CrawlJobs Logo
Australia Post Logo Australia Post · IT - Software Development

Cyber GRC Project Lead

Australia, Richmond · Job Posted June 16, 2026
Apply Position
Job Link Share

Job Description

Help us deliver like never before  We’re looking for a Cyber Risk Advisor – Major Programs to join our diverse, talented and innovative Digital Technology team. Together, we’re helping our customers and communities build a better future by designing, building and protecting products, services and experiences Australians love and trust. We’re empowered to deliver for our teams and to delight our customers. We provide an inclusive and supportive environment that nurtures talented people, trusts our teams to deliver their best, and leverages modern work practices and technologies. It’s an unexpectedly dynamic and collaborative culture that feels more like a start-up than a 213-year-old icon.

Job Responsibility

  • Partner closely with program teams and cyber stakeholders to embed strong governance, risk and compliance practices across key transformation initiatives
  • Act as the central point of triage for cyber risk, providing insights, driving improvements, and building trusted relationships across the business
  • Lead and coordinate cyber risk assessments across major programs, acting as the central triage point for incoming work
  • Engage and influence key stakeholders to uplift cyber awareness and embed GRC practices into delivery
  • Provide timely reporting and insights on program risk posture, trends and key findings
  • Continuously improve processes through feedback and iteration to enhance how cyber GRC supports delivery

Requirements

  • Experience in cyber security, risk, or GRC within complex or program-based environments
  • Strong stakeholder engagement skills, with the ability to influence and act as a trusted advisor
  • Experience conducting or coordinating risk assessments, with an understanding of cyber frameworks and governance practices

What we offer

  • Work across high-impact, enterprise-wide transformation programs driving meaningful cyber outcomes
  • A genuinely collaborative environment where you're empowered to shape processes and ways of working
  • Opportunities to grow your capability and build trusted advisor relationships across Digital Technology and the broader business
Australia Post - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cyber GRC Project Lead

8 matching positions

Lead Cyber Risk Consultant

Whitehall Resources are currently looking for a Cyber Risk Consultant based in C...
Location
Location
United Kingdom , Cheshire
Salary
Salary:
Not provided
whitehallresources.com Logo
Whitehall Resources Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Approximately 8-10+ years of experience in cybersecurity
  • Significant experience in cyber risk management or security consulting roles
  • Prior experience leading risk assessment projects or large-scale security consulting engagements
  • Deep knowledge of cyber risk management practices, including risk assessment methodologies and frameworks (e.g. NIST CSF, ISO 27005, FAIR)
  • Ability to identify, classify, and prioritize cybersecurity risks in a large enterprise environment
  • Strong understanding of IT infrastructure and applications, especially the challenges posed by End-of-Life technologies
  • Advanced analytical skills (“cyber analytics”), including proficiency with risk analysis tools or GRC platforms
  • Proven ability to lead a team or project in a cybersecurity context
  • Excellent organizational skills to manage multiple parallel workstreams
  • Exceptional communication skills, both written and verbal
Job Responsibility
Job Responsibility
  • Lead Risk Assessments: Plan and conduct a full stock assessment of EOL technologies within the bank
  • Risk Rating & Analysis: Oversee the analysis of identified vulnerabilities and weaknesses and produce risk ratings and reports
  • Residual Risk Reduction: Identify and recommend risk mitigation opportunities to reduce residual risk in legacy platforms and applications
  • Remediation Planning: Collaborate closely with technology owners and engineering teams to develop remediation plans and prioritize fixes or upgrades for EOL systems
  • Project Leadership & Coordination: Coordinate the efforts of the Cyber Risk Analysts, assigning tasks and monitoring progress
  • Stakeholder Engagement: Serve as the primary point of contact for stakeholders
  • Communicate risk findings and status updates
  • Transition to BAU: Ensure that remediation activities and improved risk practices are handed over smoothly to the permanent operational teams
Read More
Arrow Right

