Senior Risk

Why Tyro? 

At Tyro, we're into business big time. Through our integrated payments, banking and lending solutions, we're here to ensure nothing stands in the way of Australian business success. With over 21 years' experience under our belt, we know what it takes to build something great, which is why we combine the best people, technology, and partners to deliver simplified payments and seamless business banking to our customers. We're proud to power more than 73,000 merchants across Australia and to work with more than 700 partners to create seamless experiences for hospitality, retail, services and health providers. 

It starts with You. 

Just like our customers, we're obsessed with the success of our people. So, when you come onboard, we'll give you all the support you need to do your best work. Our close to 600 Tyros are a highly collaborative team, so you'll get to work with smart, motivated and friendly people across Tyro. We are fast paced and innovative and strive to live our values everyday – commit to greatness, stay hungry, wow the customer, be good and win together  We are big enough for you to have opportunities to have a career at Tyro and small enough that you can have a real impact. As we continue our mission to shake things up and make payments the easiest part of doing business, you'll have the opportunity to learn new skills with hands-on experience, further your career, and help unleash the potential of our customers, one payment at a time. 

Step inside life at Tyro here.

At Tyro Health, our mission is simple but ambitious: to make healthcare more accessible for all Australians through the technology and solutions we build.

We know this is a bold goal. Improving access to healthcare isn't something that happens overnight - and it certainly can't be solved by technology alone. But we believe that the right tools, thoughtfully designed and responsibly delivered, can remove friction, reduce costs, and help more people get the care they need, when they need it.

We're not here to overpromise. We're here to make a difference - one improvement, one integration, one step at a time. And we're committed to working in partnership with providers, software vendors, insurers, and health system leaders to help build a future that's more connected, more efficient, and more patient focused.

This is what drives us.

We are seeking a proactive and versatile Senior Risk & Compliance Specialist to strengthen Tyro Health's risk and compliance capabilities while supporting our engineering and operations teams. This role will drive the implementation and maintenance of risk frameworks, compliance programs, and security practices.  
 
To achieve this mission, building and maintaining trust with patients, providers, and partners is paramount. This role is critical to that trust, ensuring that our innovative solutions are built on a foundation of security, compliance, and operational resilience. You'll be the champion for protecting sensitive payments, personal and health data and ensuring our platform operates with integrity. 

The role is hands-on and cross-functional, requiring strong problem-solving skills and the ability to work across internal teams and external stakeholders. 

Governance & Framework Management

• Champion risk management across Tyro Health, driving the identification, assessment, and mitigation of key business risks.

• Embed a strong risk culture by setting clear expectations, coaching team members, and delivering risk education initiatives.

• Maintain and continuously improve Tyro Health's ISO 27001-certified Information Security Management System (ISMS), including internal audits and policy adherence.

Regulatory & Scheme Compliance

• Implement and evidence controls to meet APRA prudential standards (e.g. CPS 230, CPS 234) and support regulatory reporting and attestations.

• Partner with Group Product and Group Risk to ensure compliance with payment scheme and regulatory requirements, including PCI DSS and KYC obligations.

• Strengthen fraud risk management by collaborating on frameworks, control testing, and incident follow-up.

Operational Resilience & Security

• Lead Business Continuity and Disaster Recovery planning, testing, and reporting to ensure operational resilience.

• Partner with Site Reliability and engineering teams to enhance security operations, monitoring, and response processes.

• Support incident and risk management processes, ensuring effective escalation, documentation, and resolution.

Partner & Third-Party Management

• Act as a trusted advisor to integration partners, guiding them through compliance and regulatory requirements.

• Manage third-party risk assurance, including completing security assessments, questionnaires, and PCI attestations.

• Collaborate with external and internal stakeholders to enable compliant and secure partner integrations.

• At least 5 years of hands-on experience in a risk, compliance, or security GRC role.

• Deep, practical experience implementing or managing major compliance frameworks (e.g., ISO 27001, SOC 2). 

• Proven ability to translate complex regulatory requirements into practical, actionable guidance for technical and non-technical teams.

• Exceptional documentation and communication skills – you can write for both auditors and engineers. 

• A pragmatic and collaborative mindset, with a focus on enabling the business to achieve its goals safely. 

​Great-to-Haves: 

• Direct experience with APRA prudential standards (CPS 230, CPS 234) and/or PCI DSS. 

• Experience in a high-growth tech, fintech, or health-tech environment. 

• Familiarity with fraud risk management principles in a payments context. 

• Experience working in a matrixed environment, collaborating with a central risk or compliance function. 

What's in it for you? 

We've worked hard to create an environment that's big on diversity, inclusion, and flexibility, and one that suits the changing needs of team members across Australia. Here are just some of the things Tyros tell us they love about working here.

You'll also receive: 

• A mix of in-office and remote working 

• Learning and career development opportunities 

• 16 weeks paid primary carers leave 

• 12 weeks paid secondary carers leave 

• Annual team-based volunteer day 

• Birthday Leave  

• Power Up Day (Additional day of leave) 

• Weekly team social events, snacks, craft beer and wine, ping pong and video games 

• Taco Tuesdays 

• Mental health and wellness initiatives 

• Novated leasing 

Tyro is committed to a diverse, inclusive workplace where everyone thrives. We welcome applicants of all backgrounds and are an equal opportunity employer. If you need accommodations or adjustments at any stage of the recruitment process, simply inform our Talent team during your conversation with them.

Still with us?

If you've got this far, then you might just be a great fit for us. Don't tick all the boxes above? That's ok, apply anyway and our Talent team will review your profile - you might be a fit for future roles.

#LI-Hybrid