- Work for an industry leading WA client
- Seeking Cyber Security, GRC & Operational Technology experience
- Initial 12 month contract with the chance to extend
The client:
An industry leading client providing services to the WA community that has been established for nearly 20 years.
The role:
The GRC Officer will be responsible for cyber security governance, risk and compliance practices through engagement with internal and external business stakeholders, facilitation of cyber security risk assessments etc
Key Responsibilities:
- Develop and maintain cyber security governance frameworks, policies, and procedures, focusing on OT security in renewable energy systems, aligned with AESCSF, ISA 62443, and NIST 800-53.
- Conduct cyber security risk assessments, particularly for renewable energy projects like large batteries and solar panels, reviewing contracts for cyber clauses and ensuring compliance with relevant standards.
- Ensure compliance with AESCSF, NIST CSF, and C2M2 maturity models, especially in OT environments, supporting audit activities and regulatory requirements.
- Collaborate with stakeholders to communicate cyber security strategies and objectives, providing strong advisory services on security architecture and risk management.
- Engage with internal teams and external vendors to drive effective cyber practices, leveraging strong communication skills to influence business decisions.
- Support the renewable energy transition by conducting thorough risk assessments and continuously improving cyber security processes and systems.
Key Experience:
- Previous experience in a Cyber security Risk AND Operational Technology support role;
- Proven ability to communicate effectively with all levels of the business
- Be technically knowledgeable and able to discuss global cyber security trends
- Experience across multiple technology platforms, such as Microsoft, SCADA, Cloud, IT-OT
- Understanding of AESCSF, ISA62443, NIST800-53 and Essential Eight
- Bachelor’s Degree in Computer Science, Information Systems, Business Administration, or other related field or equivalent work experience
Preferred
- Formal certification, CISSP, CISM, CGRC or Security industry qualifications
- Previous experience in conducting cyber security risk assessments and assurance activities
- ICS/SCADA Security experience with a broad range of exposure to various business segments and technical environments.
If you are interested in the position and possess the required experience, please apply via the link below to be considered.
Contact: Alson Fernandes – (08) 9423 1403 – (Job reference: 263924)
To apply please click the 'Apply Now' button.