Cyber Governance, Risk, and Compliance
6 hours ago
About the Role
We are seeking an experienced Cyber Governance, Risk, and Compliance (GRC) Specialist to lead the implementation and continuous improvement of our organisation's cybersecurity governance framework. This position is pivotal in ensuring that our systems, data, and infrastructure adhere to internal policies and external regulatory obligations, while proactively managing cyber risk and compliance across the enterprise.
You will work closely with executive leadership, IT teams, and external stakeholders to develop strategies, monitor controls, and report on risk posture, audit outcomes, and compliance metrics.
Key Responsibilities
- Lead the design, implementation, and management of cybersecurity governance frameworks, including policies, standards, and procedures aligned to ISO 27001, NIST, Essential Eight, and other relevant standards.
- Perform risk assessments and control evaluations to identify cybersecurity risks across infrastructure, applications, and third-party vendors.
- Develop and maintain the organisation's information security risk register and assist in the treatment planning and mitigation strategies.
- Coordinate internal and external audits related to cybersecurity and manage compliance reporting (e.g., SOC 2, ISO 27001, CPS 234, GDPR).
- Provide expert advice to business and IT leaders regarding security requirements, regulatory changes, and risk implications of new projects or technologies.
- Monitor compliance with security policies, identify gaps, and drive remediation in collaboration with system and security teams.
- Develop metrics and reporting dashboards for executive oversight of cyber risk, control effectiveness, and incident trends.
- Lead training and awareness initiatives to embed a culture of security and compliance across all departments.
- Liaise with external auditors, regulators, and compliance authorities where required.
Required Skills & Experience
- Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or related field.
- Minimum 5 years of experience in a cybersecurity GRC or Information Security Compliance role.
- Strong understanding of risk management frameworks (e.g., ISO 27005, NIST RMF, FAIR), and regulatory standards (e.g., CPS 234, GDPR, PCI-DSS, SOX).
- Demonstrated experience leading internal/external security audits and vendor risk assessments.
- Excellent communication and stakeholder engagement skills, including report writing and executive briefings.
- Familiarity with GRC platforms and SIEM tools (e.g., Archer, ServiceNow GRC, Splunk, Microsoft Defender).
- Relevant certifications preferred: CISM, CISSP, CRISC, ISO 27001 Lead Auditor, or equivalent.
Why Join Us?
- Work with a dedicated team driving cyber resilience across the organisation.
- High-visibility role influencing security posture and risk culture at the executive level.
- Career development and upskilling opportunities in a supportive environment.
- Flexible working arrangements with a hybrid or remote-friendly structure.
Job Types: Full-time, Permanent
Pay: $70,000.00 – $120,000.00 per year
Benefits:
- Work from home
Work Authorisation:
- Australia (Required)
Work Location: Hybrid remote in Sydney NSW 2000
-
Cyber Governance, Risk And Compliance Lead
2 weeks ago
Sydney, New South Wales, Australia Domain Group Full time**Cyber Governance, Risk and Compliance Lead - Sydney Office - Permanent Full Time**A great opportunity for a **Cyber Security Governance, Risk and Compliance****(GRC) Lead**, in partnership with the Cyber Security GRC Manager, the Lead will be responsible for the delivery of the Cyber Security Governance, Risk and Compliance initiatives.You will work...
-
Cyber Governance, Risk
1 week ago
Sydney, New South Wales, Australia King & Wood Mallesons Full timeNew role to the firm - Enhance what we have and take the next step in your career- With a few years experience behind you, you will be looking to introduce what you've learnt in developing and implementing cyber governance frameworks and processes, ensuring that we meet our information security and compliance goals.- As a leading law firm, we actively seek...
-
Sydney, New South Wales, Australia beBeeGovernance Full time $100,000 - $150,000Cyber Security Governance and Compliance ExpertWe are seeking a highly skilled Cyber Security Governance and Compliance Manager to lead the development and implementation of our cyber security governance framework. This pivotal role ensures alignment with enterprise risk management objectives, while maintaining compliance with legal and regulatory...
-
Sydney, New South Wales, Australia Macquarie University Full timeCyber Security Governance, Risk and Compliance Manager Join to apply for the Cyber Security Governance, Risk and Compliance Manager role at Macquarie University About the Role Macquarie University is seeking a dynamic and experienced Cyber Security Governance, Risk and Compliance (GRC) Manager to lead the development and implementation of our cyber...
-
Sydney, New South Wales, Australia Macquarie University Full timeCyber Security Governance, Risk and Compliance ManagerJoin to apply for the Cyber Security Governance, Risk and Compliance Manager role at Macquarie UniversityAbout the RoleMacquarie University is seeking a dynamic and experienced Cyber Security Governance, Risk and Compliance (GRC) Manager to lead the development and implementation of our cyber security GRC...
-
Cyber Risk Governance Consultant
2 weeks ago
Sydney, New South Wales, Australia beBeeCyber Full time $100,000 - $150,000Key Role in Cyber Risk and Governance We are seeking an experienced risk governance consultant to join our team. This is a key role that involves collaborating with clients to assess and manage their cyber risks. Responsibilities:Conduct security risk assessments as part of client engagements.Understand and audit client security controls.Support the...
-
Cyber Security Governance and Compliance Lead
2 weeks ago
Sydney, New South Wales, Australia beBeeCompliance Full time $140,000 - $170,000Lead Cyber Security Governance and ComplianceA unique opportunity has arisen for a highly skilled Cyber Security Governance, Risk and Compliance Lead to join our team.This role requires an individual with expertise in cyber security frameworks, standards, laws and regulations, as well as excellent communication skills and the ability to provide expert...
-
Cyber Risk Governance Professional
1 week ago
Sydney, New South Wales, Australia beBeeCyber Full time $170,000 - $210,000Job DescriptionAs a senior cyber GRC specialist, you will play a pivotal role in enhancing the organization's cyber resilience by supporting security governance, risk, and compliance across various environments.The primary focus will be on assessing, aligning, and testing security controls to meet regulatory obligations and industry best practices.This...
-
Cyber Risk and Compliance Specialist
2 weeks ago
Sydney, New South Wales, Australia beBeeCybersecurity Full time $115,793 - $132,687**Cyber Risk and Compliance Specialist Role Summary:**This position involves leading governance, policy, analytical, and reporting activities to ensure compliance with cybersecurity policies, audits, and risk requirements.**Key Responsibilities Include:Collaborating with internal and external stakeholders to gather relevant information and support the...
-
Governance Risk And Compliance
1 week ago
Sydney, New South Wales, Australia Macquarie Group Limited Full time-Our diverse and global team are responsible for the Cyber Threat and Incident Response Program's cyber regulatory engagement and response, cyber risk assessment and obligation management, and organizational risk compliance and reporting. You'll help security leadership develop and grow the program's threat-driven risk structure and culture.At Macquarie, our...
