GRC Manager
3 days ago
Who are Web Travel Group?
The Web Travel Group, an ASX 200 listed company (ASX: WEB), is a global B2B organisation servicing the travel industry, connecting hotels and other travel sellers to a diverse network of travel buyers all over the world through our trade only digital travel marketplace brand – WebBeds.
In September 2024, we changed our name from Webjet Limited to the Web Travel Group as part of a Demerger. The Webjet Group (Webjet B2C - comprising of Webjet OTA, GoSee, Trip Ninja) demerged from the Web Travel Group, creating two independent and simplified companies, improving our ability to pursue independent strategic priorities and growth agendas relevant to our businesses.
Find out more about the Web Travel Group at:
How will you make an impact?
Join Web Travel Group as a GRC Consultant and take the lead in shaping and strengthening our compliance and security frameworks. You will play a lead role in key programs such as PCI-DSS, ISO 27001, and NIST CSF. You'll manage audits, conduct risk assessments, and support policy development—ensuring our compliance posture stays strong and future-ready.
Key elements to the role include:
- Maintain and lead our compliance programs including PCI-DSS, ISO 27001, NIST CSF etc.
- Manage audit programs – liaise with third-party auditors.
- Conduct risk assessments and gap analyses to understand key threats to our organisation.
- Select and implement an appropriate compliance tool to manage our compliance programs.
- Facilitate third-party risk management, vendor due diligence, and contract compliance.
- Support development of our security and compliance policies and procedures.
- Monitor and report on key risk indicators (KRIs), compliance metrics, and audit findings.
- Stay current on emerging regulatory trends and best practices in risk and compliance.
- Following up with key stakeholders on open risks and ensuring appropriate mitigations are in place.
The skills we would love to see in your suitcase
- Bachelor's degree in a related field i.e. Commerce, IT, Information Security, Risk Management, Finance.
- 2 years knowledge of frameworks such as:
- ISO 27001 / 31000
- NIST CSF
- PCI-DSS
- Strong analytical, writing, and presentation skills.
- Ability to manage multiple projects and interact with both technical and non-technical stakeholders.
- Professional certification such as CISA, CRISC, ISO Lead Auditor/Implementer are preferred.
- Consulting experience is a plus.
Why choose us as your next destination?
We are super proud of our dedicated team of friendly, energetic & passionate professionals. Our people are key to the success of our business & everybody at WebBeds has their own unique role to play as we continue to drive the company forward.
Over 50 different languages are spoken by our workforce, but whether working from offices in Dubai or London or out in the field in Johannesburg or Buenos Aires, we all share the common goal to take pride in what we do & to deliver our partners with unbeatable service & support.
International highly skilled group of experts from all around the globe
Dynamic environment with the chance to grow, influence & impact change
Disruptive, fast-growing market leader within travel & endless possibilities
Culture built on collaboration empowerment and innovation
Find out more about the WebBeds business at - #LI-Hybrid
-
Business Development Manager- Cyber GRC
1 week ago
Melbourne, Victoria, Australia Information Security Consultants Full time $90,000 - $120,000 per yearCyber GRC Consulting & Compliance Location:Remote (with travel across Australia & New Zealand)Company:Information Security Consultants (ISC)Employment Type:Full-timeAbout ISCInformation Security Consultants (ISC) is a specialist cybersecurity consulting firm supporting organisations across Australia and New Zealand. We deliver tailored solutions in...
-
Head of Financial Risk, GRC
3 days ago
Melbourne, Victoria, Australia Medibank Private Limited Full time $120,000 - $180,000 per yearYou're only human.It's a strange thing to say, because us humans are capable of incredible things. And at Medibank, we know our greatest potential lies in the people who work with us.We strive to make real, fundamental change, driven by a simple purpose: to create the best health and wellbeing for all of Australia.Help shape the future of financial risk at...
-
Cyber Security GRC Consultant
3 days ago
Melbourne, Victoria, Australia Leidos Australia Full time $100,000 - $150,000 per yearDescriptionWe're a 'Family Friendly' certified workplace – we understand the often many and varied roles our team members need to play within their own unique family setting and actively support them.Our team feel Leidos is a great place to work. Learn more about our culture and benefits by visiting us here Do Work That MattersLeidos Australia delivers IT...
-
Cyber Security GRC Consultant
3 days ago
Melbourne, Victoria, Australia Leidos Full time $120,000 - $180,000 per yearWe're a 'Family Friendly' certified workplace – we understand the often many and varied roles our team members need to play within their own unique family setting and actively support them.Our team feel Leidos is a great place to work. Learn more about our culture and benefits by visiting us here Do Work That MattersLeidos Australia delivers IT and...
-
Cyber Security GRC Analyst
7 days ago
Melbourne, Victoria, Australia ReadyTech Group Full time $120,000 - $180,000 per yearAbout us:Making a meaningful difference with mission-critical software that empowers communities to thrive.ReadyTech is more than just a one-trick pony playing in one market with one product, or one customer. We re-imagine, design, develop and deliver technology to solve our customer's diverse problems – supporting multiple businesses across a variety of...
-
GRC Specialist, AWS Security
3 days ago
Melbourne, Victoria, Australia Amazon Web Services (AWS) Full timeDescriptionAmazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers,...
-
Technology Risk and Compliance
2 weeks ago
Melbourne, Victoria, Australia Infosys Singapore & Australia Full time $120,000 - $180,000 per yearLocation: Sydney/Melbourne Only. Please do not apply if you do not reside in Australia.About Infosys ConsultingAs a Senior Principal within Infosys Consulting, you will pursue and grow deep client relationships, operating at the executive and senior management levels. You will also provide leadership on our most critical engagements, working closely with...
-
Technology Risk and Compliance
1 week ago
Melbourne, Victoria, Australia Infosys Singapore & Australia Full time $120,000 - $250,000 per yearLocation: Sydney/Melbourne Only. Please do not apply if you do not reside in Australia.About Infosys ConsultingAs a Senior Principal within Infosys Consulting, you will pursue and grow deep client relationships, operating at the executive and senior management levels. You will also provide leadership on our most critical engagements, working closely with...
-
Technology Risk and Compliance
3 days ago
Melbourne, Victoria, Australia Infosys Singapore & Australia Full time $120,000 - $250,000 per yearLocation: Sydney/Melbourne Only. Please do not apply if you do not reside in Australia.About Infosys ConsultingAs a Senior Principal within Infosys Consulting, you will pursue and grow deep client relationships, operating at the executive and senior management levels. You will also provide leadership on our most critical engagements, working closely with...
-
Melbourne, Victoria, Australia C9 Group Full time $120,000 - $150,000 per yearRole: Cyber Governance Risk and Compliance SpecialistSalary: 100,000 AUD plus SUPERANNUATIONJob Type: Full-time, PermanentWorking Hours: 38 hours per weekLocation: Melbourne, Victoria, AustraliaKey ResponsibilitiesLead the governance, risk, and compliance (GRC) function for cyber security, ensuring alignment with organisational objectives, regulatory...
