Y-Axis Jobs Logo
Send us feedback
telephone  +91 7670 800 001
Log in Sign up Try Premium
Technology Assurance Risk & Compliance Lead at National Heavy Vehicle Regulator
Brisbane, Queensland, Australia -
Full Time

Start Date

Immediate

Expiry Date

12 Jul, 25

Salary

141018.0

Posted On

12 Apr, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

No

Skills

Good communication skills

Industry

Other Industry

Description

ABOUT YOU

  • 5+ years’ experience within Information Security roles
  • Experience in designing and implementing Information security programs, policies, and procedures, in enterprise environments
  • Knowledge of Information Security frameworks and standards including ISO 27001, NIST, ASD Essential 8
  • Experience managing and running a robust Vendor Security Risk Assessment process using SIG templates
  • Strong interpersonal and people management skills to build effective, sustainable relationships
Responsibilities

ABOUT THE ROLE

As the Technology Assurance Risk & Compliance Lead you will be responsible for the management and delivery of the ISMS across NHVR with consideration of technology risks associated to Cyber Security. Leading the Technology Assurance, Risk & Compliance team you will help to grow a security aware culture across the regulator, while ensuring that appropriate risk management considerations are applied.
Reporting to the Director Technology Commercial & Assurance, you will solve complex problems and balance getting innovative business solutions to market whilst managing risk. You will ensure the NHVR’s vendor ecosystem is properly evaluated, assessed and managed to minimise risk exposure and risk impacts to the business.

KEY RESPONSIBILITIES OF THIS ROLE ARE:

  • Supervise the Cyber Technology Governance processes to ensure that NHVR’s enterprise-wide security program responds appropriately to the changing threat environment and external obligations
  • Ensure the Technology Assurance, Risk and Compliance (GRC) system is designed and operating effectively – empowering the user experience and moving the organisation towards a more dynamic, automated and data driven assessment of risk
  • Determine, plan and build a Technology GRC team, ensuring that capability and resource is applied effectively to manage NHVR’s Information Security Risk position
  • Provide advice and leadership in relation to the NHVR’s risk profile, emerging risks and better practice risk and compliance management, with a particular focus on technology and cyber risks
  • Proactively manage Cyber Security Risk and ensure that ongoing issues are identified and resolved, and/or projects are planned to correct underlying issues
  • Produce and deliver regular reporting through to the Director Governance Risk and Assurance on NHVR’s Cyber Security Risk position for consumption by the Executive Leadership Team, Audit & Risk Committee and Internal Audit
  • Lead compliance reporting and audit processes as required
  • Own relationships with cyber security IT partners with the support of Procurement