Risk and Compliance Manager

**20th May, 2025**:
Turks are currently seeking a Risk and Compliance Manager to join them on a full time basis in Sydney.

As an award-winning law firm, we measure our success through the high level of satisfaction and engagement we achieve with our clients and our team, with this role being critical to attain this goal.

By joining Turks, you will be rewarded with long-term career opportunities and development, in a friendly, approachable and supportive team-based environment.

**About the role**

The role is centred around Enterprise Risk Management, Legal and Regulatory obligations and compliance, and maintaining ISO27001 certification of an Information Security Management System.

**Responsibilities**
The Risk and Compliance manager will take responsibility and ownership over a range of tasks, including but not limited to the following:

- Maintain certification as ISO27001 Lead Implementer or similar.
- Ensuring the successful maintenance and maturity of the ISMS and all associated policies and processes.
- Ensuring compliance with the firm’s certifications, risk appetite, business objectives and legal and regulatory obligations.
- Ensuring risk assessment and treatment processes are defined, approved, and communicated, conducted, risk owners are managing their risks, and committees are made aware of any critical risks.
- Updating, reviewing and/or developing organisational literature including strategies, plans, policies, frameworks, matrix, processes and standards and ensuring such documents are communicated to the relevant stakeholders, and regularly reviewed and updated to reflect any changes in business requirements and strategies.
- Maintaining asset and risk registers.
- Supporting improvement of organisational literature by way of presentations to relevant stakeholders
- Ensuring compliance with certification and frameworks, and report non-conformities to the Board.
- Ensuring KPIs are developed to measure the effectiveness of frameworks and monitor and report on such measures.
- Lead the Risk Management Committee, this includes circulating the agenda/schedule for committee meetings, maintaining meeting minutes, and following through on action items.
- Support security incident response committee and processes.
- Managing Risk and Compliance awareness campaigns program and cyber simulation exercises.
- Leading on all Internal Audits and Certification Audits, and managing any resulting corrective actions plans.
- Manage contracts with clients including compliance with all legal, regulatory, and contractual obligations, as well as assist with client tenders, reviews, assessments, and questionnaires.
- Lead the strategy and maturity of AML/CTF legal obligations.
- Lead the development of Sustainability/ASRS compliance.

**Requirements**:
To be considered for this role, you will have
- Qualification in ISO / IEC27001 lead implementer or equivalent.
- Risk management experience in professional services, ideally the legal industry.
- Strong technical knowledge of enterprise and operational risk frameworks.
- Confident stakeholder engagement skills with the ability to influence and lead in a fast-paced environment.
- Entrepreneurial, pragmatic, solutions-focused, and adaptable to changing business needs.
- Excellent written and verbal communication skills.
- Highly motivated, proactive, and committed to producing high-quality work.

**About us**
Here at Turks, we focus on what we do best - delivering innovative and practical solutions to the legal and business hurdles which our clients face. Our client focussed approach ensures we always deliver on our promises, building relationships based on trust and collaboration.

As a specialist, commercial firm with offices in Sydney, Melbourne, Brisbane and Newcastle with a reach throughout the rest of Australia, you can be confident you are getting the development, support and hands on experience to grow and sustain your successful legal career. With 36 partners and over 250 staff operating across all jurisdictions in Australia, we offer a comprehensive service to a range of clients, including government agencies, banks, insurance companies and private employers.

Us Turksters pride ourselves on our passion for excellence, teamwork, integrity and leadership, which is embodied through our values that guide us in our day to day activities and product offerings. We are committed to diversity and a culture of inclusion, recognising our differences as a source of strength and imperative to our success. Our social and people-oriented environment aims to improve our people’s lives both in and outside of the workplace, which includes:

- ongoing training and development;
- team and firm wide social events;
- CSR activities, including volunteer days;
- Employee Assistance Program;
- competitive paid parental leave scheme and return to work benefits;
- employee achievement awards;
- discounted gym and health insurance memberships;
- plus many more