InfoSec Governance Risk and Compliance Lead
Tasks
- Coordinate SOC 2 Type II audit cycle
- Deliver executive reporting on risks trends and vulnerabilities
- Design and manage security control remediations
- Drive GRC strategy
- Embed security reviews into procurement lifecycle
- Execute information security risk management
- Lead third-party risk management
- Maintain InfoSec policies standards processes and guidelines
- Partner with product to identify control gaps in PDLC
- Review security exhibits data processing agreements and security questionnaires
- Run security awareness and compliance training programs
Perks/Benefits
- Annual leave
- Fully Remote Working Environment
- Generative AI Subscriptions
- Learning and development allowance
- Monthly lifestyle subsidy
- Paid parental leave
- Personal Leave Allowance
- Top-spec hardware
- Wfh set-up allowance
Skills/Tech-stack
Audit management | Awareness Training | Contract Review | GRC platforms | Governance Risk | Governance Risk and Compliance | ISO 27001 | Information security | NIST | Policy Development | Procurement Security | Procurement Security Reviews | Risk Assessments | Risk Management | Risk and Compliance | SOC 2 | SOC 2 Type II | Security Awareness Training | Security Compliance | Security Reviews | Security awareness | Security controls | Third Party | Third-Party Risk | Third-party risk management | Vendor Risk | Vendor risk assessments
Education
N/A
Related jobs
-
Information Security Lead AUD 140K-180KAI Governance | AppSec | Awareness Training | Business Continuity | CSPMSenior-level Full TimeSydney, New South Wales 2000, Australia R18d ago
-
Access Management | Amazon Web Services | Cloud Security | Identity and Access Management | Identity and accessPart-time flexibility | Remote work | Work experience letterEntry-level Full TimeMelbourne, Victoria, Australia R1mo ago