Cyber Security and Risk Manager
Why This Role Stands Out
This hybrid role offers significant impact by shaping the cyber security strategy for a major industrial organization, providing a fantastic opportunity for career growth and skills development in a high-profile position. You'll thrive here if you're a proactive leader passionate about strengthening resilience and driving risk-informed decisions across a complex business landscape.
Quick Overview
Job Description
Reporting to the Chief Technology and Innovation Officer and based in Sydney, this role is to lead the cyber security, risk and governance agenda for one of Australia's largest industrial organisations. Partner directly with the Chief Technology & Innovation Officer and executive leadership team to shape cyber strategy, strengthen resilience and drive risk informed decision making across a complex steel manufacturing and recycling business.
The Manager of IT Security, Risk and Compliance leads the development and delivery of an integrated security, governance, risk, and compliance framework aligned with relevant standards and regulations. This role also maintains a robust information security and risk management program to protect InfraBuild's information assets.
What you will be doing:- Lead the design, implementation, and ongoing improvement of the organisation's information security framework and cyber security program in collaboration with internal teams and external partners (MSSP).
- Align IT security, risk, and compliance strategies with business objectives, ensuring measurable value delivery and acceptable risk levels across all business units.
- Assess current IT security, governance, risk, and compliance practices to identify gaps and recommend improvements aligned with industry best practices.
- Develop and implement security strategies, frameworks, and incident response plans to address both tactical and strategic risk exposures.
- Establish and enforce IT policies, standards, and procedures to ensure consistent compliance with enterprise, legal, and regulatory requirements.
- Partner with stakeholders, vendors, and third parties to conduct risk assessments, manage residual risk, and strengthen overall security posture.
- Provide expert advice to senior leadership, deliver security audits and performance reporting, and act as SME for vendor risk and security assessments.
- Brand new Sydney CBD corporate office
- Exposure to senior executives and complex national operations
- Long term career development opportunities within a large national organisation
InfraBuild is modernising its technology and cyber landscape across manufacturing, recycling, distribution and corporate operations. This role will lead security governance and risk across a complex footprint, helping shape the next phase of cyber maturity, regulatory readiness and operational resilience.
Key initiatives include:- Strengthening cyber resilience across operational technology (OT) and IT environments
- Driving uplift of security controls and risk management capabilities
- Supporting technology transformation programs
- Embedding security into business and technology decision making
We offer a range of benefits designed to support you at work and beyond:
- Paid parental leave that goes further - 20 weeks paid Primary Carer Leave and 3 weeks Partner Leave, plus superannuation contributions during unpaid leave (eligibility applies)
- Health cover at discounted rates - Access corporate rates with nib Health Insurance to support you and your family
- Flexible vehicle options - Novated leasing options available, providing a tax effective way to finance and manage your vehicle
- Bachelor's BS/BA degree in Finance and/or Computer Science, Master's degree preferred
- 10+ years' experience in Information Security, Risk, Governance and Compliance (GRC) within enterprise environments
- Relevant certifications in Cyber Security, Audit, Risk Management and Project Management are highly desirable
- Experience working in complex IT environments (ITIL knowledge preferred)
- Familiarity with security frameworks such as the NIST Cyber Security Framework
- Knowledge of ISO standards, including ISO/IEC 38500 and ISO 27001 (security and privacy standards)
- Strong stakeholder management and collaboration skills, with the ability to influence teams to follow governance frameworks
Skills
Similar jobs
Information Systems Security Engineer / ISSE (HPC) with Security Clearance
American Systems Corporation · Arlington, United States
1 minute ago$165k - $200k/yrSoftware Development with Security Clearance
Altamira Technologies · Warrenton, United States
4 minutes ago$90k - $140k/yrSAP Berater:in FI/CO
NTT DATA · Schwerin, Germany
6 minutes agoDCEO Chief Engineer, Data Center Engineering Operations
Amazon TA · saint denis, France
10 minutes agoDCEO Engineer, Data Center Engineering Operations
Amazon TA · paris, France
10 minutes agoDCEO Engineer, Data Center Engineering Operations
Amazon TA · saint denis, France
10 minutes ago