Principal Security GRC Analyst

Hudson is proud to be working with a local government agency in the search for a principal cyber security GRC specialist to guide them in the uplift of information security standards across the organisation. A key pillar in this uplift will be achieving ISO 27001 accreditation.The workplace has a flexible hybrid working model (2 days from home). This is a 12 month fixed term contract with funding allocated for ongoing permanency in the position.Responsibilities

• Lead the development and implementation of policies and procedures to gain ISO27001 accreditation
• Proactively seek out ways to uplift information security and drive continuous improvement
• Be the SME for the ISMS development
• Perform risk assessments to identify gaps and advise on ways to address and mitigate risks as required
• Inform technical teams of their information security responsibilities and guide them on how to adhere to them

You will Bring

• Previous experience gaining ISO 27001 accreditation with other organisation(s)
• The confidence and experience to take on a lead role driving security uplift
• Experience working with audit schedules
• Strong communication skills with the ability to educate technical and non-technical stakeholders on information security requirements
• 3+ years in information security GRC roles

If you would like to learn more about this opportunity please reach out to for a confidential discussion to learn more.*Due to client requirements only those with unlimited Australian Working rights will be considered.