Governance Risk and Compliance Consultant

The Mission

We are here to find those who strive for excellence go the extra mile and crave continuous growth.

Were an all-Australian cybersecurity firm helping some of the countrys biggest organisations stay ahead of cyber risk. Were looking for people who share our drive to learn relentlessly act with integrity and raise the bar for our clients and teammates alike those seeking a place where your drive and expertise are met with equal enthusiasm and opportunity. Dive into a culture that treasures innovation and offers a growth platform that is as limitless as your ambition and work ethic.

The Opportunity

Were continuing to grow and are looking for an experienced Governance Risk & Compliance (GRC) Consultant to join our talented GRC team. Youll be primarily responsible for ensuring that our clients cybersecurity programs are compliant with industry standards and regulations and that they are operating efficiently and effectively to minimize cybersecurity risks. Youll also collaborate closely with other departments to develop and implement policies procedures and best practices that align with the organisations risk appetite compliance requirements and business goals.

What Youll Do

• Conduct risk assessments and audits to identify vulnerabilities and cybersecurity risks
• Develop and implement policies procedures and best practices for information security and compliance
• Develop and implement a cybersecurity governance framework to ensure the organisations cybersecurity program aligns with business goals and risk appetite
• Conduct compliance assessments to ensure the organization is adhering to industry standards and regulations such as ISO 27001 NIST CSF Essential 8 PCI-DSS Australian ISM the Privacy Act and GDPR
• Develop and implement cybersecurity training and awareness programs for employees to promote a culture of security
• Work closely with our clients technology teams to develop incident response plans and conduct tabletop exercises to test the plans
• Provide guidance and support to other internal security teams and other departments on cybersecurity governance.
• Lead project work unsupervised and retainer work under supervision

What Youll Bring

Your previous experience has enabled you to hone your communication and collaboration skills to seamlessly interact with a variety of internal and external stakeholders throughout projects. Youll be a highly organised natural problem solver with the ability to manage your time easily to ensure quality outcomes are delivered on time.

Your other attributes will include:

• Minimum 2 years industry experience in cybersecurity governance risk and compliance consulting in a similar cybersecurity role
• Experience conducting all or most of the above works delivered to a level of quality that reflects a strong understanding of our clients security risks and the specific actions needed to remediate them
• Experience leading complex project and retainer engagements under supervision this role offers the chance to work with some of the best consultants in the business!
• Bachelors or Masters Degree in Computer Science Information Security or related work experience
• Strong knowledge of cybersecurity frameworks and standards such as NIST ISO 27001/2 Essential 8 and CIS Controls
• Project management skills and the ability to manage multiple projects simultaneously
• Strong IT technical knowledge across environments such as networking cloud application of layer firewalls networking concepts SIEM anti-virus EDR anti-spam/email filtering and data loss prevention etc
• Experience working with Microsoft 365 Azure AWS
• At least 1 Industry implementation Certification: CISSP CISM CRISC and/or CISA

What Youll Get

• A technically excellent collaborative team that delivers
• Competitive base salary and flexibility to suit how you work best
• Clear investment in your professional growth and long-term success

Ctrl is an equal opportunity employer committed to diversity inclusion and belonging. We value diversity and welcome applicants from all backgrounds encourage anyone who meets most of the criteria to apply even if you dont tick every box.

If you need assistance accessing or reviewing the information on this website need help submitting an application for employment or requesting an accommodation please contact us at for further help.