CrawlJobs Logo

Information Compliance Lead

https://www.csiro.au/ Logo

CSIRO

Location Icon

Location:
Australia , Adelaide

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Employment contract

Salary Icon

Salary:

118000.00 - 127000.00 AUD / Year
Save Job
Save Icon
Apply Position

Job Description:

We are seeking an Information Compliance Lead to join our Enterprise Information Management team. Enterprise Information Management enhances digital information capability and embeds risk-informed compliance across research and support environments. In this role, you will coordinate services to promote information compliance and business efficiency across the records and information lifecycle (capture, store, classify, share, retain, dispose or preserve). The team recommends pragmatic solutions to manage information risk and promote regulatory compliance. You will be responsible for developing and maintaining effective working relationships within Information Management & Technology and work in a collaborative manner with research and support services across CSIRO, including IT governance, system owners, project managers and data professionals.

Job Responsibility:

  • Lead and develop a professional team delivering high‑quality, solution‑focused advice on information management, systems, and governance
  • Act as a trusted advisor to projects and system owners on information management requirements, processes, and implementations
  • Coordinate Business System Assessments, compliance monitoring, and continuous improvement initiatives
  • Monitor emerging trends and technologies (including generative AI and automation), identifying risks and recommending effective governance controls
  • Plan and deliver service improvements and initiatives using sound project management practices.

Requirements:

  • Relevant tertiary qualifications in information management or IT, or an equivalent combination of experience and training
  • Demonstrated extensive knowledge of information management lifecycle standards and concepts (i.e. risk, metadata, sensitivity, classification, disposal)
  • Demonstrated experience with federal or state information management standards such as the Protective Security Policy Framework and standards issued by the National Archives of Australia
  • Demonstrated understanding of emerging information management trends and risks, with ability to recommend appropriate controls (for example, in automation, compliance by design and generative AI)
  • Demonstrated experience coordinating a team including performance management, leadership and people development skills. Capacity to manage a geographically dispersed team
  • Ability to build trust and communicate business requirements with project managers and related advisory services
  • Ability to manage competing demands and prioritise team resources to meet targets
  • Demonstrated excellent interpersonal, stakeholder management and communication skills to engage with a variety of audiences.
What we offer:
  • 15.4% superannuation
  • flexible work arrangements
  • leave entitlements
  • career development opportunities

Additional Information:

Job Posted:
May 06, 2026

Expiration:
May 26, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
CSIRO - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Compliance Lead

Information Security Risk Lead

The Information Security Risk Lead is responsible for driving efforts to support...
Location
Location
Thailand , Bangkok
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s/Bachelor’s/University degree or equivalent experience in Computer Science, Cyber Security, Computer/Information Engineering, Information Technology or a related discipline is preferred
  • One or more industry-recognized cybersecurity-related certifications such as CISSP, CISA, CISM, CRISC, ISO 27001
  • 6 - 10 years or above of relevant experience in Cyber Security Management / Cyber Security Operations / Technology Risk Management / Third-party Risk Management or IT Audit, preferably with experience gained from banking / finance services industry / consultancy / control compliance or legal disciplines
  • Experience in assessing cyber regulatory compliance from BOT, SEC etc.
  • Strong understanding of International Standards/Frameworks such as: NIST, ISO 27001series, COBIT, CIS, GDPR, DORA, etc.
  • Proficient in interpreting and applying policies, standards and procedures
  • Excellent project management and organizational skills (PMP, PRINCE2, etc. is a plus)
  • Strong consultation, reporting writing and communication skills with highly proficiency in both spoken and written English and Thai
  • Thai language fluency is a must.
Job Responsibility
Job Responsibility
  • Manage and validate deliverables of all Information Security (IS) programs, ensuring closure per agreed timelines and goals
  • Engagement with local regulators BOT, SEC, TB-CERT, Thai-CERT, MDES, NCSA, etc. on IS related matters
  • Manage regulatory exams and internal & external audits
  • Work closely with Global & Regional Information Security teams to improve processes and reduce risk, and support the IS regulatory related activities for Thailand
  • Manage internal/external resources to organize cyber-attack simulations exercise, coordinating and overseeing vulnerability, mitigation/remediation/correction action plans, and issues management process
  • Accountable for delivery of the associated remediation from regulatory assessments
  • Proficiency in preparing periodic updates / reports / presentation deck for both internal stakeholders and regulators
  • Provide timely and appropriate updates to regional and global stakeholders
  • escalate issues in a timely manner to senior management
  • Build and develop partnerships with business, IT, risk, compliance, IS, senior management staff and stakeholders
  • Fulltime
Read More
Arrow Right

