Head of IT Risk, Governance & Cyber AssuranceYour new companyYou'll be joining a large public-sector organisation with a complex digital landscape and significant regulatory obligations. The organisation supports a substantial user base and operates a mature technology function where cyber security, governance, and risk assurance are critical to institutional stability and trust. Your new roleAs Manager within Governance IT Risk and Assurance, you will lead the governance, risk, and assurance capability within the Security and Digital Operations function, reporting directly to a senior executive. Acting as a Line 1 risk function, you will ensure cyber and IT risks are effectively governed, tested, and reported, providing confidence to executive leadership, governance committees, and regulators.You will be responsible for the IT governance framework, oversight of assurance and control testing aligned to industry standards, and secure-by-design oversight across technology initiatives. The role also leads cyber culture and awareness activities and provides trusted advice on emerging risks, compliance obligations, and mitigation strategies. What you'll need to succeed Significant experience in senior IT governance, risk, and assurance roles within large, complex organisations Strong expertise in cyber and enterprise IT risk frameworks, particularly NIST CSF 2.0, with working knowledge of ISO 27001/27005, ISO 31000, and ACSC Essential Eight Demonstrated experience leading assurance and control testing programs Solid understanding of secure-by-design principles and security architecture oversight Proven ability to provide clear, strategic advice to senior leaders and governance forums Experience managing and developing specialist teams with competing priorities Excellent stakeholder engagement and communication skills Relevant tertiary qualifications in IT, cybersecurity, or risk management (postgraduate study or professional certifications highly regarded) What you'll get in returnYou'll step into a senior leadership role with genuine influence over the organisation's cyber resilience and risk posture. The position offers exposure to executive-level decision-making, complex regulatory environments, and meaningful public-sector outcomes. If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion on your career. 2986724