Lead Cyber Security Consultant

As a Lead Cyber Security Consultant at Actica Consulting, you will have the oppo...
Location
Location
United Kingdom , London; Guildford; Bristol; M4 corridor
Salary
Salary:
Not provided
actica.co.uk Logo
Actica Consulting
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience of complex ICT systems security in a technical delivery or consulting capacity in the UK Defence sector or Public Sector
  • The ability to present and justify conclusions to project teams and business stakeholders
  • Proven abilities in delivering to client expectations and requirements
  • Strong verbal and written communications skills
  • Must be eligible and willing to obtain UK Government Security Clearance
Job Responsibility
Job Responsibility
  • Leading one or more Actica teams to undertake varying consultancy assignments
  • Providing security expertise for major system procurements and Agile programmes to ensure secure delivery
  • Identifying, analysing and evaluating information risks across a range of programmes, projects and systems
  • Explaining to risk owners the causes, likelihood and potential business impacts of information risks
  • Identifying and presenting options for treating or transferring information risks
  • Authoring and/or supporting the development of security assurance documentation
  • Developing or reviewing new security architectures
  • Scoping security testing activities, and explaining the results and required remediation
  • Managing the delivery of security services by Actica teams across several live projects
  • Working with our client-side customers to manage contract delivery
What we offer
What we offer
  • 25 days of paid leave per annum plus 8 UK bank holidays
  • Discretionary, Performance-Based Bonus Scheme
  • Enrolment in Stakeholder Pension Scheme
  • Cycle To Work Scheme
  • Employee Assistance Programme
  • Electric Vehicle Leasing Scheme
  • Private Medical Insurance
  • Substantial training leading to nationally recognised certifications
  • Mentor support and guidance
  • Performance and Development Manager for regular reviews and career progression planning
  • Fulltime
Read More
Arrow Right
New

Grc Security Officer

Location
Location
United Kingdom , Warwickshire
Salary
Salary:
Not provided
whitehallresources.com Logo
Whitehall Resources Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in Issue Management
  • Lead on the provision of cyber security compliance advice to the customer GRC lead through collaborative review of their design approach and delivery projects to minimise the risk of non-compliance with internal and regulatory standards
  • Advise on the implementation of information/cyber security measures across projects by identifying information/cyber security goals and objectives consistent with customer objective
  • Challenge the scope of the project /deployment with regards to business value and best practice
  • Ensure project are aligning with internal policies and industry standards including NIS Directives, NIST800-53, NCSC CAF, ISO27001
  • Knowledge of IEC62443 controls
  • Experience within the Energy sector preferred but other sectors considered
Job Responsibility
Job Responsibility
  • Provide governance and leadership of resources engaged on the project
  • Advise on the development of specific information security policies, procedures, guidelines and processes in consultation with stakeholders
  • Attend project Meetings and Security Working Groups as required
  • Review and monitor planned activities to ensure full compliance with internal and regulatory policy
  • Assist the Service lead in complying with administrative and team tasks in support of the project
Read More
Arrow Right

Cyber Incident Response Commander

The Cyber Incident Response Commander plays a critical leadership role in managi...
Location
Location
Canada , Montréal
Salary
Salary:
Not provided
https://www.soprasteria.com Logo
Sopra Steria
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree (or equivalent) in Cybersecurity, Computer Science, or related STEM field
  • Minimum 5 years of experience in cybersecurity roles such as CERT / CSIRT, SOC / SecOps, GRC (Governance, Risk & Compliance)
  • Required Certifications (or equivalent experience): GCFA, CIH, CISSP, CEH, ECSA, ITIL Foundation
  • Strong knowledge of incident response methodologies (e.g., NIST, ISO 27035, SANS)
  • Experience with SOC operations and forensic investigations
  • Good understanding of security tools, detection, and response techniques
  • Ability to communicate complex cybersecurity topics to senior leadership and executives
  • Professional proficiency in English (written and spoken)
Job Responsibility
Job Responsibility
  • Maintain and continuously improve the Incident Response Plan (IRP) and its appendices
  • Ensure alignment between the IRP and other relevant security policies and frameworks
  • Develop and refine incident response playbooks to ensure clarity of roles and operational efficiency
  • Collaborate with Legal and Communications teams to strengthen response processes
  • Tailor IRPs to specific scopes (e.g., regions, subsidiaries, maritime operations)
  • Capture lessons learned from incidents and provide actionable improvement recommendations
  • Identify links and patterns between incidents to improve detection and response strategies
  • Support internal and external audits by providing required documentation and evidence
  • Act as Incident Commander during security incidents, coordinating cross-functional teams
  • Assess incident severity and determine appropriate escalation levels
What we offer
What we offer
  • Strong base salary
  • Annual performance bonus
  • Fully covered benefits package including life insurance, long-term disability, health, dental, and vision coverage, plus a health spending account
  • Sopra Steria covers 100% of premiums
  • Generous paid time off including sick leave, personal days, and 3 weeks of vacation
  • Monthly transportation allowance
  • Excellent learning, development, and career advancement opportunities
  • Hybrid work environment
  • All necessary equipment provided
  • Fulltime
Read More
Arrow Right

