Job Details

Sydney CBD
$90000 - $200000 per annum, Benefits: 180,000 - 220,000 package
Job Type
Matthew Canning
28 days ago
The Policy and Standards Specialist is responsible for delivery and maintenance of our client’s Information Security Policy, Standards, and associated Bodies of Knowledge. Working with multiple stakeholders, policy artefacts are to be appropriately socialised and disseminated, with care taken to ensure that terminology and taxonomy used are consistently applied and appropriate for intended audiences.
Principally, the role has 4 main functions:
  •  Delivery and maintenance of IT Security Policy and Standards
  •  Management of Cyber Deviations process
  •  Development and uplift of cyber deviations capability
  •  Assist with Monthly cyber governance forums
Delivery and Maintenance of IT Security Policy and Standards
  • Take ownership of the Information Security Policy Framework, and continuously improve the service.
  • Ensure timely delivery and review of all artefacts, incorporating applicable approval and peer review stages
  • Seek input from SMEs as needed and incorporate feedback where required
  • Maintain alignment with NIST CSF
Cyber Deviations
  • Take ownership of the Cyber Deviations process
  • Ensure timely response to deviation requests from Information Security Standards
  • Manage reporting and associated metrics, in conjunction with monthly governance activities
  • Provide and assist requestors with recommendations for risk mitigation.
Desired experience:
  •  5+ years of experience within information security GRC activities including:
  •  Experience with Cyber Frameworks such as ISO 2700x or NIST SPF
  •  Understanding risk management and prioritization of risk.
  •  Understanding of security control implementations and their ability to meet control objectives and mitigate risks.
  •  Understanding of penetration testing concepts and methodology.
  •  Frameworks and assessment methodologies for the testing and assessment of Cyber Controls
  •  Knowledge of vulnerability identification and exploitation.
For further information on this role or to confidentially apply, please contact Matt Canning on 02 8227 9200 or apply directly via the Apply for this job button. Only WORD FORMAT resumes will be accepte