Senior Information Security Compliance Analyst

We're looking for a technically grounded Senior IS Compliance Analyst who speaks...
Location
Location
United States , Chicago
Salary
Salary:
90000.00 - 130000.00 USD / Year
blumeglobal.com Logo
Blume Global
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience in technical security roles such as Security Operations, Incident Response, Security Analysis, penetration testing, or similar
  • Practical knowledge of security tools, SIEM platforms, vulnerability management, and security monitoring
  • and ability to read and understand security logs, configurations, and technical documentation
  • 6+ years of total experience with significant time in GRC
  • Working knowledge of ISO 27001, NIST frameworks, SOC 1/2, and GDPR requirements
  • Experience developing and implementing information security policies and controls
  • ISO 27001:2022 Lead Implementer and Lead Auditor certification
Job Responsibility
Job Responsibility
  • Lead technical security assessments and integration of acquired companies, mapping their security architectures and controls to our GRC frameworks, identifying gaps, and building remediation roadmaps that address both technical security and compliance alignment
  • Bridge technical security and business stakeholders by evaluating risks through a technical lens, working alongside security engineering teams to translate GRC requirements into practical security measures, and communicating effectively across technical and non-technical audiences
  • Develop and harmonize security policies and control frameworks across acquired entities, ensuring they're both audit ready and operationally sound, while translating between technical security requirements and governance documentation
  • Own customer security questionnaire responses by leveraging your hands-on security background to provide detailed, accurate answers and collaborating with infrastructure, application security, and operations teams to gather technical evidence
  • Drive continuous improvement of our GRC program through technical security enhancements, meaningful security and compliance metrics, and process improvements that increase both control effectiveness and operational efficiency
What we offer
What we offer
  • health and welfare benefits
  • tuition assistance
  • 401K savings and other retirement programs
  • employee assistance programs
Read More
Arrow Right

Security and Compliance Lead

We’re on the hunt for a hands-on, sharp-thinking Security & Compliance Lead to l...
Location
Location
Salary
Salary:
110000.00 - 120000.00 USD / Year
corporatetools.com Logo
Corporate Tools
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or equivalent experience in security and compliance
  • 5+ years in security, compliance, or audit roles within IT infrastructure or data centers
  • Demonstrable experience managing SOC 2, ISO 27001, PCI DSS, HIPAA, or GDPR compliance
  • Hands‑on familiarity with physical security systems like CCTV, badge control, biometric access, and alarms
  • Deep knowledge of SIEM systems, incident response frameworks, and risk assessment methodologies
  • Comfortable with networking/physical infrastructure concepts: VLANs, firewalls, environmental sensors, racks
  • A great human
  • Strong leadership and interpersonal skills
  • A person who gets things done themselves with or without a team
Job Responsibility
Job Responsibility
  • Develop and maintain security policies, standards, and baseline configurations for the data center
  • Enhance layered physical security systems, including CCTV, badge readers, biometrics, and intrusion alarms
  • Manage 24/7 access controls, including visitor management, staff clearances, badge systems, and vendor accreditation
  • Lead risk assessments (e.g., FMEA, threat modeling), identify vulnerabilities, and recommend remediation
  • Ensure compliance with standards like SOC 2, ISO 27001, and PCI DSS
  • coordinate audits and maintain audit-ready documentation
  • Serve as Incident Commander or key responder for physical breaches, alarms, or policy violations
  • lead investigations and reporting
  • Maintain and improve incident response playbooks
  • train staff on protocols and best practices
What we offer
What we offer
  • 100% employer-paid medical, dental and vision for employees
  • Annual review with raise option
  • 22 days Paid Time Off accrued annually, and 4 holidays
  • After 3 years, PTO increases to 29 days. Employees transition to flexible time off after 5 years with the company—not accrued, not capped, take time off when you want
  • The 4 holidays are: New Year’s Day, Fourth of July, Thanksgiving, and Christmas Day
  • Paid Parental Leave
  • Up to 6% company matching 401(k) with no vesting period
  • Quarterly allowance
  • Use to make your remote work set up more comfortable, for continuing education classes, a plant for your desk, coffee for your coworker, a massage for yourself... really, whatever
  • Open concept office with friendly coworkers
Read More
Arrow Right

