Governance, Risk and Compliance (GRC) Specialist - WFH
Governance, Risk and Compliance (GRC) Specialist - WFH Supervisor/Manager : Chief Information Security Officer About Us Catalyst... more info
Governance, Risk and Compliance (GRC) Specialist
Salary:
80.00 - 100.00
Posted:
24-02-2025
Category:
IT Management IT Project Management
Canberra,
Job Description
We are seeking an experienced Governance, Risk and Compliance (GRC) Specialist to support and enhance an organisation’s cyber security governance framework, risk management processes, and compliance with Australian regulations. This role requires a strong understanding of risk management methodologies, regulatory compliance, and cyber security best practices to help drive business resilience and security maturity. Key Responsibilities: Develop, implement, and maintain GRC frameworks, policies, and procedures in alignment with Australian Government regulations and industry standards such as ISM, PSPF, ASD Essential Eight, ISO 27001, NIST, and other relevant security frameworks. Conduct risk assessments, gap analyses, and security audits to identify potential vulnerabilities and ensure ongoing compliance. Collaborate with internal and external stakeholders to manage risk mitigation strategies and security governance activities. Develop and maintain risk registers, incident management plans, and compliance dashboards. Support security incident response processes and develop strategies for mitigating regulatory and compliance risks. Prepare and deliver reports on risk, compliance, and security governance to senior management and external auditors. Facilitate cyber security awareness training and compliance workshops to strengthen organisational security culture. Work closely with security architects, operations teams, and legal teams to ensure compliance objectives are met. Skills and Experience: Bachelor’s degree in Cybersecurity, Information Technology, Business, or a related field. Minimum 3-6 years’ experience in governance, risk, and compliance roles, preferably in Government or Defence sectors. Strong knowledge of Australian cyber security regulations, compliance standards, and governance frameworks. Experience conducting risk assessments, internal audits, and regulatory compliance reviews. Familiarity with ISO 27001, NIST, PSPF, ISM, ASD and Essential Eight frameworks. Ability to communicate effectively with senior stakeholders, security teams, and regulators. Proficiency in using GRC tools and risk management platforms. Relevant certifications such as CISSP, CISM, CRISC, ISO 27001 Lead Auditor/Implementer are highly regarded. Additional Details: Employment Term: Permanent, full-time Location: ACT SFIA level required: The Specified Person will be expected to demonstrate attributes of SFIA Level of Responsibility 5. Security Requirements: To be eligible, you must be an Australian Citizen and hold a minimum of NV1 Security Clearance. How to Apply: Please upload your resume to apply or send to . Candidates must be willing to undergo pre-employment screening checks, which may include verification of ID and work rights, security clearance, and any additional checks. We will contact suitably qualified candidates with further instructions. #J-18808-Ljbffr
Job Details
Salary: 80.00 - 100.00
Posted: 24-02-2025
Category: IT Management IT Project Management
Canberra,
Related Jobs
Risk & Security Compliance Coordinator - Westfield Bondi Junction
Risk & Security Compliance Coordinator - Westfield Bondi Junction Reporting to the Risk and Security Manager, you’ll play... more info
Governance Specialist
Charlestown, NSW, AU, 2290 Sydney, NSW, AU, 2000 Area of Expertise: Operations Unit: Allianz Australia Employing Entity:... more info
