Information Security Risk and Compliance Specialist

Location: Sydney CBD
Job Type: Contract
Posted: about 2 months ago
Contact: Aparna Sharma
Discipline:
Reference: 263224
  • Initial 12 months contract
  • GRC
  • Competitive Rate
  • Hybrid Work Model (2 days in the office)



About the Company:

Global insurance group with recognised financial brands in Australia, they pride themselves on their range of insurance products. They offer a friendly, dynamic, and flexible working environment and are dedicated to creating a work culture where their employees can flourish.

About the Role:

Our client is looking for an Information Security Compliance Specialist to join its IT team. This role will see you support activities in the context of the related Information Security Management System (ISMS), risk identification and assessment and advice to the various stakeholders You will also actively contribute to the assurance capabilities in the course of an ongoing global IT transformation program.

Responsibilities:

  • Perform analysis of revisions and updates to regulatory requirements and identify gaps in the current organization control framework.
  • Perform gap and capability assessments to comply with various information security practices and regulations from current and emerging requirements.
  • Efficiently records the observations and key findings to disseminate internal control assessment status to key stakeholders.
  • Provide insightful and comprehensive reporting covering information security risks, control effectiveness and remediation activities to maintain the organisation's risk appetite.
  • Continuously evaluate and drive upgrades of operational policies, procedures, and standard processes to meet ISM requirements.

Skills and Experience:

  • Previous experience in an Information Security Compliance and Risk Role
  • Demonstrated experience in Information Security related fields and/ or risk management.
  • Sound knowledge of IT security technology, architecture and processes and profound knowledge of information security management systems and relevant industry standards (in particular ISO270xx, COBIT5/2019)
  • Experience in supporting projects in complex enterprise environments.
  • Professional experience with supplier management (including Cloud providers), IT outsourcing and relevant control frameworks.
  • Previous experience with DORA is highly desirable



For more info contact Aparna on Aparna.Sharma@peoplebank.com.au



Diversity and inclusion are strongly supported at Peoplebank. People of all nationalities, gender identities, and cultural backgrounds, including Aboriginal and Torres Strait Islander Peoples, are encouraged to apply.