Senior Identity & Access GRC Engineer

Senior Identity & Access Governance Engineer is responsible for the design, impl...
Location
Location
Romania , Bucuresti
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5–8+ years of experience in IAM or Identity Governance
  • Experience in building or transforming IAM capabilities
  • Hands-on experience with enterprise IAM platforms (SailPoint, Saviynt, OneIdentity, Okta, Microsoft Entra ID)
  • Experience with PAM solutions (CyberArk, BeyondTrust)
  • Strong knowledge of: RBAC / ABAC
  • Segregation of Functions (SoD)
  • SAML, OAuth2, OIDC
  • LDAP / Active Directory
  • MFA and conditional access policies
  • Experience in regulated environments (telecom, financial, utilities – preferred)
Job Responsibility
Job Responsibility
  • Define IAM governance framework, standards and control structure
  • Design IAM operational model
  • Translate IAM policies and standards into applicable technical controls
  • Design and maintain enterprise-wide RBAC models aligned with business roles and risk levels
  • Define and enforce Segregation of Functions (SoD) controls
  • Establish Key Risk Indicators (KRIs) and control effectiveness metrics
  • Maintain IAM documentation and record repository
  • Create an IAM maturity roadmap
  • Ensure alignment with Zero Trust principles
  • Design and optimize Joiner Mover Leaver processes
What we offer
What we offer
  • Hybrid working regime 2 days from the office, 3 days remote
  • Special discounts for Vodafone employees, Friends & Family offers
  • Demo telephone subscription - unlimited (voice and data)
  • Voucher for the purchase of a mobile phone
  • Medical subscription to a top private clinic & other medical benefits
  • Insurance for hospitalization and surgical interventions
  • Life insurance
  • Meal tickets
  • Bookster subscription
  • Participation in development programs and challenging projects in the leadership area
  • Fulltime
Read More
Arrow Right

Global Payments Network Risk Program Manager

As a Manager, Risk Program Management on TDRM’s GPN advisory and oversight team,...
Location
Location
United States , McLean; Chicago; New York; Richmond; Riverwoods
Salary
Salary:
138100.00 - 189200.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A Bachelor’s degree or military experience
  • At least 5 years of experience managing technical programs or consulting engagements
  • 5+ years of experience with Agile delivery
  • 4+ years years experience delivering large and complex projects or managing operations
  • Experience in a technology or cybersecurity oversight function
  • Experience in enterprise risk frameworks and regulatory expectations in financial services
  • Experience building reporting dashboards and portfolio metrics within governance, risk, and compliance (GRC) platforms
  • Experience supporting or advising agile technology teams (Scrum, SAFe, Kanban)
  • Project Management Professional (PMP) certification, or Lean 6 Sigma certification
Job Responsibility
Job Responsibility
  • Coordinate execution and create visibility for the team’s work drive execution, governance, and transparency across a complex portfolio of technology and cyber risk initiatives
  • Enable actionable status reporting and tracking
  • Drive capacity planning
  • Champion better agile use across the team establishing scalable program structures that enable effective oversight of risk assessments, remediation tracking, and portfolio health reporting
  • Develop tools/templates to help the team be more efficient in projecting and tracking their work
  • Design and maintain portfolio governance tools, metrics, and operating mechanisms that strengthen risk visibility and forecasting accuracy
  • Lead the team to further levels of agile maturity within a second-line risk environment
  • Shape and further refine the GPN risk oversight team
What we offer
What we offer
  • Performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • Comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • Fulltime
Read More
Arrow Right

