GRC Consultant | Jobs at CyberCX

_{20th November, 2025}

About CyberCX

CyberCX is Australia and New Zealand’s leading cyber security services provider, trusted by private and public sector organisations to help manage cyber risk, respond to incidents, and build resilience in an increasingly complex threat landscape.

With a workforce of over 1,400 professionals, CyberCX delivers end-to-end cyber capabilities across consulting and advisory, governance, risk and compliance, incident response, penetration testing, cloud and infrastructure solutions, identity and access management, and managed security services.

About the role

Australia’s leading independent cyber security services organisation, CyberCX, is building Australia’s greatest cyber security consulting team. We are looking for exceptional, customer obsessed people at the Consultant level to join our Governance, Risk & Compliance (GRC) practice.

As a GRC Consultant, you’ll have the opportunity to work in Multi-Disciplinary Teams (MDT) that cover our end-to-end services, solving our clients most challenging cyber security problems across diverse technology environments. You’ll help our clients proactively Identify, Protect, Detect, Respond, and Recover from threats.

As this is a national role, we are open to candidates at any CyberCX office.

Duties

Lead standard, and support complex, cyber security projects in the Governance, Risk and Compliance domain
Work with our customer base to assist them in identifying and effectively managing cyber security risk.
Develop, implement and maintain the Security SRMP, SSP’s, SRAs (assist with) documentation, supporting certification and accreditation for the service being delivered.
Maintain and improve the system security documentation package.

Skills & experience

Broad knowledge across a range of compliance frameworks (ISO 27001, PCI DSS, NIST, GDPR, etc.)
Demonstrated experience in developing security documentation such as Security Risk Management Plans (SRMP), and System Security Plans (SSP).
Minimum 12 months of experience dealing with a diverse range of Information Technology & Communications projects or challenges.
Experience with the ISM and PSPF or implementing and/or auditing an ISO 27001 ISMS.
Networks and Systems Administrators who have experience in implementation of complex systems wishing to shift focus to GRC.

Why CyberCX?

Joining CyberCX means being part of a passionate, purpose-driven team working to make Australia and New Zealand the safest places to connect online. You’ll enjoy:
Access to industry-leading experts and professional development opportunities.
A supportive, flexible, and collaborative workplace culture.
Competitive salary and benefits package.

Ready to make an impact?
Apply now and join a team that’s helping shape the future of cyber resilience.

Apply For Job