Security Analyst

Method Recruitment Bullhorn ·www.methodrecruitment.com.au

Location Sydney, New South Wales, Australia
Type Full time
Level Mid
Source Shazamme
1 Open
Apply direct

Security Analyst – GRC Specialist with Infrastructure Expertise

Overview:
Join a prestigious legal organisation as a Security Analyst specialising in Governance, Risk, and Compliance (GRC). In this vital role, you will be instrumental in protecting sensitive data, supporting compliance initiatives, and strengthening security controls across the organisation’s IT environment. Prior experience in a heavily regulated setting and hands-on involvement in maintaining ISO 27001 certification are highly valued. This position offers the opportunity to work within a collaborative and innovative team dedicated to embedding security best practices into all aspects of the organisation’s operations.

Required Skills:

  • Industry certifications such as CISSP or equivalent (desired)
  • Minimum of 3 years’ experience in IT infrastructure security, risk management, or GRC roles, ideally within heavily regulated environments
  • Hands-on experience maintaining ISO 27001 certification and implementing related controls
  • Strong understanding of GRC frameworks and controls, including ISO27001 and ASD Essential Eight
  • Proven ability to implement and maintain IT security standards and controls
  • Solid knowledge of risk management practices and ITIL processes
  • Excellent analytical, communication, and problem-solving skills
  • Capable of assessing, reviewing, and remediating security vulnerabilities and compliance gaps

Nice to Have Skills:

  • Experience with audit preparation and participation
  • Familiarity with vendor risk management and third-party security assessments
  • Knowledge of security awareness training programmes
  • Support experience with security certifications and client due diligence activities

Preferred Education and Experience:

  • Relevant tertiary qualification in Information Technology, Cybersecurity, or related field
  • Industry certifications such as CISSP, ISO27001 Lead Implementer, or similar credentials
  • At least 3 years’ experience in infrastructure security, risk management, or GRC roles, especially within regulated environments and with direct ISO 27001 maintenance experience

Other Requirements:

  • Willingness to pursue ongoing professional development
  • Ability to collaborate effectively across legal, IT, and vendor teams
  • Flexibility to support audit activities and compliance initiatives as required

If you are a proactive security professional with a keen eye for risk management in regulated environments and experience maintaining ISO 27001 certification, this is your chance to advance your career and contribute meaningfully.

Frequently asked questions

Who is hiring for the Security Analyst role?
Method Recruitment Bullhorn is hiring for the Security Analyst position, a Shazamme client. Apply directly on the employer's career site.
Where is the Security Analyst job located?
The Security Analyst role with Method Recruitment Bullhorn is based in Sydney, NSW, AU.
Is the Security Analyst role full-time or contract?
This is a full time position at Method Recruitment Bullhorn.
What experience level is the Security Analyst role?
The Security Analyst position is aimed at mid-level candidates.
How do I apply for the Security Analyst role at Method Recruitment Bullhorn?
Apply directly on Method Recruitment Bullhorn's career page via the Apply button on this listing. ZammeJobs links straight through to the employer's ATS — no third-party form, no resume database.
Apply direct