Cyber GRC Analyst
Job Description
- Permanent Full Time
- $83,714.28 per annum plus Superannuation
- Join the Information Technology team
Hume City Council is one of Australia’s fastest growing and culturally diverse councils. We put the customer and our community at the centre of all that we do, ensuring our services are efficient and accessible.
We're looking for a detail-oriented and analytical Cyber GRC Analyst to join the Cyber team in Hume City Council. In this role, you will be responsible for developing, implementing, and maintaining governance, risk, and compliance programs that protect our Council's information assets and ensure adherence to regulatory requirements. You will work collaboratively with cross-functional teams to identify security risks, assess compliance gaps, and drive the implementation of effective security controls and policies.
What you’ll be doing:
- Develop, implement, and maintain cybersecurity governance frameworks aligned with industry standards such as Victorian Protective Data Security Standards (VPDSS), ASD Essential Eight, ISO 27001 and PCI DSS etc.
- Conduct risk assessments and vulnerability analyses to identify potential security threats and compliance gaps for the remediation actions.
- Create and maintain information security policies, procedures, and documentation that support organisational compliance objectives.
- Monitor and evaluate the effectiveness of security controls and recommend improvements to enhance the security posture.
- Prepare and present compliance reports to management and stakeholders, highlighting key findings, risks, and remediation actions.
- Support internal and external audit activities by providing documentation, evidence, and explanations of security controls and compliance measures.
- Stay current with evolving cybersecurity threats, regulatory requirements, and industry best practices.
- Collaborate with IT and business teams to ensure security requirements are integrated into organisational processes and information systems.
- Maintain and update the IT risk register, compliance tracking and metrics reporting.
- Provide guidance and training to employees on security policies, compliance requirements and security best practices.
The skills and experience you’ll bring to the role:
- Thorough understanding of the relevant technology, procedures and processes used within their operating unit.
- Proven experience as a Cyber governance, compliance and risk or similar role, preferably within government or enterprise environments.
- Strong knowledge of GRC frameworks and methodologies (ISO 27001, ISO 42001, PCI DSS etc)
- Solid understanding of cybersecurity fundamentals, threats, and security controls
- Experience conducting risk assessments and compliance audits.
- Excellent analytical and problem-solving skills with strong attention to detail.
- Proficiency in developing and documenting security policies and procedures.
- Knowledge of relevant Victorian regulatory requirements and compliance obligations.
- Strong written and verbal communication skills with the ability to explain complex security concepts to non-technical stakeholders
- Proficiency with GRC tools and platforms (preferred)
Required Certifications & Qualifications
- Completion of a degree or diploma course with little or no relevant work experience, or lesser formal qualifications with relevant work skills, or relevant experience.
- Professional certifications such as CISSP, CISM or CRISC.
Why Hume City Council?
A leader in local government, we’re committed to creating an inclusive and collaborative work environment that is guided by our values:
We’re better, every day: We give things a go and value progress over perfection. We have permission to go for it and are expected to reflect and learn.
We’re in it together: At Hume, everyone matters. We Welcome and include all. Respect and safety are expected.
We show up: We empower and trust others and own our work. We rise to the challenges and are expected to do what we say we will.
All for Hume: We strive to achieve our best for the Hume Community. We are proud and passionate about working towards better outcomes and expect they are at the centre of everything we do.
We offer a competitive salary package, professional development opportunities, and a supportive work environment.
A child safe organisation and an equal opportunity employer. Council encourages people of all ages, people with disability, Aboriginal and Torres Strait Islander people, LGBTIQA+ people and people from culturally diverse backgrounds to apply.
All candidates will be required to undertake background and probity checks including Reference Checks, Working with Children Check, and a Criminal Record Check.
For any queries, please contact us at careers@hume.vic.gov.au.
Applications will be reviewed progressively throughout the advertising period. This role may close once a sufficient number of suitable applicants has been received. To ensure your application is considered, please apply as early as possible.