Senior GRC Analyst

2 weeks ago

Melbourne, Australia Latitude IT Full time
  • Collaborative, supportive, Values driven environment
  • Great coffee (and a variety of tea) and fresh fruit
  • Avoid the traffic: we are outside the CBD and close to public transport
  • Engage with cutting-edge cybersecurity technologies and methodologies.
  • Drive impactful risk management initiatives in a dynamic environment.
  • Collaborate with skilled professionals in a growth-oriented company.

Senior GRC Analyst

About the Company

Join a dynamic organization known for its dedication to innovation, excellence, and robust risk management. Operating across various industries, this company offers a stable and growth-oriented environment for its employees.

Role Overview
We are looking for a highly skilled Senior GRC Analyst to shape and implement cyber risk principles, frameworks, and policies across the organization. This role provides vital oversight and collaboration with various departments to ensure consistency and transparency in cyber risk management. Positioned at the second line of defense, this role focuses on governance, risk, and oversight in the cybersecurity domain at a corporate level.

Key Responsibilities

  • Risk Oversight:
    • Assess and monitor the organization's cybersecurity risk posture.
    • Develop and refine cyber risk control and reporting frameworks, methods, and maturity targets.
    • Conduct and lead security risk assessments, including evaluations of supply chain security.
    • Oversee vendor due diligence and perform comprehensive risk assessments.
    • Partner with assurance teams to plan and review internal cybersecurity audits.
  • Cyber Governance and Policy Development:
    • Create and maintain policies, standards, and frameworks that foster a strong risk-aware culture and enhance cyber resilience.
    • Design and implement cybersecurity control frameworks and testing requirements for departmental use.
  • Cyber Risk Reporting:
    • Evaluate and enhance cyber risk data analysis, metrics reporting (KRIs), consolidated risk profiles, and reporting methodologies.
    • Prepare executive-level communications on cybersecurity to support informed business decision-making.
    • Improve board and executive-level reporting on cyber risk and governance.

Key Accountabilities

  • Engage with stakeholders across departments to understand their needs, ensuring that cyber policies, risk reporting, and metrics remain relevant and effective.
  • Stay informed about the latest cybersecurity threats, vulnerabilities, and regulations.
  • Support assurance functions in planning and reviewing internal cybersecurity audits.
  • Provide knowledge transfer and advisory services to departments to enhance their cyber risk management strategies.
  • Promote a community of practice for security risk management to share knowledge and improve standards continuously.

Skills, Experience, and Attributes

  • Education:
    • Bachelor’s Degree in IT, Engineering, or related fields required.
    • MS/MBA is advantageous.
    • Relevant certifications (ISO 27001, FAIR Foundation, CISA, CRISC, CGEIT, ITIL, COBIT, PCI DSS) are preferred.
  • Professional Experience:
    • At least 6 years of experience in a similar role.
    • Proven track record in designing, reporting, and managing operational risk metrics for technology and cybersecurity practitioners and executives.
    • Practical application of the FAIR methodology is highly valued.
    • Experience in developing and implementing security policies, standards, and conducting risk assessments.
    • Experience in testing the effectiveness of security controls and operating in regulated, multi-industry environments is desirable.
  • Skills/Knowledge:
    • Strong understanding of IT Governance, Cyber Risk Management, and related frameworks and methodologies.
    • Proficiency in Microsoft Excel, Word, and PowerPoint; skills in Power BI are a plus.
    • Familiarity with tools like Slack, Atlassian JIRA, Confluence, and Monday.
  • Personal Attributes:
    • Demonstrates behaviors consistent with the company’s values and ways of working.
    • Excellent communication skills, both written and verbal.
    • Strong influencing and relationship-building skills.
    • Critical thinking and problem-solving abilities.
    • Ability to work effectively in a matrix environment and across teams.
    • Flexibility and reliability to go the extra mile to achieve outcomes.

Why Join Our Client?

  • Innovative Environment: Engage with cutting-edge technologies and methodologies.
  • Growth Opportunities: Opportunities for professional development and career advancement.
  • Collaborative Culture: Work with a team of skilled professionals dedicated to excellence and innovation.
  • Impactful Work: Contribute to critical risk management initiatives that shape the organization's future.

What’s a Rich Text element?

