At Compass Group, we’re shaping a better tomorrow by enriching people, communities, and the planet. We believe in seeing and nourishing individuals as a whole. By focusing on meaningful work and positive impacts, we create a workplace where you can grow and develop.

We are currently recruiting for a Cyber Security Specialist to join our team. This position will be based in our Sydney office. If you’re passionate about designing and implementing security frameworks and thrive in a collaborative environment, we’d love to hear from you.

THE ROLE

The Cyber Security Specialist is a multidisciplined role with responsibilities in both Security Architecture and Governance, Risk, and Compliance (GRC). This role will be responsible for designing and implementing security frameworks, ensuring compliance with industry standards, and managing risk across the organisation’s IT environment. The ideal candidate will have a blend of technical expertise and risk management capabilities to enhance the organization’s cybersecurity posture.

Key responsibilities:

• Help develop and maintain security architecture frameworks, reference architectures, and technical security standards aligned with industry best practices.
• Collaborate with Infrastructure and applications team to ensure security is integrated into system designs, cloud environments, and application development.
• Conduct threat modelling and secure design reviews for new and existing IT systems.
• Evaluate and implement security technologies such as IAM, DLP and data governance solutions.
• Develop and maintain cybersecurity policies, standards, and guidelines to align with regulatory and business requirements.
• Lead risk assessments, gap analysis, and control effectiveness evaluations across enterprise IT and cloud environments.
• Assist with compliance to industry regulations and standards (e.g., ISO 27001).
• Conduct third-party risk assessments and review vendor security practices.
• Oversee security awareness training and ensure compliance with internal security policies.
• Technology Risk management - Ensure Technology risk mitigating activities implementation, perform Technology risk assessments.
• Incident Management – Support event and incident response process, Support cyber operations SME, in troubleshooting, resolution, and root cause analysis.
• Threat and Vulnerability management – Execute threat and vulnerabilities management activities, participate in the identification and categorisation of threats and vulnerabilities; Assist in the threat and vulnerabilities remediation and mitigation activities; Support testing activities and findings mitigation.
• Project Delivery – Assist in D&T project implementation and ensure cyber security risk mitigation strategies and technology architecture alignment is in place.
• Audit – support internal and external D&T Audit
• Operational Compliance - Monitor and feedback to operations teams on non-compliance for IT controls including patching, identity and endpoint management.

THE PERSON

• Appropriate tertiary qualifications in IT and Cyber Security
• 5+ years’ experience in cyber security technologies and solutions
• Experience with cloud security (AWS, Azure), including cloud security controls, identity management, and workload protection
• Strong knowledge of security frameworks and regulatory requirements
• Experience or exposure to:
  • Technology Risk Management
  • Information Security Audits
  • Reviewing Security Policies, Procedures and Guidelines
  • Security Gap Assessment

THE BENEFITS

Working with a large global company means you can be assured that we have an attractive benefits program! This includes comprehensive learning & development offerings, a variety of recognition programs and company discounts, an excellent salary benchmarking matrix and at this management level also includes an incentive bonus scheme! You can read all about these here: Why work at Compass

We are committed to providing a recruitment process that is fair, equitable and accessible for all. If you require adjustments or alternative methods of communication in the recruitment process, please reach out to us on either 1300TALENT or careers@compass-group.com.au