Address
Form of work- Initial 6-12 month contract engagement
- Immediate Start
- Security - Cyber / GRC / PCI-DSS
About the company:
Green Light is one of Australia's most successful and fastest-growing IT services businesses. We offer a wide range of IT services in Security, infrastructure and Systems Integration to a diverse customer base throughout Australia, New Zealand, SE Asia and Europe.
About the engagement:
Green Light has an exciting opportunity for a high calibre, experienced Security Consultant (GRC) to join our delivery team. These positions will provide a high level of consultation to established clientele working closely with internal stakeholders in order to successfully uplift the security maturity of the businesses.
The Security Consultant (GRC) will contribute to the high-level design of standards, procedures and guidelines for multiple platforms and systems. The role requires a forward-thinking individual with the ability to speak with business and operational personnel regarding new and existing technologies and making recommendations when required.
An active ASGVA baseline and/or Negative Vetting (NV1) Clearance at minimum, is essential – consultants who are not Australian Citizens and do not have an active baseline and/or NV1 cannot be considered.
Responsibilities
- Develop and implement a cyber security governance framework that aligns with company's overall risk management strategy.
- Develop, maintain and regularly review cyber related strategies, policies, standards and procedures, and promote alignment.
- Ensure reportable compliance with relevant Australian and international cyber security frameworks, regulations standards and guidelines, such as DSPF, E8, ISM, ISO 27001, NIST 800-53, CMMC.
- Identify and communicate cyber security risks to senior management and other relevant stakeholders.
- Develop GRC reporting relevant for senior leadership and business audiences
- Evolve cyber security strategy and champion continuous uplift in cyber security maturity.
- Develop and maintain a cyber security awareness and education program for staff in collaboration with Cyber Operations
Qualifications
- Minimum of 5 years experience in cyber security governance, risk management, and compliance.
- CISSP, CISM or other relevant certifications, such as CISA or CRISC.
- Strong understanding of cyber security frameworks and regulations, such as ISO 27001, NIST 800- 53, DSPF, CMMC, and guidelines such as the ASD Essential 8 and ISM.
- Experience with incident response and incident management.
- Strong leadership and communication skills.
Culture:
- Innovative and continually improving cloud-based environment which encourages technical improvement and diversity
- Large enterprise end customer
- Collaborative work environment
Benefits:
- Initial contract engagement with likelihood of extension or conversion to permanent
- Diverse technical stack, with an opportunity to develop agnostic experience across cloud-based technologies
- Attractive working environment – emphasis on broadening experience across multiple technologies and end customers
How to Apply:
If you are interested in the opportunity, and qualify for the requirements of this engagement, feel free to APPLY NOW.
