Address
Form of work
SalarySalary range $120,000 - $140,000 plus superannuation
Location: Melbourne or Sydney (hybrid flexible working - work from home 2 days per week)
About the business
Oreta is a leading technology services company that empowers business outcomes through advisory, delivery and managed services using network, cloud, security, and analytics. Our commitment to innovation and excellence has earned us numerous prestigious awards in the Australian technology sector, including recognition from ARN, Telstra, Deloitte and CRN. We maintain strategic partnerships with renowned industry leaders such as Microsoft, Telstra, Cisco, SentinelOne, Palo Alto Networks, VMware Premium, and Qualys, enabling us to deliver top-tier solutions and services.
Our success is underpinned by our people and their desire to constantly delight the customer. Our culture is made up of our behaviours and values which define the way we work together and service our customers. We are passionate about living and breathing our 4 Core Values which are at the heart of our culture:
- Go Further
- Thrive Together
- Move with Velocity
- Have Fun
About the role
Location: Sydney (hybrid flexible working - work from home 2 days per week)
Due to continued growth, we have an exciting opportunity and are looking to engage a well presented Mid level GRC Consultant to work closely with our clients. You will be responsible for consulting, designing and reviewing formal documentation and business requirements to ensure they are in line with ISO 2700-1, NIST, NSW Mandatory 25, SOCI ACT 2018 and Essential 8 frameworks and maturity levels to name a few.
This role is front facing and therefore you will be expected to engage with internal and external stakeholders, communicate with technical and non-technical teams and provide practical solutions to the end client.
You will be based in either Melbourne CBD or Sydney CBD and report to the Senior GRC Consultant.
Roles and Responsibilities
As a Mid Level GRC (Governance, Risk, and Compliance) consultant, your roles and responsibilities will include:
- Assisting senior consultants / Managers / Lead in conducting risk assessments and Compliance audits
- to work on multiple assignments concurrently
Essential Criteria
- Minimum of 3 - 5 years in Information technology or related field
- Bachelor's Degree in Computer Science, Information Security, Information Systems, or related field in Cyber
- Exceptional communications skills (written, verbal & customer presentations)
- Proven experience (3 + years) writing formal documentation, business requirements and reports (Excellent MS Office experience)
- Being comfortable with a high degree of on-the-job learning
- Strong attention to detail
- Ethical mindset
- Experience in a client facing role
- Strong analytical and problem-solving skills
- Design and document GRC policies, procedures, and controls
- Develop and implement GRC strategies and roadmaps aligned with client objectives
- Understanding of ISMS, ISO 27001, SOC 2 compliance, NIST and Essential 8
- Ability to work autonomously
- Assist and contribute to fellow team members and team discussions ·
- An understanding of Information Security and a keen sense to learn
- Flexibility to travel to client sites as needed
- Strong understanding of GRC frameworks, Risk Management, business processes, Security Governance, audit compliance and risk assessment
- Prior experience conducting GRC assessments to identify risks and Compliance gaps
- Manage and track GRC projects and deliverables.
- Strong self-management skills, including time management and the ability to work on multiple assignments concurrently
- Excellent written and oral skills
- Confident to face customers
- Excellent documentation skills
- Excellent time management skills
Responsibilities
As a Mid Level GRC (Governance, Risk, and Compliance) consultant, your roles and responsibilities will include:
- Assisting senior consultants / Managers / Leads in conducting risk assessments and Compliance audits
- Researching and analysing regulatory requirements and industry best practices.
- Supporting the development and implementation of GRC frameworks and policies
- Assisting in the identification and evaluation of potential risks and vulnerabilities
- Collaborating with cross functional teams to ensure compliance with regulations and standards
- Assisting in the development and delivery of training programs on GRC topics
- Supporting the creation and maintenance of documentation related to GRC processes
- Assisting in the monitoring and reporting of key risk indicators and performance metrics
- Participating in client meetings and providing support in presenting findings and recommendations
- Keeping up-to-date with industry trends and developments in GRC.
- Prepare and present reports to clients on GRC findings and recommendations
Benefits and perks
Oreta takes pride in providing a service of excellence to our customers and looking after our employees who enable our business to succeed.
The successful applicant will enjoy working in either Melbourne or Sydney CBD with friendly and highly driven team members (the Oreos), where ideas are always welcome and ongoing training and development is strongly encouraged. Employees are rewarded with monthly team events, Employee of the Month, Friday afternoon drinks… just to name a few of the perks.
Salary range is $120,000 to $140,000 plus superannuation. The remuneration will be negotiated based on the relevant skills and experience of the successful applicant.
If you are interested in a long-term career with potential to develop and grow with the business and are available to start immediately, then we look forward to hearing from you.
NOTE
- Short-listing and interviews for this position will commence immediately.
- Oreta will not receive any unsolicited resumes from recruitment agencies and will not pay any related fees for such resumes.
