Join Us to Deliver Work That Matters
Join our Security and Risk team as the Security and Risk Lead, a senior role at the centre of how we manage security, governance and risk across the firm. Based in Canberra or Sydney, this role will require occasional national travel.
Working closely with the Chief Security and Risk Officer, you will translate strategic direction into day-to-day execution across security, risk, compliance and committee governance. You will help maintain the systems, oversight and reporting that support trusted delivery for government and Defence clients, while ensuring the firm has a clear and integrated view of its obligations, performance and emerging risks.
What You’ll Do
This role suits a trusted operator with sound judgement, strong follow-through and credibility in highly regulated environments. You know how to keep complex governance moving, produce clear and useful outputs, and work across the business to drive action and accountability. In practice, this looks like:
* Act as the CSRO’s operational delegate, coordinating priorities, reporting and compliance activity across the security and risk function.
* Manage the Security and Risk Committee end to end, including agendas, papers, minutes, action registers and reporting cycles.
* Manage compliance with DISP and aligned frameworks, including PSPF, ISM, Essential Eight and ISO 27001, by maintaining control mappings, coordinating audits and submissions, and keeping ISMS artefacts current and audit-ready.
* Coordinate enterprise risk governance, including the consolidated risk register, integrated committee reporting, risk appetite reviews, engagement and continuity risk processes, and monitoring of the external risk environment.
* Serve as the central coordination point for security incidents and risk events, supporting response, assessment, communication and remediation tracking.
* Strengthen capability through board-ready reporting and insights, awareness activities, and continuous improvement of security and risk processes, tools and practices.
What you’ll bring
Our most successful people are curious, collaborative problem-solvers with structured thinking, a growth mindset, and the resilience to thrive in fast-moving environments. They build trusted relationships with integrity, communicate clearly, and know when to step in to help deliver great outcomes.
The Successful Candidate Will Have
* An active AGSVA Negative Vetting Level 2 (NV2) clearance or higher, and eligible for appointment as a DISP Security Officer, including meeting the Department of Defence’s character and suitability requirements.
* 7+ years’ combined experience across security, risk, assurance or a closely related discipline, including experience in Defence-facing, national security or highly regulated environments.
* Current working knowledge of DISP, PSPF, ISM, the ACSC Essential Eight and ISO/IEC 27001, with the ability to translate these into practical, proportionate controls.
* Experience supporting security, risk or audit committees, and producing clear, decision-ready papers, briefings and reporting for executives and senior stakeholders.
* Proven ability to support an enterprise risk management framework aligned to ISO 31000.
* Strong people leadership skills, with experience building high-accountability teams and engaging credibly with senior stakeholders, clients and technical specialists.
It Would Also Be Advantageous To Have
* Relevant postgraduate qualifications in security, risk, law, cyber, information management or business.
* Professional certifications such as CISSP, CISM, CRISC, CISA, ISO 27001 Lead Auditor / Lead Implementer, CPRM or equivalent.
* Prior experience in a Tier 1 or mid-tier consulting firm.
* Experience with IRAP-assessed environments, classified ICT systems, and SCEC-compliant physical security.
* Experience advising on or overseeing AI governance, third-party risk, and cloud security at scale.
What we offer
Benefits
This role offers real influence, close partnership with senior leadership, and the opportunity to help shape the security and risk capability of a growing national firm. At Synergy, it’s personal, so alongside meaningful work, we offer a supportive and flexible environment, with benefits designed to help you thrive at work and in life:
* Benefits to support different life stages, including generous parental leave and purchased leave options.
* Everyday benefits through Flare discounts, novated leasing, and a range of salary sacrificing options.
* A flexible, collaborative culture with access to experienced leaders, cross-firm relationships and the support to do your best work.
* Ongoing development, including access to learning resources and the chance to shape mature, future-focused security and risk practices.
How to Apply
If you’re a security and risk professional with strong judgement, operational discipline, and experience in regulated environments, please click the Apply button on this advertisement.
Applications should include a resume and a one-page summary outlining how your skills and experience align with the role requirements.
Synergy Group is committed to equal opportunity and building an inclusive workforce. We welcome candidates from all backgrounds, including Aboriginal and Torres Strait Islander peoples. If you need adjustments or support during the application process, please reach out to our recruitment team (***email_hidden***).