_{10th November, 2025}

At CyberCX, we’re united by one mission: to secure our communities and build confidence in the connected world. With over 1,400 cyber security professionals across Australia and New Zealand, we’re trusted by government, defence, and critical industry partners to deliver world-class cyber expertise.

We’re now seeking a Manager specialising in the Defence Industry to join our Governance, Risk and Compliance practice. This role is ideal for someone passionate about applying deep cyber governance, risk, and compliance expertise to help protect Australia’s Defence capability.

About the Role

In this position, you’ll play a key role helping our Defence clients meet their governance and compliance obligations against Australia’s most critical security frameworks — the Information Security Manual (ISM), Protective Security Policy Framework (PSPF), and Defence Security Principles Framework (DSPF).

You’ll be responsible for mentoring team members, providing expert guidance on cyber risk and accreditation, and building trusted relationships with senior Defence stakeholders. Working in a fast-paced, high-trust environment, you’ll contribute to projects that genuinely strengthen Australia’s national security posture.

What You’ll Be Doing

• Lead the delivery of complex GRC and Defence cyber security engagements, guiding consultants and ensuring excellence across project outcomes.
• Provide expert advice and interpretation of the ISM, PSPF, and DSPF frameworks.
• Develop, review, and enhance security accreditation documentation and risk artefacts.
• Conduct threat modelling and risk assessments to support secure systems engineering.
• Prepare and present high-quality reports and recommendations to clients and senior stakeholders.
• Collaborate across CyberCX Practices to deliver integrated Defence solutions.

What You’ll Bring

• 3+ years’ experience in a cyber security, governance, or risk management role within Defence, government, or a related industry.
• Deep understanding of the Defence systems engineering lifecycle and associated cyber artefacts.
• Demonstrated knowledge of the ISM, PSPF, and DSPF frameworks and how to apply them in complex environments.
• Experience in risk assessments, system security documentation, and threat modelling.
• Strong communication skills and the ability to influence technical and non-technical stakeholders.
• Existing or eligible NV1 Defence security clearance (Australian citizens only).

Bonus points for:

• GRC or security certifications such as CISM, CISSP, or IRAP Assessor.
• Experience in network architecture or engineering (CCNA, CCNP, or similar).

Why Join CyberCX

• Work on high-impact Defence and national security projects.
• Access mentoring from Australia’s leading cyber experts.
• Enjoy a flexible hybrid work environment (office + WFH).
• Receive an annual training budget for certifications and career growth.
• Be part of a values-driven team united by purpose, innovation, and trust.

Ready to make a difference?
If you’re looking to apply your expertise in a role that directly contributes to Australia’s Defence resilience, we’d love to hear from you.

Apply For Job