Cyber Security and Risk Manager

About the role

Join a 2026 AFR BOSS Best Places to Work Gold Winner and 2026 Sustainability Champion recognised by the World Steel Association. Play a key role in shaping our performance across our InfraBuild business.

Reporting to the Chief Technology and Innovation Officer and based in Sydney, this role is to lead the cyber security, risk and governance agenda for one of Australia's largest industrial organisations. Partner directly with the Chief Technology & Innovation Officer and executive leadership team to shape cyber strategy, strengthen resilience and drive risk-informed decision making across a complex steel manufacturing and recycling business.

The Manager of IT Security, Risk and Compliance leads the development and delivery of an integrated security, governance, risk, and compliance framework aligned with relevant standards and regulations. This role also maintains a robust information security and risk management program to protect InfraBuild’s information assets.

What you will be doing:

• Lead the design, implementation, and ongoing improvement of the organisation’s information security framework and cyber security program in collaboration with internal teams and external partners (MSSP).


• Align IT security, risk, and compliance strategies with business objectives, ensuring measurable value delivery and acceptable risk levels across all business units.


• Assess current IT security, governance, risk, and compliance practices to identify gaps and recommend improvements aligned with industry best practices.


• Develop and implement security strategies, frameworks, and incident response plans to address both tactical and strategic risk exposures.


• Establish and enforce IT policies, standards, and procedures to ensure consistent compliance with enterprise, legal, and regulatory requirements.


• Partner with stakeholders, vendors, and third parties to conduct risk assessments, manage residual risk, and strengthen overall security posture.


• Provide expert advice to senior leadership, deliver security audits and performance reporting, and act as SME for vendor risk and security assessments.

You will be rewarded with:

• Brand new Sydney CBD corporate office


• Exposure to senior executives and complex national operations


• Long-term career development opportunities within a large national organisation

Why this role matters

InfraBuild is modernising its technology and cyber landscape across manufacturing, recycling, distribution and corporate operations. This role will lead security governance and risk across a complex footprint, helping shape the next phase of cyber maturity, regulatory readiness and operational resilience.

Key initiatives include:

• Strengthening cyber resilience across operational technology (OT) and IT environments


• Driving uplift of security controls and risk management capabilities


• Supporting technology transformation programs


• Embedding security into business and technology decision-making

Primary Benefits:

We offer a range of benefits designed to support you at work and beyond:

• Paid parental leave that goes further - 20 weeks paid Primary Carer Leave and 3 weeks Partner Leave, plus superannuation contributions during unpaid leave (eligibility applies)


• Health cover at discounted rates - Access corporate rates with nib Health Insurance to support you and your family


• Flexible vehicle options - Novated leasing options available, providing a tax-effective way to finance and manage your vehicle

What you will bring:

• Bachelor’s BS/BA degree in Finance and/or Computer Science, Master’s degree preferred


• 10+ years’ experience in Information Security, Risk, Governance and Compliance (GRC) within enterprise environments


• Relevant certifications in Cyber Security, Audit, Risk Management and Project Management are highly desirable


• Experience working in complex IT environments (ITIL knowledge preferred)


• Familiarity with security frameworks such as the NIST Cyber Security Framework


• Knowledge of ISO standards, including ISO/IEC 38500 and ISO 27001 (security and privacy standards)


• Strong stakeholder management and collaboration skills, with the ability to influence teams to follow governance frameworks

Why join us?

We offer more than just a job; we provide a dynamic environment built on three pillars that define our commitment to both our team and our industry.

Work with a greater purpose - join us on our pursuit of a sustainable future and contribute to our nation’s legacy.

Work well, live better – experience a safe, supportive and inclusive environment which values you as a whole person and where wellbeing matters.

Build your own future – grow and drive your own development to grow your skills. Everyday is an opportunity to grow

About us

InfraBuild is Australia’s leading integrated steel manufacturing, distribution and recycling business.

We operate a circular steel model, recycling scrap into new steel and supplying products that support construction, infrastructure and industry across the country.

Our focus is simple. Help customers build more efficiently, with locally made steel and lower embodied carbon solutions.

How to apply

We invite you to forge your career in a workplace where passion meets purpose, wellbeing is nurtured and the opportunity to thrive is in your hands.

We’re committed to building an inclusive workplace that reflects the communities we serve. We encourage applications from people of all backgrounds, experiences and perspectives. Your diversity helps us create more sustainable and innovative steel solutions for Australia’s future.

We are a 2026 Circle Back Initiative Employer – we commit to respond to every applicant.