The Senior Cybersecurity GRC Specialist provides a broad range of governance, risk, audit and compliance services in the Federal Government environment.
This role will be responsible for conducting risk management activities (risk assessments, creating risk treatment plans, their tracking and reporting…), managing audits (e.g., IRAP assessments), cybersecurity compliance activities and the development / update of cybersecurity plans, policy and procedures. NV1 security clearance and prior experience with PSPF, ISM and Essential Eight is required.
The role requires 5 years cybersecurity GRC experience to be able to confidently work with large, complex Federal Government departments and also possess a good knowledge of incident management, security monitoring, security operations, cybersecurity frameworks, policies and procedures.
Prior experience as a cybersecurity auditor or having CISA or ISO 27001 Lead Auditor certification will be highly regarded, though not essential. The Senior Cybersecurity GRC Specialist will work closely with various internal and external stakeholders and provide cybersecurity support, and related duties, in support of the client and / or internal company environment.
This role supports the security solutions and services to meet the client’s specific requirements and support the Cybersecurity Team in delivering desired outcomes.