Grc Lead

1 week ago

Sydney, New South Wales, Australia News Corp Australia Full time

The Governance, Risk and Compliance (GRC) Lead will have a strong understanding of security and privacy principles as well as a sound understanding of regulatory and compliance requirements affecting the business. Support and maintain the Cyber GRC Program, including the development, implementation and maintenance of security policies, standards, guidelines and processes to ensure compliance is maintained and risk is mitigated.

**What's the role?**
- Liaise with key internal and external stakeholders to ensure compliance with PCI DSS, SOX, Privacy and GDPR compliance requirements, audits and assessments.
- Assist in the risk assessment process and report on enterprise-wide and third-party security controls.
- Support management of audits, external assessments and assurance processes including, but not limited to PCI DSS, SOX and NIST CSF
- Engage with internal and external stakeholders to ensure compliance with the cybersecurity risk management framework
- Develop and manage meaningful metrics to measure and track cyber risks and the effectiveness of the governance, risk and compliance function
- Conduct compliance readiness assessments and assurance activities against policies, standards requirements.
- Track technology and cyber related audit findings and actions
- Assist in the development of effective measurement and simplified reporting of cyber security risks within the business
- Conduct third party security assessments against industry standards as well as News AU control standards
- Report on metrics, including KPIs and KRIs to measure and track cyber risk and the effectiveness of the Cybersecurity function
- Support user education and awareness training for all employees
- Assist in maintaining the cyber security risk register
- Assist in preparing Cybersecurity briefing for senior management

**Who are you?'**
- 5+ years' experience within Cyber Security, ICT Audit or related fields
- Demonstrated experience in governance, risk and compliance in dynamic and complex cyber security, technology and business environment
- Strong knowledge and experience with Industry Frameworks and Standards such as NIST CSF, PCI DSS and ISO 27001
- Previous experience working in a SOX compliance environment is desirable
- Strong oral and written communication skills
- Qualification in Information Security, Computer Science, Engineering or similar
- Professional security certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar preferred

**What's in it for you?**
- Collaborative environment
- Opportunity to innovate, challenge the norm and pioneer the way forward
- Variety of work where no two days are the same
- Exposure to global operations and networks
- Make a difference as part of Australia's most influential media organisation

**Who are we?**

**What's next?

  • Senior Principal- GRC

    2 weeks ago

    Sydney, New South Wales, Australia Infosys Full time $150,000 - $200,000 per year

    Location: Sydney/Melbourne, Please do not apply if you reside outside of Australia.Infosys Consulting works with clients to develop and implement innovative strategies and drive process improvements that create business value, including technology-enabled business transformation. We look for opportunities to improve financial, risk and operational...

  • Strategic GRC Leader

    2 weeks ago

    Sydney, New South Wales, Australia beBeeGovernance Full time $150,000 - $200,000

    Job Description:">We are seeking an experienced Senior Principal to lead our Governance, Risk and Compliance (GRC) Practice.As a key member of our team, you will be responsible for developing and executing strategies to drive growth and innovation in the GRC space.You will work closely with clients to understand their GRC needs and provide tailored solutions...

  • It Grc Analyst

    1 week ago

    Sydney, New South Wales, Australia Metcash Full time

    We have an excellent opportunity for an **IT GRC Analyst** (Governance, Risk & Compliance) on a 12mth Fixed Term Contract. The IT GRC Analyst has day-to-day responsibility for central coordination of the management of IT and cyber security risks, maintaining robust IT and security policies, standards, procedures, and guidelines, and ensuring compliance with...

  • Team Lead GRC Consultant

    2 weeks ago

    Sydney, New South Wales, Australia Decipher Bureau Full time

    1 day ago Be among the first 25 applicantsGet AI-powered advice on this job and more exclusive features.Direct message the job poster from Decipher BureauCyber Security Specialist | AISA NSW Executive Committee | Helping Build Australia's Best Cyber Security Teams The CompanyWe're partnering with a fast-growing, Australian organisation that continues to go...

  • GRC Expert

    2 weeks ago

    Sydney, New South Wales, Australia beBeeCyberstrategy Full time $120,000 - $140,000

    Job OverviewWe are seeking a Cyber Strategy & GRC Consultant to join our high-performing team. The ideal candidate will operate at the intersection of cyber strategy, governance, risk, and technical execution.The RoleYou will lead small to mid-scale client engagements, and support large-scale or strategic projects. You will work closely with CISOs,...

  • Cybersecurity Grc Lead

    7 days ago

    Sydney, New South Wales, Australia Northrop Grumman Australia Full time

    Join to apply for theCybersecurity GRC Leadrole atNorthrop Grumman Australia3 days ago Be among the first 25 applicantsJoin to apply for theCybersecurity GRC Leadrole atNorthrop Grumman AustraliaGet AI-powered advice on this job and more exclusive features.Direct message the job poster from Northrop Grumman AustraliaAs the Triton Cybersecurity GRC Lead,...

  • Senior GRC Analyst

    6 days ago

    Sydney, New South Wales, Australia Oscar Zhao Full time

    Join a global insurance broker Your new company A global general insurance broker is seeking a permanent Senior GRC Analyst to join their Cybersecurity Team in Sydney. This role will involve owning the IT risk management process and cyber security governance processes. Your new role Reporting to the CISO, your new role will be varied and...

  • GRC Officer

    2 days ago

    Sydney, New South Wales, Australia EML Full time $90,000 - $120,000 per year

    EML is a leading Workers Compensation and Personal Injury Claims Management business. Our goal is to help people get their lives back through ongoing support during their return-to-work journey. We continue to experience ongoing growth and now have over 4,000 dedicated employees. We foster a learning culture that allows for us to continually invest in our...

  • Senior GRC Analyst

    2 weeks ago

    Sydney, New South Wales, Australia Hays Full time $140,000 - $150,000 per year

    Competitive SalaryPermanent full-time opportunityOpportunity to UpskillYour new companyA global general insurance broker is seeking a permanent Senior GRC Analyst to join their Cybersecurity Team in Sydney. This role will involve owning the IT risk management process and cyber security governance processes.Your new roleReporting to the CISO, your new role...

  • It Security Grc Manager

    5 days ago

    Sydney, New South Wales, Australia Minterellison Full time

    **Location**: Sydney, Brisbane, Melbourne**Contract Type**: PermanentMinterEllison is one of Australia's largest law firms, with nearly 200 years of business history. We're known for our legal and consulting expertise - and for our inclusive and authentic character.Our purpose is to create sustainable value with our clients, people and communities. That...