• Take advantage of this 12mth parental leave cover to gain experience in a top tier law firm - 2025 winner of ‘Australia Firm of the Year’ - International Financial Law Review (IFLR)
• With defined pieces of work over the next 12mths, and our journey for improvement, this role offers the opportunity for you to step up in your career and elevate our Technology compliance frameworks from good to great
• Bring your experience in Technology risk and compliance, and familiarity with compliance standards such as like GDPR, ISO 27001, SOX and NIST, to a role that will stretch you and give career reward highlights
  Who are we?
  A firm born in Asia, underpinned by world class capability.
  With over 3700 lawyers in 27 global locations, we help our clients manage their risk and enable their growth. Our full-service offering combines un-matched top tier local capability complemented with an international platform.
  We have deep roots in Australia spanning almost 200 years and acknowledge Aboriginal and Torres Strait Islander peoples as the traditional owners and custodians of these lands and waters.
  Role Detail
  Joining our highly regarded Technology team, reporting to the Sydney based Head of Technology Commercial and Compliance, you will ensure that the Technology team is designing, implementing, and adopting effective controls and practices in line with the firm’s overall risk and compliance framework.
  With flexibility to be based in our Sydney or Melbourne CBD office, this role is about making sure the Technology team continue to align to both internal company policies and outside regulations (like data privacy laws and security standards). You will play a pivotal role helping the team put the right controls in place to avoid risks and stay compliant with industry standards.

With some key projects coming up over the next 12mths, key responsibilities include:

• Assisting the Technology team in the review and implementation of a Compliance Framework
• Supporting Technology by providing compliance services, advice, and awareness
• Introducing improved compliance management techniques and approaches to assist risk identification, measurement, and control
• Oversight of Technology’s Policy and Procedure Framework, including internal, client and regulatory requirements
• Work on the Information Security Management System (ISMS) project to uplift maturity to ISO 27001 accreditation, including facilitating documentation of operational policies and procedures
• Participate in the Third-Party Risk Working Group working closely with ORC, OGC and Procurement
• Monitor, manage and report incident and risk management through appropriate systems
• Assess and evaluate operational policies and procedures to achieve compliance objectives and recommend improvements where necessary.

About You
You will be a strategic forward thinker, who can connect the dots and apply a commercial pragmatic style. Your methodical approach will be celebrated and ability to apply repeatable processes rewarded.

You will also bring:

• Experience in technology related risk and compliance roles, ideally from banking and finance; professional services; and/or legal industries, where compliance and controls are critical.
• Familiarity with industry compliance frameworks such as GDPR, NIST (National Institute of Standards and Technology), ISO, SOX, PCI DSS; COBIT
• Ability to design, implement, monitor and report on technology risk management and compliance frameworks
• Excellent communication skills, both written and verbal
• Ability to build relationships and influence key stakeholders
• Ability to work autonomously and with a flexible and proactive mindset
• A degree qualification in Information Technology (or similar field), or relevant vendor specific certifications

Next Steps
Applications close 5pm Sunday 31st August 2025.
If you have any questions or need any further information, please don’t hesitate to reach out to Bridget on 02) 9296 3563.
If you are not an Australian citizen or permanent resident, you must hold all visas and other approvals necessary for you to work for the firm in Australia.
Why work with us?
We promote a collaborative culture where people feel respected, valued and supported both personally and professionally, and where diversity and inclusion also play an important role in enhancing our knowledge,
driving innovative solutions for our clients
and creating
positive social impact
.
We live by our
Principles
, and strive for mastery in all that we do. We take pride in the high quality work we deliver. Working with colleagues and clients who are leaders in their fields, means the ability to explore new paths to progress with continual learning and development, career and leadership opportunities.
As part of the KWM community you’ll have access to a suite of wellbeing initiatives,
benefits
, policies and processes, to enable you to achieve your career goals.
At KWM, we’ll provide you with the platform to Learn, Master, Lead.

• Assisting the Technology team in the review and implementation of a Compliance Framework
• Supporting Technology by providing compliance services, advice, and awareness
• Introducing improved compliance management techniques and approaches to assist risk identification, measurement, and control
• Oversight of Technology’s Policy and Procedure Framework, including internal, client and regulatory requirements
• Work on the Information Security Management System (ISMS) project to uplift maturity to ISO 27001 accreditation, including facilitating documentation of operational policies and procedures
• Participate in the Third-Party Risk Working Group working closely with ORC, OGC and Procurement
• Monitor, manage and report incident and risk management through appropriate systems
• Assess and evaluate operational policies and procedures to achieve compliance objectives and recommend improvements where necessary