IT Audit, Risk and Governance Manager

The Company


Our client is a services organisation who is the most well-renowned and respected in the state and arguably across the nation providing logistics and medical services. Premium quality services are what this organisation pride themselves on, and they do it well. Due to recent growth we have embarked on an IT Risk, Audit and Governance uplift program that will not only improve overall the organizational understanding of the importance of Information Security but also allow the organisation to improve the effectiveness of combatting customer risks.


The Chief Technology Officer, and leader of this position, has a diverse industry background and great tenure with the organisation blending a great business knowledge as well as great technical knowledge of "what looks good". Ongoing will be a focus on helping staff grow and develop in unity with cross functional engagement.


With a strong emphasis on operational excellence, we are seeking a talented lead position to join our technology team and focus on the development and oversight of the IT risk, governance and audit remit. This is an exciting opportunity to play a crucial role in optimizing our operational processes and driving our business forward. If you are passionate about making a real impact and being part of a fast-paced and high-growth company, we invite you to join us on this exciting journey.



The Role


Reporting into the Director of Transformation, this role is pivotal in ensuring seamless audit and compliance operations within the organization. It involves actively supporting routine audit and compliance checks, including responding to RFPs, and facilitating thorough IT audits by coordinating evidence gathering and engaging with both internal and external audit teams.


Additionally, the position plays a key role in report development for various stakeholders, ranging from regulators to senior management and the Board, with a focus on IT risk and control testing. Maintaining and updating internal policy documentation, providing governance and compliance insights to the IT risk management process, and ensuring adherence to all legal and statutory requirements are also integral aspects of this role.


Collaboration with business stakeholders across different business units to enhance IT governance and cybersecurity capabilities, as well as assisting in the creation of sales, training, and education materials, are essential components. Monitoring compliance with regulatory obligations, defining group security policies, participating in compliance activities, and proactively identifying and managing risks associated with onboarding new services are additional responsibilities critical to this position.


This is a broad role, that blends strategic direction with execution and alignment surrounding business strategic goals.



Your Profile


You are an experienced professional with over 3 years of expertise in information security, adept at establishing and maintaining robust security policy frameworks. Your background includes practical involvement in risk and compliance activities within IT, with a solid grasp of risk management principles and methodologies. You have successfully conducted third-party vendor security assessments and possess a history of working in positions requiring a high level of trust. Your passion for information security is evident, and you excel in prioritizing tasks while understanding business priorities. You thrive both independently and as a collaborative team member within globally distributed teams, utilizing various communication channels effectively. Accountability is ingrained in your work ethic, and you demonstrate adaptability to evolving environments, driving process improvements when necessary.


Your qualifications include a university degree or diploma in information technology or related fields, supplemented by certifications such as CISSP, CISM, ISO 27001 Lead Auditor/Implementer, or IRAP, which would be advantageous. You possess an understanding of information security frameworks such as NIST-CSF, ISO, Essential 8, and PCI DSS, alongside excellent communication skills and a strong technical proficiency in IT security technologies. You thrive on fostering cultures of agility, transparency, and continuous learning, working collaboratively with diverse teams to achieve common goals.



Apply Today


Please send your resume by clicking on the apply button.


Learn more about our Melbourne recruitment services:


Job Reference: 06810-00 12971405


By clicking 'apply', you give your express consent that Robert Half may use your personal information to process your job application and to contact you from time to time for future employment opportunities. For further information on how Robert Half processes your personal information and how to access and correct your information, please read the Robert Half privacy notice: Please do not submit any sensitive personal data to us in your resume (such as government ID numbers, ethnicity, gender, religion, marital status or trade union membership) as we do not collect your sensitive personal data at this time.