Company Logo

Cyber Security GRC Manager

Latitude IT

Job Description

Our client is seeking a Cyber Security GRC Manager to lead Security GRC capability to minimise security risks in line with business requirements.

  • Set the tone and direction of security controls across the business
  • Dotted reporting lines to Head of Enterprise Architecture and board
  • Establish base level security controls in fast-growing FMCG organisation
In order to succeed, the Cyber Security GRC Manager will have most of the following skills and experience:
    • Proven track record with current cyber security tech and a firm grasp of what's to come
    • Experience implementing security controls across AWS cloud environments and operational technology (robotics)
    • Superb stakeholder engagement and influencing skills
    • Outstanding communication, presentation and reporting skills (KPI's)
    • Experience of embedding cyber security controls across Agile development teams
The Cyber Security GRC Manager will be responsible for the following duties:
    • Relentless improvement of the IT Risk Management Framework
    • Create and embed a risk culture across the organisation
    • Risk identification and management
    • Create and implement security touch-points in order to support software engineering teams
    • Track and respond to all compliance breach such as penetration tests...
    • Manage cyber security vendors (vulnerability scanning, pentesting...etc)
    • Manage third parties providing security services, including penetration tests and vulnerability scanning services
    • Partner with the business to ensure security risks are part of the business decision making process
    • Audit data related security controls and amend where necessary
    • Audit security control effectiveness and maturity via NIST
    • Be the evangelist on emerging threats and corresponding controls
    • Audit IAM capability and alignment with policies
    • Create and maintain cyber security policies, standards and assets and report on company compliance
    • Generation of regular governance reports containing powerful metrics for stakeholders, including the board
    • Create an awareness training plan to embed cyber security into company DNA and ensure all employees are fully trained on relevant tech, processes, procedures and policies
    • Regular testing of staff cyber security awareness with various drills including phishing email campaigns
This is one of the best opportunities in Cyber Security GRC at the moment due to the fast-paced, entrepreneurial environment and culture of the client. It's perfect for someone looking to make a quick, meaningful impact and champion transformation with emerging tech and an understanding of the rapidly evolving threat landscape. 

Please reply now for immediate consideration or contact our Cyber Practice Lead Will Wetherall for an informal chat: 0466 528 *** or **************@latitudeit.com.au


Additional information
  • Set the tone and direction of security controls across the business
  • Dotted reporting lines to Head of Enterprise Architecture and board
  • Establish base level security controls in fast-growing FMCG organisation