Full-time | South Eastern Suburbs (Hybrid) | 18 month fixed term contract

A well‑established Australian organisation is seeking a hands-on Cyber Security Lead to uplift cyber maturity and lead ISO 27001 certification readiness.

The Role
You’ll own the implementation of cyber security frameworks aligned to:

• ISO 27001:2022
• ASD Essential Eight (ML2)
• NIST CSF 2.0

Reporting to the Head of Technology, this role blends strategy, governance, and delivery, embedding security across cloud, endpoints, applications, and operational environments.
Key Responsibilities

• Lead ISO 27001 implementation and audit readiness
• Establish and operate an ISMS
• Conduct gap assessments and remediation roadmaps
• Own cyber risk framework and reporting
• Implement security controls (IAM, endpoint, vulnerability, PAM)
• Develop security policies and standards
• Establish monitoring and incident response processes
• Manage third‑party and vendor security risk (including AI‑enabled platforms)
• Drive security awareness across the organisation

About You

• Proven experience delivering ISO 27001 and Essential Eight
• Strong knowledge of NIST CSF 2.0
• Hands‑on experience across Microsoft 365, Azure, Intune, IAM
• Solid cyber risk, governance, and GRC capability
• Able to communicate clearly with technical and non‑technical stakeholders

Desirable: Experience in transport, logistics, infrastructure, or OT environments.