Information Security Risk & Compliance Analyst supporting the maintenance of ISO 27001 standards. Contributing to risk assessments and compliance across AAB’s Business Protection Team.
About the role
- IT & Security Manager at Medenterprises managing technology and cybersecurity for healthcare professionals in Australia and New Zealand. Leading strategic initiatives and infrastructure to enhance security posture.
Responsibilities
- Lead IT & Security Strategy
- Report to the Head of Technology and provide risk and performance insights to senior leaders
- Define and deliver IT and cybersecurity strategy
- Advise senior leaders on technology, risk and investment decisions
- Establish governance, policies and standards
- Represent the business with auditors, insurers and regulators
- Oversee performance, security and scalability of core systems
- Lead architecture, lifecycle planning and continuous improvement
- Drive security frameworks, controls and incident response
- Maintain and test business continuity and disaster recovery
- Oversee access, vulnerability and patch management
- Embed a strong security culture across the business
- Set direction and standards for IT service delivery across ANZ
- Ensure effective incident, problem and change management
- Monitor performance across internal teams and vendors
- Lead major system implementations and technology initiatives
- Partner with the business to deliver meaningful improvements
- Communicate clearly with non-technical stakeholders
- Manage Vendors & Build Capability
- Own vendor relationships, performance and contracts
- Ensure service and security expectations are met
- Optimise licensing and technology spend
- Lead and develop the IT function, including resource planning
- Build capability across infrastructure and cybersecurity
Requirements
- Strong experience in IT infrastructure and cybersecurity leadership.
- A qualification in IT, computer science, business or a related field.
- Proven ability to improve technology maturity and governance.
- Solid understanding of risk, compliance and incident response.
- Experience managing vendors and delivering technology initiatives.
- The ability to translate technical detail into business impact.
- Comfortable operating in external forums (auditors, regulators, insurers).
- Proven track record of building and structuring a function, not just managing within one.
- Experience leading a team to deliver outcomes across Microsoft 365 in a “cloud-first” environment.
- A solid understanding of Microsoft 365 and Entra ID features, and functions, particularly in security, administration, and endpoint protection.
Benefits
- Diverse, Inclusive Environment
- Medical Insurance and Parental Leave Top Ups for Primary Carers
- Ongoing Career Coaching and Learning & Development Opportunities
- Hybrid & Remote Work Options
- Quarterly Events & Team Celebrations
- Clear Career Growth Pathways
- Proudly B Corp Certified
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Information Security Risk & Compliance Analyst at AAB managing compliance with ISO 27001, supporting enterprise risk assessments and enhancing information security systems.
Information Security Risk & Compliance Analyst at AAB focusing on ISO 27001 compliance and information security management. Collaborating across teams to ensure robust risk and compliance frameworks.
Security Principal at Optiv designing AI security solutions for clients, leveraging advanced security services and technologies. Driving pipeline generation and maintaining strong client relationships as a trusted advisor.
Cloud Security Architect supporting federal customer projects focused on architecture and security solutions. Conducting risk assessments and defining security requirements within a cloud environment.
Information Security Specialist responsible for enhancing cybersecurity posture through incident management and compliance. Collaborating with cross - functional teams to monitor threats and implement security measures.
Senior Lead Info Security Architect leading and collaborating on cybersecurity solutions at TIAA. Responsible for secure design and implementation of cloud security strategies and practices.
Part Time Security Officer providing protection for Collector's personnel and assets at trade shows across North America while reporting to Security Shows & Transportation Manager.
Enterprise Security Architect at PBCN GmbH designing and implementing security architectures. Collaborating with teams to ensure application security and conducting risk assessments.
Senior Manager leading cybersecurity integration across product lines and services at ADI Global. Overseeing strategies, managing teams, and aligning with organizational goals.