Specialist – Governance, Risk & Control

To manage and lead the Technology Security Governance, Risk, Compliance and Assu...
Location
Location
Lesotho
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree or equivalent in IT/Engineering or relevant tertiary qualification
  • Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII), GDPR, etc.
  • Proven experience managing and operating multiple security programs, projects, and initiatives
  • Ability to write reports for different security stakeholders
  • Proficient in preparation of reports, dashboards and documentation
  • Knowledge of and experience with GDPR
  • Web Application security and best practises
  • Business Analysis skills
  • High competence in Programming skills
  • Risk assessment skills
Job Responsibility
Job Responsibility
  • Direct, develop, implement and maintain a comprehensive Vodacom-wide information security governance, risk and compliance strategy
  • Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom
  • Ensure timely delivery of technology security assurance and support for projects
  • Provide accurate and timely reporting of technology security risks identified during project engagement and propose remediation and mitigation options
  • Monitor information security governance, risk, and compliance by Vodacom BIT, Mobile and Enterprise Business domains
  • Ensure alignment of information security governance with the Vodacom’s business objectives, the information security strategy, plans and controls
  • Ensure compliance with the applicable legislative and regulatory interpretation and corporate risk appetite
  • With the assistance of Head: Technology Governance, Lead, develop, manage and maintain the Vodacom-wide information security governance deliverables lifecycle including compliance measurement, deviations and exemptions
  • Engage with the stakeholders on compliance to control effectiveness and deficiencies in the design and operating effectiveness of information security controls, design and recommend opportunities for continuous improvement
  • Develop, manage and implement the Vodacom information security audit and assurance plans and schedules, including any specific business needs and requirements (including PCI, ISO27001, GDPR, Data Protection Act of Lesotho, Cyber Crime Bill)
Read More
Arrow Right

Platform Lead - Identity compliance

Currently, Airbus is looking for an Platform Lead - Identity compliance, to join...
Location
Location
India , Bangalore
Salary
Salary:
Not provided
airbus.com Logo
Airbus
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Graduate/Post Graduate with 7+ years of experience in IT, Cyber or equivalent field
  • Deep experience in Identity governance and administration(IGA) processes and framework
  • Advanced understanding of IGA platforms(such as Radiant logic/Brainwave GRC or similar) including disaster recovery and scalability
  • Proven experience leading the design, configuration and deployment of IGA modules, role mining, SOD policies
  • Experience in scripting languages for automation and task orchestration
  • Exceptional ability to influence and communicate complex technical risks to senior management and non-technical stakeholders
  • Capability to understand and deliver new business and customer requirements in the Digital domain
  • Strong project management skills for overseeing large-scale platform upgrades or implementation initiatives
  • Possession of industry-recognized certifications (relevant vendor certifications like SailPoint or Radiant logic) is highly desirable
  • Tools: Jira, Zoho, Confluence and/or Planisware knowledge is a plus
Job Responsibility
Job Responsibility
  • Lead the strategic roadmap and future architecture of the Identity Governance platform, ensuring alignment with enterprise security policies and digital security transformation goals
  • Manage the platform, applications associated with the platform and timely upgrades of the platform
  • Define and enforce platform governance standards, KPIs, and reporting metrics for recertification success, compliance gaps, and remediation processes
  • Collaborate with other IAM teams, business owners and security stakeholders to ensure seamless integration and alignment of security policies and procedures
  • Lead major platform lifecycle events (e.g., version upgrades, migrations, new module deployments), managing risks and coordinating dependent infra teams
  • Propose and implement performance tuning and optimization strategies for the platform (e.g., database query optimization, high-volume data loading)
  • Manage vendor relationships (e.g., Radiant Logic) concerning support issues, future features, and licensing strategy
  • Act as a SME for identity and access recertification audits, supporting internal and external compliance reporting
  • Provide technical leadership and direction to security analysts, setting best practices for operations and troubleshooting
  • Ensure support to the team members when required (decision, escalation, guidance)
  • Fulltime
Read More
Arrow Right