Senior Security Advisor, GRC
Company: LevelBlue?LLC
Location: Canberra?ACT
Employment type: Full-time
**About LevelBlue**
LevelBlue reduces risk and builds lasting resilience so organizations can innovate and advance their mission with confidence. As the world's most analyst-recognized and largest pure-play managed security services provider, LevelBlue elevates client outcomes that matter: stronger defense, faster response, and sustained business continuity. Following LevelBlue's acquisition of Trustwave, some roles may still appear under the Trustwave name in legacy systems. These positions will be a part of LevelBlue's global security organization.
**Benefits**
- $5k and 5 days' training / continued education allowance per year
- Career growth – receive mentoring, coaching, and support to progress your career
- Flexible work arrangements and a supportive team
Everyone's voice matters here. We aren't looking for passengers, we're looking for those interested in an opportunity to develop their skills and experience in information security and make a real difference.
**Role Overview**
Trustwave is seeking a versatile Senior Security Consultant who can provide a broad range of advisory services, covering security strategy, governance, risk, audit and compliance topics, as well as possessing enough of a technical background to confidently work within high-complexity environments. Naturally we expect most candidates will be stronger in certain disciplines; we are happy to look at candidates with varying strengths provided there is a versatility across all.
**Typical day-to-day tasks**
- Lead and deliver client projects
- Work with clients and prospective clients to identify their security needs and determine how we can assist
- Mentor and coach junior staff
- Undertake security threat and risk assessments
- Develop security strategies and roadmaps
- Develop and review solution and capability design artefacts
- Develop and refine policies, standards, principles and strategies, and assess their effectiveness
- Assist in the evaluation of emerging technologies, service providers, tools, platforms and applications best suited to specific needs
- Deliver security architecture advice, particularly surrounding cloud services
**Job Requirements**
- Top-notch written and verbal communication skills
- Analytical mindset, especially regarding technology and business risk
- Ability to deliver multiple consulting projects at high quality under pressure while building strong customer relationships
- Self-starting team mentality; can take ownership and lead GRC engagements with minimal guidance and coordinate others
- Demonstrable evidence of strong stakeholder engagement, delivering high-quality policies and standards on deadline and budget
- Experience conducting risk assessment and proposing mitigating controls
- Experience assisting multiple organizations through ISO?27001 certification and/or SOC?2 attestation
- ISO?27001 Lead Auditor / Lead Implementor or higher
**Desired Skills and Experience**
- Awareness of Australian and international privacy regulations
- Awareness of the Security of Critical Infrastructure Act and its obligations
- Experience considering security practices for AD, Azure, AWS, GCP environments
- CISA, CISM, CRISC, CISSP
**Education**
- High school diploma or equivalent required; college or university degree a plus
This role is open to candidates legally authorized to work in Australia. LevelBlue supports flexible work and brings people together in person for key moments based on role, team, and business needs.
**Equal Opportunity**
LevelBlue is committed to a culture of respect, inclusion, and equal opportunity. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age, or any other status protected under applicable law.
**Agency Notice**