IT Security GRC Analyst
Melbourne, Australia
illion
As one of Australasia’s leading consumer and commercial credit bureaus, illion forms an integral part of the region’s financial ecosystemCompany Description
illion is the leading independent provider of trusted data and analytics products and services in Australia and New Zealand. illion leverages its consumer and commercial credit registries to provide end-to-end customer management solutions to clients in the financial services, telecommunications, utilities and government sectors.
Job Description
Reporting to the Technology Risk & Security Manager, collaborating and working together with the Technology team. The Governance, Risk and Compliance Analyst will be responsible for ensuring compliance with internal and external information security requirements and standards such as ISO 27001, PCI DSS and SOC2. You will be responsible for leading customer and independent audits, security risk assessment, policies, continuous process and standard improvement.
Qualifications
- Ensure maintenance, improvement and recertification of existing ISO27001, PCI DSS and SOC2 compliances.
- Management of the compliance calendar and associated processes such as ensure compliance with policies and procedures including monthly, quarterly, and annual accounts and activity reviews
- Identify & manage security risk end-to-end in relation to customer and 3rd party engagements.
- Lead the review processes performed by external auditors, internal auditors and compliance officers.
- Co-ordination and management of all remediation activities identified as part of any audit and / or client due diligence activities.
- Ensure all audit & security requirements are met as part of new and existing contract negotiation and tendering processes.
- Maintain the Information Security Risk Profile in line with company guidelines.
- Ensure the currency and implementation of all security & compliance related policies and processes. .
- Advise technology and business stakeholders on governance and compliance matters.
- Mentoring junior security analyst.
Experience
- Minimum 5 years’ experience working as a security analyst within the financial services industry or complex environment.
- Ability to demonstrate working knowledge of ISO 27001, PCI DSS and SOC2 standards
- Knowledge of IT risks and appropriate security controls and technologies.
- Experience with ISO27001, PCI-DSS, SOC 2 Type I and II would be an advantageous.
- CISSP, CISA, or other Security industry Qualification desirable.
Additional Information
Culture
There has never been a better time to join illion. Our business is transforming. We are transforming the way we work with a strong focus on the value of our people and our customers. Our strong business leaders are modernising our culture and empowering our team to reach their full potential. There is a bright future ahead for illion and we are seeking innovative and passionate individuals to be a part of it!
Benefits
- Flexible working environment
- Social Club – Quarterly calendar of events allowing team member to network and socialized in a fun and relaxed environment
- Career Development Opportunities - we are committed to filling our role internally
How to Apply
To apply, please click "Apply Now" button and we will be in touch shortly.
Here at illion, we value diversity and inclusion and believe that we are able to grow and learn better together with a diverse team of employees. By joining illion you'll be part of an inclusive culture that celebrates a diversity of cultures, skill sets, educations and opinions. People from all culturally diverse backgrounds including Aboriginal & Torres Strait Islander Peoples are encouraged to apply
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Analytics Audits CISA CISSP Compliance Governance ISO 27001 PCI DSS Risk assessment SOC SOC 2
Perks/benefits: Career development Flex hours Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open IPS-related jobs
- Open CEH-related jobs