• Opportunity to own, drive and influence
• Melbourne or Perth based
• Driven, supportive and ambitious leadership team

As the Security GRC Analyst/Specialist you would join a major healthcare organisation based in Melbourne or Perth. You would be involved in developing and maintaining policies, conducting risk assessments, and ensuring compliance with industry standards such as ISO 27001 and SOCI. This position reports to a GRC Manager and will provide lots of growth opportunity for the right long-term committed person.



About the Role:

• Lead the development and maintenance ISMS, including policies, standards, and processes.
• Drive risk assessments, compliance evaluations, and third-party security assessments.
• Ensure compliance with security standards, including SOCI, PCI-DSS, and ISO 27001.
• Collaborate with the wider security team incl. CISO and provide strategic input and guidance.
• Ensure alignment with security risk management frameworks, such NIST.

About you:

• 3-4 years of experience in IT risk/GRC with proven implementation experience and policy writing skills.
• Relevant security certifications such ISO Lead Auditor.
• Strong knowledge of security frameworks, including ISO 27001, NIST, or SOCI.
• Proven ability to drive autonomously a security governance function and manage risk mitigation.
• Experience in developing security policies and assessing third-party security risks.
• Australian Citizen, New Zealand Citizen, or Permanent Resident based in Melbourne or Perth.

This is an exciting opportunity to join a large business at a time of growth, while having a real impact on people. If you do possess ISO27001 implementation and policy writing skills, please Apply Now or reach out.