The rich text element allows you to create and format headings, paragraphs, blockquotes, images, and video all in one place instead of having to add and format them individually. Just double-click and easily create content.

Static and dynamic content editing

A rich text element can be used with static or dynamic content. For static content, just drop it into any page and begin editing. For dynamic content, add a rich text field to any collection and then connect a rich text element to that field in the settings panel. Voila

How to customize formatting for each rich text

Headings, paragraphs, blockquotes, figures, images, and figure captions can all be styled after a class is added to the rich text element using the "When inside of" nested selector system.

At Latitude IT, we are passionate about providing equal employment opportunities and value workplace diversity. We encourage Aboriginal & Torres Strait Islanders, people with a disability, and people from a culturally diverse background to apply.

  • Grc Analyst

    4 weeks ago

    Melbourne, Australia Latitude IT Full time

    Multi-billion dollar international organization. - Opportunity to liaise with multiple security teams. - Hybrid work arrangement. Are you a seasoned Security Analyst with a passion for GRC? Our multi-billion dollar international client is seeking a skilled professional to join their team in Melbourne and take on the role of GRC Analyst. - Multi-billion...

  • Grc Analyst

    1 week ago

    Melbourne, Victoria, Australia Latitude IT Full time

    Multi-billion dollar international organization. Opportunity to liaise with multiple security teams. Hybrid work arrangement.Are you a seasoned Security Analyst with a passion for GRC? Our multi-billion dollar international client is seeking a skilled professional to join their team in Melbourne and take on the role of GRC Analyst. Multibillion dollar...

  • Grc Analyst

    6 days ago

    Melbourne, Australia Anson McCade Full time

    Manage Security Compliance Standards - Lead Audit and Review Processes - Mentor Junior Analysts Our client is looking for a GRC Analyst who will work closely with the Technology team and report to the Technology Risk & Security Manager. This role will focus on ensuring adherence to internal and external security standards and requirements such as ISO 27001,...

  • Cyber Grc Analyst

    3 weeks ago

    Melbourne, Australia FourQuarters Full time

    **The Company** *** This large critical infrastructure organisation has a multitude of projects in the pipeline across 3rd party risk and Identity. Due to this, a new role for a Cyber GRC Analyst has been created to perform the work above as well as generalist security governance, risk and compliance functions. **The Role** This job opportunity would...

  • Senior GRC Analyst

    1 week ago

    Melbourne, Victoria, Australia Latitude IT Full time

    Collaborative, supportive, Values driven environmentGreat coffee (and a variety of tea) and fresh fruitAvoid the traffic: we are outside the CBD and close to public transportEngage with cutting-edge cybersecurity technologies and methodologies.Drive impactful risk management initiatives in a dynamic environment.Collaborate with skilled professionals in a...

  • Grc Cyber Analyst

    6 days ago

    Melbourne, Australia Arup Full time

    **Joining Arup** Arup’s purpose, shared values and collaborative approach has set us apart for over 75 years, guiding how we shape a better world. As a governance, risk and compliance (GRC) cyber analyst for our growing global cyber security team you will help protect Arup’s digital infrastructure and data from cyber-attack. You will help to assess...

  • Grc Analyst

    1 week ago

    Melbourne, Victoria, Australia Anson McCade Full time

    Manage Security Compliance Standards Lead Audit and Review Processes Mentor Junior AnalystsOur client is looking for a GRC Analyst who will work closely with the Technology team and report to the Technology Risk & Security Manager. This role will focus on ensuring adherence to internal and external security standards and requirements such as ISO 27001, PCI...

  • Security Grc Analyst

    6 days ago

    Melbourne, Australia CircuIT Recruitment Group Full time

    Up to $150,000 + super + 10% bonus - Melbourne Location **Job Title: Senior Security Analyst** My client is seeking a GRC Security Analyst to join their team of cybersecurity experts. If you have a strong background in IT security, risk management, and compliance, along with a passion for staying ahead of the curve, then please...

  • Cyber Grc Analyst

    1 week ago

    Melbourne, Victoria, Australia FourQuarters Full time

    The Company***This large critical infrastructure organisation has a multitude of projects in the pipeline across 3rd party risk and Identity.Due to this, a new role for a Cyber GRC Analyst has been created to perform the work above as well as generalist security governance, risk and compliance functions.The RoleThis job opportunity would suit someone who has...

