Senior Cyber Security GRC Specialist

Responsibilities

• Support and uplift the firm's ISO27001-aligned ISMS
• Maintain ISO27001 audit readiness and compliance activities
• Support cyber risk register and treatment plan updates
• Support reviewing supplier, client, and business risk assessments
• Monitor compliance with the firms' frameworks and policies
• Develop GRC metrics and executive reporting
• Enhance and manage cyber awareness program and quarterly phishing simulations
• Act as a trusted advisor to stakeholders across the business; embedding security into projects and procurement.
• Support privacy compliance and regulatory obligations
• Collaborate with Digital IT, Risk & Compliance, and global cyber teams

Requirements

• ISO27001, NIST CSF, Essential Eight experience
• Cyber risk, audit, and compliance delivery
• Supplier and client risk assessment experience
• Strong stakeholder engagement and communication
• Relevant degree and/or certifications (CISSP, CISM, CRISC)
• ISO27001/42001 Lead Implementer / Lead Auditor Certification
• If you're interested in this role but don't feel that you match every single one of our requirements, we would still love to hear from you and explore the unique skillset and attributes that you can bring to the team.
• Reach your remarkable
• Remarkable perks that put you first:
• Flexible and hybrid working options
• Ongoing learning and development opportunities
• Inclusive, high-performing team culture
• Inclusive diverse cyber security team
• Exposure to enterprise-wide cyber initiatives
• Opportunity to make immediate, visible impact
• Need some help applying or participating in the recruitment process?
• Should you have questions or require any adaptations or additional support for your individual circumstances so you may perform at your best during the application or recruitment process please contact our Talent Acquisition team at gttalentscouts@au.gt.com
• As we provide fair consideration and evaluation to a high volume of applications, we endeavour to provide feedback on your application at the earliest opportunity.
• #LI-Hybrid

Benefits

Additional Information

- Lead cyber governance and drive audit readiness across the firm - Operate autonomously in a high-impact, senior role - Join a collaborative team focused on security uplift and innovation Grant Thornton Australia is one of the world's leading independently-owned and managed accounting, advisory and consulting firms. Our culture is underpinned by a commitment to our clients, people and communities, and our promise to 'Reach for Remarkable' by providing proven expertise, principled execution, and personalised experience. In Australia, we're proud to support the careers of over 1,500 remarkable people. With six offices nationally and partner firms in more than 145 markets, wherever you want to go, we can take you there. About this role Join our Digital team and play a key role in protecting the firm's digital assets and supporting business growth. This is a 12 month parental leave contract based in either Melbourne or Brisbane. As a Senior Cyber Security GRC Specialist, you will step into a critical role during a period of transition, taking ownership of governance, risk, and compliance activities. This role requires a self-starter who can quickly embed into the environment and deliver immediate value. You will lead cyber GRC initiatives, maintain ISO27001 audit readiness, and uplift the organisation's security posture aligned to NIST CSF, Essential Eight, and Australian Privacy requirements.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at grantthorntonaus? Share your experience