Governance, Risk, and Compliance Manager – City of Melbourne | JobLeads
CleanPeak Energy, City of Melbourne
AUD 120,000 - 160,000
Location: Adelaide, Melbourne, or Sydney, Australia – Remote
Senior GRC Manager – Compliance & Assurance
The Senior GRC Manager - Compliance & Assurance is responsible for leading Airlock Digital's compliance and assurance program. This role owns key certification and compliance activities, including SOC2, IRAP and ISO programs, and is accountable for audit management, internal control framework development, and the maintenance of policies, standards and procedures that support business and regulatory obligations. The role works closely with internal stakeholders across Technology and the broader business, as well as external auditors and certification bodies, to ensure Airlock Digital maintains an effective and scalable compliance posture.
Key Responsibilities
* Own and manage Airlock Digital's compliance and assurance activities across relevant frameworks and programs, including SOC2, IRAP and ISO.
* Coordinate and manage external audits, assessments and certification activities.
* Act as the primary internal point of contact for auditors, assessors and certification bodies.
* Develop, maintain and continuously improve Airlock Digital's internal control framework.
* Review, draft, maintain and update policies, standards and procedures required to support compliance obligations and certification activities.
* Monitor the effectiveness of controls and identify opportunities to strengthen Airlock Digital's compliance posture.
* Work with business and technical stakeholders to ensure controls are implemented, documented and operating effectively.
* Maintain audit‐ready evidence, documentation and records to support ongoing assurance activities.
* Conduct compliance and control gap assessments and support remediation planning and tracking.Prepare reporting for the Leadership Team, Board and other internal stakeholders as required.
* Organise and attend relevant internal and external compliance meetings.
* Provide practical guidance to stakeholders on compliance requirements, obligations and expected control outcomes.
* Support the ongoing maturity and scalability of Airlock Digital's governance, risk and compliance capability.
Required Skills & Qualifications
* 5+ years experience in governance, risk, compliance, audit or assurance roles, ideally within a software vendor, technology business, consultancy or regulated environment.
* Strong experience managing compliance programs and audits, including external certification or assurance activities.
* Strong working knowledge of security and compliance frameworks such as SOC2, ISO27001 and IRAP.
* Experience designing, documenting and maintaining internal controls and associated compliance artefacts.
* Experience developing and maintaining policies, standards and procedures.
Bonus Points
* ISO27001 Lead Auditor, ISO27001 Lead Implementer, IRAP Assessor, CISSP, CISM, CISA or other GRC‐related credentials.
What We Offer
Flexible Work Environment; Hybrid or Remote– Time Off – Paid Volunteering Time – Birthday Leave – Paid parental Leave – Home Office Allowance
#J-18808-Ljbffr