Senior Security Risk Analyst

Together we shape thriving communities public spaces places and economies.

• Lead the implementation of a third-party risk management framework and be involved in BAU cyber security activities across the department
• Temporary (Up to 30 June 2027) full-time opportunity
• Office based in Parramatta with flexible working supported Other NSW DPHI office locations considered upon application
• Salary relative to experience and ranges from $129464 to $142665 super

The role

The Senior Security Risk Analyst role will help the organisation clearly understand and manage its cyber security and thirdparty risks in a practical peoplefocused way. Youll lead the introduction and rollout of a new thirdparty risk management framework working closely with vendors and procurement teams to carry out due diligence and make sure security compliance and business requirements are met from the start. Alongside this youll actively support the business through procurement activities tied to cyber security helping teams make informed decisions in a large complex environment.

Youll keep executives informed through clear meaningful risk reporting build visibility of thirdparty risks across the department and contribute to daytoday cyber security activities as part of business as usual. Working in a supportive team of up to seven the role also plays a key part in driving governance risk and compliance uplift across DPHI while providing guidance and support to external departments.

For more information read the full Role Description: Senior Security Risk Analyst

What you will bring to the role

• Handson thirdparty risk leadership delivering fitforpurpose security risk frameworks aligned to ISO 27001 and the NSW Cyber Security Policy with a strong grounding in information security risk management (ISO/IEC 27005) and control frameworks such as NIST ASD ISM and the Essential Eight.
• Strong vendor due diligence capability carrying out practical assessments across cloud SaaS and managed service providers using SIGs security questionnaires and control gap analysis to strengthen security posture.
• Procurementsavvy cyber support embedding security requirements into sourcing and contracts and working confidently with GRC tools and risk workflows to support business outcomes.
• Clear executiveready reporting analysing data from multiple sources to improve controls and translating complex risk information into clear insights using data visualisation tools (e.g.PowerBI Tableau) and dashboards.
• Solid BAU cyber and GRC capability comfortable supporting daytoday security risk and compliance activities in large complex environments across enterprise platforms and controls.

What is an essential requirement:

• Tertiary qualifications in computer science information and technology or related technical field and/or relevant experience including risk management and compliance.

Join us

If excited by the information above we look forward to receiving your application including a copy of your resume and cover letter expressing your interest and suitability for the role.

Applications close on 11:55PM on Sunday 24 May 2026

Should you require further information about the role please contact Ivana Stojnic on

To enhance your account security PageUp is introducing two-factor authentication (2FA). You can follow the step by step guide here. If you experience any issues please reach out on (02) - HR Support option 2 DPHI People Advisory option 1.

We encourage and support applications from people with disability. Please reach out to us to discuss any accommodations or adjustments that may be needed during the recruitment process ensuring that you have every opportunity to showcase your talent skills and potential. Contact the Talent Team via or (02) - HR Support option 2 DPHI People Advisory option 1 and reference Request an Adjustment - Job Title and Reference Number.

If you are an Aboriginal or Torres Strait Islander use our Aboriginal applicants guide to assist with applying for roles or contact our Aboriginal Career pathways team for a yarn.