About Us Workwear Group (WWG) is part of Wesfarmers Industrial & Safety a division of Wesfarmers, a top 20 ASX listed company with over 100,000 employees. Housed under the banner of Workwear Group, our three iconic brands - KingGee, Hard Yakka and NNT - have been in the business of delivering workwear since the late 1920's. We are the trusted partner in workwear solutions, manufacturing over seven million units each year. What sets us apart is our continuous investment in innovation, market knowledge, pioneering ideas and sustainability practices. We work as one team. We put our customers first and are passionate about what we do. Joining WWG is an opportunity to thrive in an inspiring, safe, and inclusive community. About the Role The Compliance Lead ensures organisational adherence to cybersecurity compliance frameworks, operational standards, and internal governance requirements, with a strong focus on standards, as well as WIS and WES compliance. This role also leads compliance activities for tender submissions, ensuring proposals meet technical and security compliance requirements. What you’ll be doing 1. Cyber & Operational Compliance Develop, implement, and maintain compliance frameworks aligned with: Cybersecurity standards (ISO 27001, NIST CSF, SOC 2, PSPF, DISP, Australia ISM). Monitor emerging cyber regulations and industry best practices, advising stakeholders on implications. Conduct internal cyber compliance audits and coordinate external audits for certification. Maintain accurate compliance documentation and dashboards for internal and external stakeholders. 2. Cyber Risk & Security Controls Ensure policies and practices comply with information security and data protection standards. Collaborate with IT and security teams to validate technical controls for compliance. Investigate and resolve compliance breaches related to cybersecurity frameworks. 3. Tender Response Compliance Review tender documentation for cyber and operational compliance requirements. Prepare compliance artefacts for tender submissions (security certifications, ISO credentials, governance statements). Liaise with technical teams to ensure accurate representation of security posture. 4. Audit & Governance Plan and execute internal audit schedules for cyber and operational compliance. Support external audits and ensure timely resolution of findings. Develop mitigation strategies for compliance risks identified during audits or tender reviews. 5. Cyber Awareness & Training Oversee cyber awareness initiatives and programs across the organisation. Develop and deliver training content to improve employee understanding of security best practices. Track participation and effectiveness of awareness campaigns, reporting metrics to leadership. 5. Governance & Support Work with senior leaders to align pilots with broader strategy and governance. Ensure ethical and secure use of AI tools, especially around data handling. Maintain a repository of reusable components and learnings. 6. Community & Engagement Foster a community of practice around AI and automation. Share success stories and lessons learned to encourage adoption. Stay current with emerging tools and trends and bring insights into the organization. 7. Health and safety: Visibly leads the safety agenda generally and ensures self and team understand, adheres to and works towards meeting their HSW responsibilities as set out in GetSAFE 3.1 HSW Accountabilities, Responsibilities and Authorities Standard (for all leadership roles). Who we’re looking for At our company, we value not only our great brands but also the people and teams that drive our success. In addition to technical skills, we seek team members who possess the following personable qualities: Strong work ethic and are committed to showing up for a team Openness to receive coaching and embrace self-reflection and self-growth Accountability for your actions, emotions, and actively venture beyond your comfort zone Embrace innovation, take calculated risks, and inspire others to think outside the box Ability to build meaningful relationships, we prioritise our customers. Balancing commercial goals with customer satisfaction is key Ethical standards and demonstrating honesty and integrity in all interactions is fundamental to our team culture. What we’re looking for To be successful, candidates will typically bring: Australian Citizen 3–5 years directly in compliance, cybersecurity governance, risk, audit or regulatory roles, and Demonstrated capability leading compliance programs or cross‑functional governance initiatives. Technical & Compliance Skillsets (with Recommended Experience) Cybersecurity & Technical Compliance Strong working knowledge of ISO 27001, NIST CSF, SOC2, PSPF, DISP/IRAP, ISM Cybersecurity controls, risk assessments, and compliance technologies (DLP, IRM, audit tools, firewalls) Security incident analysis, vulnerability assessments and third‑party security assessments Audit & Assurance Regulatory and governance compliance, policies, documentation, tender support Internal/external audit preparation, certification support, audit evidence collation KPI and compliance reporting frameworks, monitoring and metrics Security Certifications (Preferred) ISO 27001 Implementer/Auditor CRISC or CISA DISP/IRAP exposure What we offer The chance to join a great team of like-minded, hard-working people who are passionate about achieving our vision and the growth objectives of the company. Flexible working environment, allowing for work from home day/s each week. A competitive salary package and suite of benefits and perks, including a 50% discount on our brands Hard Yakka, KingGee and NNT and 5% Wesfarmers discount for Kmart, Bunnings, Officeworks and more. A tailored career and development plan, plus reward and recognition programs. Whatever your goals we’re here to support you on that journey. Our Wellbeing program, Thrive, with activities designed to support the Financial Wellness of our team, Celebrate Diversity, ensure we Get Physical and maintain Healthy Minds, including challenges, yoga, meditation and access to our Employee Assistance Program. We Learn, a dedicated hub for all things learning and development. We actively work on creating a safe and inclusive environment free of discrimination. At Workwear Group we aspire to build a culture where diversity is celebrated, where Team Members feel a sense of “I Belong” and are empowered to bring their whole selves to work. You can follow us on LinkedIn or see our company careers page for more opportunities https://www.workweargroup.com.au/careers Thank you for your interest in Workwear Group. Due to anticipated high volumes of applicants, only shortlisted candidates will be contacted. Video