Senior Security Advisor, GRC

About LevelBlue (including Trustwave)LevelBlue reduces risk and builds lasting resilience so organizations can innovate and advance their mission with confidence. As the worlds most analyst-recognized and largest pure-play managed security services provider LevelBlue elevates client outcomes that matter: stronger defense faster response and sustained business continuity. Following LevelBlues acquisition of Trustwave some roles may still appear under the Trustwave or Trustwave a LevelBlue company name in legacy systems. These positions will be a part of LevelBlues global security organization. Learn more at .$5k and 5 days training / continued education allowance per yearCareer growth - receive mentoring coaching and support to progress your careerFlexible work arrangements and a supportive team (youll never feel alone!)Everyones voice matters here. We arent looking for passengers were looking for those interested in an opportunity to develop their skills and experience in information security and make a real the roleTrustwave is seeking a versatileSenior Security Consultantwho can provide a broad range of advisory services covering security strategy governance risk audit and compliance topics as well as possessingenough of a technical background to be able to confidently work within high-complexity we expect most candidates will be stronger in certain disciplines; and we are happy to look at candidates with varying strengths provided there is a versatility across all. If youlike risk analysis vendor security assessment methodologies in the same way most people like donutsor kittens(or both)then we want to hear from you!Your day to day tasks will vary considerably from leading and delivering client projects working with clients / prospective clients and identifying their security needs and whether we can assist mentoring and coaching more junior staff and delivery tasks might include:Undertaking security threat and risk assessmentsDeveloping security strategies and roadmapsDeveloping and reviewing solution / capability design artefactsDeveloping and refining policies standards principles and strategies and assessing their effectivenessAssisting in the evaluation of emerging technologies service providers tools platforms and applications that are best suited to the specific needs of a given organizationDelivering security architecture advice (particularly surrounding cloud services)Job Requirements:Top-notch written and verbal communication skillsAn analytical mindset (particularly when it comes to technology and business risk)An ability to deliver multiple consulting projects at a high quality often under pressure while also developing strong relationships with our customersSelf-startingteam mentality; can take ownership and lead GRC engagements with minimal guidance and provide coordination of evidence of strong stakeholder engagement skills delivering high quality policies and standards to deadline and conducted risk assessment and proposed mitigating controlsHas played a significant role in assisting on or more organisations through an ISO 27001 certification and / or SOC 2 attestationISO 27001 Lead Auditor / Lead Implementor or higherDesired Skills and Experience:Awareness of Australian and international privacy regulationsAwareness of the Security of Critical Infrastructure Act and its obligationsExperience considering security practices for AD & Azure / AWS / GCP / CISM / CRISC / CISSPEducation:A high school diploma or equivalent is required; a college or university degree is a role is open to candidates legally authorized to work in Australia. At LevelBlue including teams that previously operated as Trustwave we support flexible work and bring people together in person for key moments based on role team and business is committed to a culture of respect inclusion and equal opportunity. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin disability or veteran status age or any other status protected under applicable all agencies: Please do not contact LevelBlue or Trustwave employees outside of the Talent Acquisition team. LevelBlues policy is to only accept resumes from agencies through its approved agency process and with a valid agreement in place. Any resume submitted outside this process will be considered the property of LevelBlue and no fee will be paid if a candidate is hired from such a submission.#LI-JF1