About Us:

A leading player in the education industry in Western Australia is looking to enhance their Governance, Risk, and Compliance (GRC) function. Effect real change on an organisation’s cybersecurity practices.

Overview:

As the Practice Lead for the GRC function, you will provide services of a GRC nature to the wider organisation. Play an integral part in shaping our client’s cybersecurity strategies, ensure compliance and enhance the overall security posture.

Key Responsibilities:

Governance:

• Build and maintain policies and standards.
• Assist with audit-related activities and ensure compliance with regulatory requirements.

Risk Management:

• Conduct risk and control assessments and other risk management activities.
• Update and manage the risk register and Information Security Management System (ISMS).

Security Architecture:

• Design and advise on security architecture.
• Review and assess architecture patterns and templates for compliance with security requirements.

Incident Response and Business Continuity:

• Assist with Disaster Recovery Planning and Incident Response Planning.
• Develop Playbooks and participate in tabletop exercises.

Business Engagement:

• Assess and advise business units on cybersecurity practices.
• Provide guidance on security awareness initiatives.

Advisory:

• Advise on improving the security posture and assist with new initiatives to maintain this posture.

Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• Proven experience in governance, risk management, and compliance, ideally within a large organisational environment.
• Strong understanding of cybersecurity frameworks and standards (e.g., ISO 27001)
• Excellent communication and interpersonal skills, with the ability to engage effectively with diverse stakeholders.