Legal Third-Party Management and Information Security Risk Lead

As part of the Legal Outside Counsel, Third Party Management and Operations team...
Location
Location
United Kingdom , Belfast
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ability to assess residual risk in complex vendor environments and make sound defensible recommendations
  • Experience applying risk-based frameworks to prioritize issues and mitigation efforts
  • Strong interpersonal skills for engaging legal, compliance, technology, procurement and senior risk stakeholders
  • Proficiency in creating clear and concise reports dashboards and governance experience
  • Leading or supporting cross functional projects, ability to support risk transformation initiatives, and integrate evolving legal tech and regulatory guidance into assessment methodologies
  • Bachelor’s degree or equivalent
Job Responsibility
Job Responsibility
  • Manage and oversee a set of complex initiatives that span multiple lines of business in the Cyber Security (CS), Information Security (IS) and Third-Party Risk Management (TPRM) space for Global Legal Solutions
  • Assess the risks and effectiveness of Third Party IS processes and controls based on enterprise requirements ensuring the IS risk is within tolerance
  • Evaluate the design and execution of the Legal IS Program, identifies potential enhancements and drives implementation of governance, methodologies and tools required for the effective oversight of Third-Party Management IS risk to continually strengthen the Program
  • Assist the day-to-day activities within the TPM Risk and Info Sec group
  • Monitor, track and control outcomes to resolve issues, conflicts, dependencies and critical path deliverables related to issues and gaps found in the TPISA process
  • Drive implementation of enterprise Third Party Management controls required to be assessed as part of the Managers Control Assessment, reviews results, and determines if remediation actions are appropriate
  • Document control design, testing methodology, and evidence for effectiveness reviews in compliance with Citi's Risk and Control Standards
  • Contribute to quarterly control certifications, issue management processes and audit engagements
What we offer
What we offer
  • Generous holiday allowance starting at 27 days plus bank holidays
  • increasing with tenure
  • A discretional annual performance related bonus
  • Employee Assistance Program
  • Pension Plan
  • Paid Parental Leave
  • Special discounts for employees, family, and friends
  • Access to an array of learning and development resources
  • Private medical insurance packages to suit your personal circumstances
  • Fulltime
Read More
Arrow Right

Privacy and Responsible Information Management Compliance Officer

Citi’s Global Legal Affairs and Compliance(GLAC) empowers and protects Citi by p...
Location
Location
Philippines , City of Taguig
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Expertise of Compliance risks and typologies
  • Good understanding of data privacy and records laws and regulations including GDPR, CCPA, GLBA, etc.
  • Strong analytical skills to assess privacy and records risks and to develop mitigation strategies
  • Advanced Microsoft Office skills, including Excel, PowerPoint, and Word
  • Knowledge of banking products and services and horizontal programs such as Anti-Money Laundering, Sanctions, etc.
  • Must be a self-starter, flexible, innovative and adaptive
  • Highly motivated, strong attention to detail, team oriented, organized
  • Strong presentation skills with the ability to articulate complex problems and solutions through concise and clear messaging
  • Ability to work collaboratively with regional and global partners in other functional units
  • ability to navigate a complex organization
Job Responsibility
Job Responsibility
  • Serve as a compliance risk officer for Independent Compliance Risk Management (ICRM) responsible for establishing internal strategies, policies, procedures, processes, and programs to prevent violations of law, rule, or regulation and design and deliver a risk management framework that maintains risk levels within the firm's risk appetite and protect the franchise
  • Assisting with the design, development, delivery and maintenance of best-in-class Compliance programs, policies and practices for ICRM
  • Regularly reviewing and updating privacy and records management policies aligned with relevant data protection laws (e.g., GDPR, CCPA) to determine impacts to the business
  • Providing support to Product and Function ICRM (PFICRM) regarding privacy and records management matters
  • Assist with relevant compliance risk assessments
  • Preparing reports to disseminate pertinent information to PFICRM and lines of business to oversee privacy and records management risks
  • Leveraging data to conduct monitoring to identify potential privacy and records management risks and non-compliance issues and taking appropriate action
  • Providing credible challenge of existing control environment across businesses and functions aligned with relevant privacy and records laws
  • Identifying data sources, collating data, and developing and/or enhancing current reporting metrics to demonstrate the oversight of compliance and risks aligned to relevant privacy and records laws
  • Monitoring adherence to Citi’s Compliance Risk Policies and measuring compliance risk through a robust control framework and ensuring that reviews are conducted consistently across each entity on a regular basis to confirm that controls identified are operating effectively
What we offer
What we offer
  • Citi provides programs and services for your physical and mental well-being including access to telehealth options, health advocates, confidential counseling and more
  • We believe all parents deserve time to adjust to parenthood and bond with the newest members of their families
  • We empower our employees to manage their financial well-being and help them plan for the future
  • Citi provides access to an array of learning and development resources to help broaden and deepen your skills and knowledge as your career progresses
  • We have a variety of programs that help employees balance their work and life, including generous paid time off packages
  • We offer our employees resources and tools to volunteer in the communities in which they live and work
  • Fulltime
Read More
Arrow Right

