13th February, 2026
Fernway is proudly partnered with DCI Data Centers, leading the search to appoint a new IT Security, Governance & Risk Manager.
DCI Data Centers is a data centre owner and operator that is challenging the way facilities are built and operated. We bring together innovative, environmentally-efficient technologies and construction methods to enable the rapid deployment of secure cloud and hyperscale compute environments.
Operating across Australia and New Zealand, with expansion underway in South Korea, DCI delivers highly secure, compliance-led infrastructure to enterprise and government customers.
We are seeking an experienced IT Security, Governance & Risk Manager to lead DCI’s cybersecurity strategy, governance framework, and regulatory posture across all regions.
This is a strategic, board facing leadership role that will also, given the small size of our company, require you to also be hands on with operational duties.
The Role
Reporting to the IT Director and managing a small team (1 direct report, scaling over time), you will:
- Lead and continuously evolve DCI’s cyber strategy across AU, NZ and South Korea
- Provide regular cyber risk reporting to the Executive and Board
- Own and uplift enterprise security governance (information, personnel, physical and supply chain security)
- Lead compliance across relevant frameworks (ISO 27001, NIST CSF 2.0, ASD Essential Eight, PCI-DSS, DISP / DSPF)
- Act as DCI’s DISP Lead, managing DSAP profile, assessments and remediation
- Own the Enterprise Risk Management (ERM) framework and security risk register
- Drive cyber uplift initiatives across identity, network, cloud and endpoint
- Oversee incident response, disaster recovery and post-incident improvements
- Engage auditors, regulators and government stakeholders
About You
You are a pragmatic, commercially aware cyber leader who can operate at both executive and technical depth.
You will likely bring:
- 5+ years in cybersecurity leadership or GRC roles
- Strong experience implementing ISO 27001, NIST CSF 2.0 and Essential Eight uplift
- A solid background in either data centres or critical infrastructure (mandatory)
- Experience operating within DISP / DSPF / PSPF environments
Mandatory
- Australian Citizen
- NV1 clearance (or ability to obtain)
- Experience within data centres, critical infrastructure, defence, or government-aligned environments
What Makes This Role Different - Direct exposure to Executive and Board
- Ownership of enterprise security strategy across three countries
- Influence over physical + cyber integration in a mission-critical environment
- Growth pathway as the security function scales
- Backing of a global infrastructure investor
DCI Values (TRUE) - Trustworthy – We trust and respect each other
- Real – We communicate openly and honestly
- Unified – We operate as one team
- Executors – We act as owners
- This role suits someone outcome-focused, adaptable, and comfortable operating in a <50 FTE environment where influence matters more than headcount.
If you are a security leader who understands both regulator expectations and commercial reality, we would welcome a confidential discussion.
Martin Fletcher – m.fletcher@fernway.com.au
Jon Chapman – j.chapman@fernway.com.au
Apply For Job