Senior Cyber Security GRC Consultant

SeniorCyber GRC Consultant

• Lead meaningful security work that directly supports Defence andcriticalGovernment projects

• Drive governance risk and compliance maturity mentor others andprovideguidancewithin a complex and strategically important environment.

• Location Flexible: Canberra or Melbourne based hybrid working

This role does require the successful applicant to be an Australian Citizen and hold a NV-1 level security clearance and able to uplift andmaintainNV-2.

Werea Family Friendly certified workplace we understand the often many and varied roles our team members need to play within their own unique family setting and actively support them.

Our team feel Leidos isa great placeto work. Learn more about our culture and benefits by visiting us here Work That Matters

Leidos Australia delivers IT and airborne solutions that protect and advance the Australian way of life. Our 2000 local experts backed by our global experience and network of partners are working to solve the worlds toughest challenges in government intelligence defence aviation borderprotectionand health markets.

Your New Role and Responsibilities

Within Leidos Central Processing (CP) Security theSeniorCyber Security GRC Consultant supports the governance risk and compliance domains within the cybersecurity program supporting the CP Environment.

This roleis responsible forsupporting enterprise-wide efforts to ensure compliance with regulatory requirements internal policies and industry best practices. The role combines technical knowledge strategic thinking and regulatory awareness to mature the security posture and risk management capabilities of a complex strategic environment.

WhatYoullBring to Make an Impact

• Develop implement andmaintaincybersecurity policies and standards aligned with frameworks (e.g. NIST CSF ISO/IEC 27001 DSPF ISM) and prepare security assessment documentation for system authorisations.

• Conduct and support risk assessments across systems and vendors track remediation efforts and coordinate audits to ensure compliance with regulatory and internal requirements.

• Review and assess third-party vendors for security risks provide mitigation strategies and support due diligence processes.

• Deliver security awareness programs develop targeted training and report GRC metrics and KPIs through dashboards and documentation for leadership and working groups.

• Act as a trusted advisor mentor junior team members andidentifyopportunities for automation and strategic enhancements to mature the GRC function.

About You and What Youll Bring

• Ideally you will have 710 years of proven Cyber GRC experience; however candidates with around five years of directhands-onexperience in Defence or similarly regulated Government System Assessment and documentation activities may behighly regardedas strongapplicants.onexperience in Defence or similarly regulated Government System Assessment and documentation activities may be

• Strong understanding of cybersecurity standards regulations and risk frameworks plus experience in Defence environments and the Cyber Security Assessment and Authorisation Framework.

• Excellent written and verbal communication (including executive-level reporting) strong analytical and problem-solving skills and ability to work independently to deliver outcomes.

• Certifications such as CISSP CISA CISM CRISC CGEIT ISO 27001 Lead Implementer/Auditor or IRAP highlyregarded;experience in regulated sectors (Defence finance healthcare energy government) desirable.

• Strategic thinking risk-based decision-making project management capability regulatory acumen and technical understanding of cybersecurity controls.

Diverse Team Members SharedValuesand a Common Purpose

Providing our customers with smarter solutions takes an incredible team with diversity of thought experience and perspectives driving innovation. Inclusion is at the heart of our culture and is one of our core values.Itsabout creating a workplace where everyone can do important work feels welcome valued and respected and has equal access to opportunities to thrive. Paul Chase Chief Executive Leidos Australia.

Leidos Australia is an equal opportunities organisation and is committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islanders culturally and linguistically diverse people people with disabilities veterans neurodiverse people and people of all genders sexualities and age groups.

Our five Advocacy Groups (Women and Allies NetworkYoung Professionals Defence & Emergency Services Action for Accessibility and Abilities and Pride)provide an opportunity for team membersto connect and collaborate on shared interests and work to support and celebrate our diverse community.

Next Steps

• To apply for this role follow the links or apply via our Careers page.

• Recruitment process - virtual / face to face interview & background checks.

• Applicants may also need to meet International Traffic in Arms Regulations (ITAR) certain circumstances this can place limitations on persons who hold dual nationality permanent residency or are former nationals of certain countries as per ITAR 126.1.

• We are committed to making our recruitment process accessible to all candidates. Please contact our Careers teamifyoudlike to discuss anyadditionalsupport during your application or throughout the recruitment process