You'll be an SME on cyber GRC within the company, advising, designing and implementing fit for purpose security controls to protect data and meet compliance requirements.
The role can be performed remotely from anywhere within Australia!
Responsibilities of the role include but are not limited to:
Implementing security controls, risk assessment framework, to align with regulatory requirements, documented appropriately for compliance
Evaluate risk and put in strategies to address/mitigate risks accordingly
Assist in the further development of a BCP and DR plan
Develop reporting metrics, dashboards, and evidence artifacts
Utilise automation to streamline GRC processes
Train and support other staff in the business in relation to cyber GRC best practice
You will bring:
2+ years in cyber security GRC experience minimum
Experience aligning security controls to standards such as ISO 27001, PCI-DSS, NIST CSF, etc.
Experience designing and implementing enterprise GRC strategy/solutions
Great communication skills, explaining complex cyber security issues accurately and efficiently
Ability to educate others, assisting with cyber awareness program
Due to client requirmenets only those in Australia with unlimted working rights are able to apply.
A fully remote prospect to utilise and develop your cyber GRC skillset