Grc Specialist

1 week ago


Sydney, Australia Capstone Full time

6 Month Contract + Further Extensions
- Sydney Location
- 1 Day in the Office - Great Daily Rate $$$

**GRC Analyst/Specialist - Archer**

We currently seek an experienced GRC Analyst/Specialist that can manage Cyber Security Risk & Compliance capabilities including reporting, confirmation, reviews, and mitigation activities.

You will also be required to setup and configure recent Archer implementation with key data such as risk library, attestation questionnaires, policy clauses, metrics.

You will be an experienced individual that can work well with a global team and is self-motivated and driven and can equally work alone based on clear requirements and expectations.

**Key focus areas and capabilities will be as follows**:

- Significant and proven experience setting up and configuring Archer to support Cyber GRC processes.
- Experience with Cyber GRC processes and in particular experience with the NIST Framework.

**Key areas of responsibility, include configuring Archer to deliver the following**:

- **Risk management** - setting up risk libraries and developing risk management processes.
- **Audit and compliance management** - setting up self-attestation questionnaires and developing an annual audit and compliance programme.
- **Project Review** - developing process & associated Archer configuration.
- **Third Party Risk Management** - setting up Archer to allow business units to complete tiering and reviews and provide a global view and reporting of vendors and risks.
- **Security Controls Library** - setup Archer with security controls and map these to NIST Categories and sub-categories.
- **Maturity Assessment** - Setup a self-service maturity assessment process in Archer, providing a view of maturity against the NIST framework.
- **Exemption management** - include risk library and controls libraries support the exemption process.
- **Metrics & Reporting** - configure Archer to provide operational and executive level reporting to cover the abovementioned domains.

**Expertise Required**
- 5+ years of work experience in information security and audit, particularly in the Governance, Risk and Compliance area.
- 5+ years of experience with regulatory compliance and security management frameworks (e.g. ISO27000, COBIT, NIST 800.
- Proven experience analysing, applying, and reporting on requirements relating to Cyber Security compliance and risks.
- Proven experience setting up and working with Archer, SharePoint, Teams and Business Analytics reporting tools like Power Bi.
- Has good judgment, a sense of urgency and has demonstrated commitment to high standards of ethics, regulatory compliance, customer service and business integrity.
- Has the ability to interface with, and gain the respect of, stakeholders at all levels and roles.



  • Sydney, Australia Austcorp Executive Full time

    12 month contract w/ extensions likely - Huge cyber security uplift and restart program - Excellent contract rates and WFH flexibility This large enterprise organisation is looking for an experienced **Cyber Security GRC Specialist** to join support the CISO in a huge Greenfield cyber security uplift program of work. The goal of the role is to establish...

  • GRC Sr Analyst

    2 days ago


    Sydney, New South Wales, Australia Sonic Healthcare Full time $90,000 - $120,000 per year

    Company DescriptionSonic Healthcare is an internationally renowned healthcare provider, headquartered in Sydney, specializing in pathology, radiology, and primary care medical centers. The company is an ASX Top 50 company and operates in Australia, the USA, Germany, Belgium, Switzerland, the United Kingdom, Ireland, and New Zealand. Sonic Healthcare's core...

  • Information Security

    2 weeks ago


    Sydney, Australia Decipher Bureau Full time

    Are you a Senior GRC consultant looking to move into an internal role? - Global enterprise (1800 people worldwide in 14 countries) - Hybrid work culture & overseas opportunities Are you interested in moving from your consulting role into this internal opportunity within a global enterprise? You would be responsible for ensuring that the company is...


  • Sydney, New South Wales, Australia Ampol Full time

    OverviewSenior Cyber GRC Specialist role at Ampol. Ampol is Australia's only owned fuel brand, with a focus on delivering value through technology and data-driven transformation.About the roleThe Cyber, Risk & Governance teams protect Ampol Group's reputation and social license to operate by enhancing cyber resilience. The Senior GRC Analyst will support...


  • Sydney, New South Wales, Australia Ampol Full time

    OverviewSenior Cyber GRC Specialist role at Ampol. Ampol is Australia's only owned fuel brand, with a focus on delivering value through technology and data-driven transformation.About the roleThe Cyber, Risk & Governance teams protect Ampol Group's reputation and social license to operate by enhancing cyber resilience. The Senior GRC Analyst will support...


  • Sydney, Australia Snowy Hydro Full time

    **About Snowy**: Snowy Hydro is a dynamic, integrated energy business that has been providing on-demand, reliable energy to Australia for generations. Snowy Hydro owns and operates a powerful combination of generation assets, including the mighty Snowy Mountains Scheme, gas and diesel plants, and contracted wind and solar energy. We also provide electricity...


  • Sydney, Australia Diligent Corporation Full time

    **About Us** Diligent is the global leader in modern governance, providing SaaS solutions across governance, risk, compliance, audit and ESG. Empowering more than 1 million users and 700,000 board members and leaders with a holistic view of their organization's GRC practices so they can make better decisions, faster. No matter the challenge. At Diligent,...


  • NSW - Sydney - City & Inner West, Australia AI Talent Pty Ltd Full time

    About the Role We are seeking an experienced Cyber Governance, Risk, and Compliance (GRC) Specialist to lead the implementation and continuous improvement of our organisation’s cybersecurity governance framework. This position is pivotal in ensuring that our systems, data, and infrastructure adhere to internal policies and external regulatory obligations,...


  • Sydney, New South Wales, Australia Naviro Full time

    OverviewItalian Speaking Cyber Security GRC Specialist – Naviro, Sydney, New South Wales, Australia.EngagementContract, up to 3 months.Base pay rangeA$120.00/hr - A$150.00/hrClient needThey have a contract requirement (up to 3 months) looking for an Italian speaking Cyber Security GRC Specialist. Client's need for Italy's Cloud Strategy Attestation: CSPs...


  • Sydney, New South Wales, Australia Naviro Full time

    OverviewItalian Speaking Cyber Security GRC Specialist – Naviro, Sydney, New South Wales, Australia.EngagementContract, up to 3 months.Base pay rangeA$120.00/hr - A$150.00/hrClient needThey have a contract requirement (up to 3 months) looking for an Italian speaking Cyber Security GRC Specialist. Client's need for Italy's Cloud Strategy Attestation: CSPs...