Cyber Security GRC Officer

We're looking for a Cyber Security GRC Specialist to step into a 6-month contract, helping maintain and uplift ISO 27001 ISMS and Essential Eight activities.

his role is responsible for undertaking a wide range of cyber security Governance, Risk and Compliance activities that ensure maintaining and improving the cyber security posture, including ASD Essential 8 control requirements, and contributing towards an Information Security Management System (ISMS) in alignment to ISO27001. Reporting into the GRC Lead, who reports into the CISO, you'll form part of a small, collaborative team.

• Maintaining and uplifting ISO 27001 controls and ISMS artefacts

• Supporting internal and external audits

• Running risk assessments and managing risk registers

• Supporting Essential Eight maturity uplift

• Helping prepare for ISO audits and continuous improvement activities

• 3+ years' experience in cyber security GRC roles

• Strong, practical ISO 27001 experience (Lead Implementer / Lead Auditor highly regarded)

• Solid understanding of Essential Eight and risk management

• Someone proactive who can pick up tasks, run with them, and close them out

• Mature and supportive cyber leadership - no micromanagement

• Genuine flexibility (hybrid working, family-friendly environment)

• Small, collaborative cyber team

• Opportunity to leave your mark, taking ownership of a GRC platform implementation.

If this sounds like you (or someone you know), please apply direct or contact Chelsey on [email protected]