Information Security & OT Lead

At METLEN Energy & Metals, we are catalysts for a sustainable future, positioned...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
https://www.metlengroup.com Logo
Metlen Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information science, Information systems or a related scientific field
  • Master’s degree will be considered an asset
  • +5 years of experience in Information Security or Cybersecurity roles
  • Strong technical background in cybersecurity and OT security
  • Proven experience in managing information security in OT environments is a strong plus
  • Solid understanding of ISO 27001, ISA/IEC 62443, and NIS2 directives
  • Strong knowledge of risk management methodologies and compliance frameworks
  • Excellent collaboration and communication skills for multi-site and cross-border coordination
Job Responsibility
Job Responsibility
  • Respond to audit requirements for all international sites including factories, energy plants, and solar fields
  • Participate in cyber incident response processes related to international and local industrial installations
  • Guide technical leaders and support information security compliance in Greek and international operations
  • Propose cybersecurity architectures and solutions to safeguard operational technology (OT) infrastructure
  • Participate in management committees to inform senior leadership on cyber risks and compliance issues
  • Work closely with international IT business partners on cybersecurity topics across the global footprint
What we offer
What we offer
  • Competitive remuneration package
  • Ticket Restaurant Card
  • Group Health Insurance Plan
  • Preferential household electricity plan
  • Pension Plan
Read More
Arrow Right

Senior Information Security & OT Lead

Senior Information Security & OT Lead position in Athens, responsible for cybers...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
https://www.metlengroup.com Logo
Metlen Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information science, Information systems or a related scientific field
  • +5 years of experience in Information Security or Cybersecurity roles
  • Strong technical background in cybersecurity and OT security
  • Proven experience in managing information security in OT environments
  • Solid understanding of ISO 27001, ISA/IEC 62443, and NIS2 directives
  • Strong knowledge of risk management methodologies and compliance frameworks
  • Excellent collaboration and communication skills for multi-site and cross-border coordination
Job Responsibility
Job Responsibility
  • Respond to audit requirements for all international sites including factories, energy plants, and solar fields
  • Participate in cyber incident response processes related to international and local industrial installations
  • Guide technical leaders and support information security compliance in Greek and international operations
  • Propose cybersecurity architectures and solutions to safeguard operational technology (OT) infrastructure
  • Participate in management committees to inform senior leadership on cyber risks and compliance issues
  • Work closely with international IT business partners on cybersecurity topics across the global footprint
What we offer
What we offer
  • Competitive remuneration package
  • Ticket Restaurant Card
  • Group Health Insurance Plan
  • Preferential household electricity plan
  • Pension Plan
  • Fulltime
Read More
Arrow Right

Information Security Professional Lead Analyst

The Info Sec Prof Lead Analyst is an intermediate level position responsible for...
Location
Location
Philippines , City of Taguig
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • At least 7+ years of strong data analysis and report development experience
  • 7+ years of experience in information security or related technology experience required
  • At least 7+ years’ experience with Business Intelligence Reporting tools like Cognos, Tableau
  • At least 7+ years’ experience with Databases like Oracle, SQL Server, Microsoft Access
  • Strong Business Intelligence Developer Skills
  • Strong understanding of application development life cycle, CI/CD and DevOps concepts
  • Excellent Excel data analysis and Access database skills
  • Excellent SQL Skills
  • Experience with issue resolution - ability to research, identify and communicate solutions
  • Consistently demonstrates clear and concise written and verbal communication
Job Responsibility
Job Responsibility
  • Design and implement a solution for performance measurements on effectiveness of controls and overall vulnerability assessment program
  • Analyze trends on assets security health posture and report using visualization tools for program review with management and stakeholders
  • Analyze and report aggregated data from multiple data sources
  • Develop data visualization mock-ups for monitoring program data trends and communicate using analytical tools
  • Develop reports for tracking program effectiveness and update power point deck for weekly, monthly and quarterly updates
  • Develop, optimize and provide continuous support for reports and ad-hoc queries from end user
  • Create dashboards with parameters and interactive drill down functionality
  • Analyze trends on assets security health posture and report using visualization tools for program review with management and stakeholders
  • Excellent Analytical Ability - Understand the systems and data flow at a high level to evaluate if appropriate controls are in place for the standards
  • Provide timely, accurate, and actionable reporting on application vulnerability activity, trends, service levels, and areas of concern to senior management
  • Fulltime
Read More
Arrow Right