Governance, Risk and Compliance Analyst

Digital Technology
- Corporate Services

 
- MEL0001GX Requisition #

**Joining Arup**:
Arup’s purpose, shared values and collaborative approach has set us apart for over 75 years, guiding how we shape a better world.

As part of a diverse and collaborative global team, you’ll work with colleagues from around the world to uphold and strengthen our cybersecurity posture. This role offers the opportunity to engage with cutting-edge technologies, contribute to meaningful digital transformation projects, and help shape secure, compliant solutions across regions.

You’ll gain hands-on experience in areas such as cloud security, risk assessments, secure software development, and supply chain cyber due diligence. With a strong focus on continuous learning, you’ll have access to global knowledge-sharing sessions, training resources, and the opportunity to grow alongside experienced professionals in a supportive and innovative environment.

Join us to build a safer digital future, regionally and globally

Cyber GRC (Governance, Risk, and Compliance) team is responsible for ensuring that an organization's cybersecurity practices align with internal policies, industry standards, and regulatory requirements. The team manages cyber risks by developing governance frameworks, assessing threats, implementing controls, monitoring compliance, and supporting audits. Their goal is to reduce security risks while enabling business objectives in a secure and compliant manner.

**Watch this short clip to discover how Arup are shaping a better world and how you could be a part of it**:
**The Opportunity**:
At Arup, you belong to an extraordinary collective - in which we encourage individuality to thrive. Our strength comes from how we respect, share and connect our diverse experiences, perspectives and ideas. You will have the opportunity do socially useful work that has meaning - to Arup, to your career, to our members and to the clients and communities we serve.
- Represent Cyber GRC in Australasia, responding to cyber incidents, risk issues, and related requests.
- Ensure compliance with Arup’s Information Security Control Framework through audits and ongoing oversight.
- Manage global cybersecurity awareness campaigns and training initiatives to strengthen security culture.
- Collaborate with regional digital teams to embed security-by-design principles into projects and products.
- Conduct cybersecurity due diligence on third-party vendors and drive IT disaster recovery and compliance efforts.**Did you know: Our Digital Technology team are proud previous winners of the**IT Team of the Year** for at the Chartered Institute of IT’s UK IT Industry Awards.**:
**Is this role right for you?**:
If you're a cybersecurity professional with a strong foundation in risk management, compliance, and internal auditing, and you're ready to take on a regionally strategic role with global impact, this role could be an excellent fit for you.

You'll thrive in this position if you enjoy being both hands-on and strategic acting as the primary cybersecurity contact for the Australasia while collaborating with a global team to influence and improve security posture across cloud environments, digital platforms, and development processes.

This role is ideal for someone who:

- Excels at performing threat and risk assessments and driving risk remediation.
- Understands how to assess and improve compliance through internal audits and security control assessments.
- Is confident working with stakeholders, developers, and vendors to embed security best practices.
- Is passionate about cyber awareness and education and wants to lead global initiatives that drive cultural change.
- Values continuous learning and is eager to grow in a supportive, international, and forward-thinking organization.

**What we offer you**:
At Arup, we care about each member’s success, so we can grow together.

Guided by our values, we provide an attractive total reward package that recognises the contribution of each of our members to our shared success. As well as competitive, fair and equitable pay, we offer a career in which all of our members can belong, grow and thrive - through benefits that support health and wellbeing, a wide range of learning opportunities and many possibilities to have an impact through the work they do.
- We are owned in trust on behalf of our members, giving us the freedom, with personal responsibility, to set our own direction and choose work that aligns with our purpose and adds to Arup’s legacy. Our members collaborate on ambitious projects to deliver remarkable outcomes for our clients and communities. Profit Share is a key part of our reward, enabling members to share in the results of our collective efforts.
- We care about you and want you to perform at your best, which is why we offer one of the most competitive benefits packages in our sector.
- As a member organisation, everyone shares in our success through a global profit share scheme