About the company

• An enterprise financial service environment
• Maintaining various regulatory standards across the region - ISO, APRA, COBIT etc
• Broad 3rd party risk focus and uplift

About the role
This is a newly created contract role to support the local cyber team to maintain their standards which include APRA, ISO, COBIT, NIST and their own internal ISMS. They are looking for someone able to give broad advice on cyber GRC to internal stakeholders, advise on 3rd party risk management and help them with a general cyber uplift. If you have experience in a financial services environment working on a range of frameworks and standards, this could suit well - experience with financial services environments will be highly regarded for this role.

This is a hybrid role - expectation into office is low though circa once a week into the Sydney office. It will be a quick process - two interviews with an offer the following day if successful.

Culture / Benefits

• Results first, flexible culture with 1 day a week in office
• New role to support an existing team with collaborative culture
• Excellent culture, low attrition in the team, great place to work

Duties

• Work closely with C level stakeholders and SME level people to drive compliance
• Plan, execute and assess 3rd party risk management activities
• General cyber GRC work across ISO, APRA and ISMS standards
• Gap assessments and remediation coordination to uplift where required
• Work closely with various internal teams

Skills and experience

• To be successful in this role, you will need to have extensive experience in GRC
• Deep knowledge of various standards and frameworks - ISO, NIST, APRA, COBIT etc
• Ability to hit the ground running - need an experienced operator for this role
• Excellent Communication skills - written and verbal
• The ability to liaise with various internal teams
• Industry certifications are highly regarded.