  • Grc Cyber Analyst

    2 months ago

    Melbourne, Australia Arup Full time

    A career at Arup offers you the chance to make a positive difference in the world. Independently owned and independently minded, we attract a diverse mix of people to work on ground-breaking global projects. We have an ambitious commitment to be the digital leader in the built environment and have digital teams and experts all over the world, who collaborate...

  • Grc Cyber Analyst

    1 week ago

    Melbourne, Victoria, Australia Arup Full time

    Joining ArupArup's purpose, shared values and collaborative approach has set us apart for over 75 years, guiding how we shape a better world.As a governance, risk and compliance (GRC) cyber analyst for our growing global cyber securityteam you will help protect Arup's digital infrastructure and data from cyber-attack. You will help toassess Arup's...

  • Grc Cyber Analyst

    3 days ago

    Melbourne, Australia Arup Full time

    A career at Arup offers you the chance to make a positive difference in the world. Independently owned and independently minded, we attract a diverse mix of people to work on ground-breaking global projects. We have an ambitious commitment to be the digital leader in the built environment and have digital teams and experts all over the world, who collaborate...

  • Security Grc Analyst

    1 week ago

    Melbourne, Victoria, Australia CircuIT Recruitment Group Full time

    Up to $150,000 + super + 10% bonus Melbourne LocationJob Title: Senior Security AnalystMy client is seeking a GRC Security Analyst to join their team of cybersecurity experts. If you have a strong background in IT security, risk management, and compliance, along with a passion for staying ahead of the curve, then please applyResponsibilities: Conduct...

  • Security Grc Analyst

    2 months ago

    Melbourne, Australia Hudson Australia Full time

    You'll be an SME on cyber GRC within the company, advising, designing and implementing fit for purpose security controls to protect data and meet compliance requirements. The role can be performed remotely from anywhere within Australia! Responsibilities of the role include but are not limited to: - Implementing security controls, risk assessment...

  • Security Grc Analyst

    2 days ago

    Melbourne, Australia Hudson Australia Full time

    You'll be an SME on cyber GRC within the company, advising, designing and implementing fit for purpose security controls to protect data and meet compliance requirements. The role can be performed remotely from anywhere within Australia! Responsibilities of the role include but are not limited to: - Implementing security controls, risk assessment...

  • Grc Information Security Analyst

    2 weeks ago

    Melbourne, Australia PRA Full time

    Our client is a leader within the financial services industry, with a purpose driven outlook for the future of both people, communities and the environment. Our client now has a requirement for a mid-senior level GRC Information Security Analyst to join their growing security team. What You Will Bring: - One or more related certifications such as CISSP,...

  • Security Grc Analyst

    7 days ago

    Melbourne, Victoria, Australia Hudson Australia Full time

    You'll be an SME on cyber GRC within the company, advising, designing and implementing fit for purpose security controls to protect data and meet compliance requirements.The role can be performed remotely from anywhere within AustraliaResponsibilities of the role include but are not limited to:Implementing security controls, risk assessment framework, to...

  • Grc Specialist

    2 months ago

    Melbourne, Australia Capstone Full time

    6 Month Contract + Further Extensions - Melbourne CBD Location - 1 Day in the Office - Great Daily Rate $$$ **GRC Analyst/Specialist - Archer** We currently seek an experienced GRC Analyst/Specialist that can manage Cyber Security Risk & Compliance capabilities including reporting, confirmation, reviews, and mitigation activities. You will also be...

  • Grc Specialist

    3 weeks ago

    Melbourne, Australia Capstone Full time

    6 Month Contract + Further Extensions - Melbourne CBD Location - 1 Day in the Office - Great Daily Rate $$$ **GRC Analyst/Specialist - Archer** We currently seek an experienced GRC Analyst/Specialist that can manage Cyber Security Risk & Compliance capabilities including reporting, confirmation, reviews, and mitigation activities. You will also be...

  • Cyber Grc Lead

    3 weeks ago

    Melbourne, Australia FourQuarters Full time

    **The Company** This enterprise level critical infrastructure organisation has many varied devices in the IoT space and a large attack surface. And with a growing amount of threat actor groups targeting this industry, there has been a number of new roles created, including this Lead Cyber GRC position. **The Role** This job opportunity would suit someone...