets

LI-Hybrid

Job Category: