Cyber Security Audit Lead

Cyber Security Audit & Assurance Specialist – NV2 Defence Environment | Canberra | Governance, Risk & Assurance

A Defence client is seeking a highly skilled Cyber Security Audit & Assurance Specialist to lead security audits, assess control effectiveness, and provide high quality reporting to senior leadership and governance committees. An active NV2 clearance is essential.

Key Responsibilities

• Plan, conduct, and report on cybersecurity audits and assurance reviews.
  
  
• Assess the effectiveness of security controls, risk management practices, and policy implementation.
  
  
• Develop audit criteria aligned with PSPF, ISM, ISO 27001, and internal control frameworks.
  
  
• Conduct evidence testing, interviews, walkthroughs, and documentation reviews.
  
  
• Identify control gaps, assess risk impact, and develop clear, actionable recommendations.
  
  
• Track, validate, and report on the remediation of audit findings.
  
  
• Prepare high quality assurance reports and executive summaries for governance committees.
  
  
• Coordinate with system owners, risk managers, internal audit, external auditors, and regulatory bodies.
  
  
• Manage audit schedules, stakeholder expectations, and engagement outcomes.
  
  

About You

• Minimum of 5 years’ experience in cybersecurity, audit, or a closely related discipline.
  
  
• Strong experience leading and delivering cyber security audits, assessments, and assurance activities.
  
  
• Skilled in reviewing the design and operating effectiveness of technical and governance controls.
  
  
• Experience with government frameworks such as the PSPF and ISM.
  
  
• Ability to produce clear, concise, and high impact audit reports and risk findings.
  
  
• Strong communication and influencing skills, with the ability to engage senior leadership.
  
  

Desirable

• Experience with governance uplift projects or establishing risk frameworks.
  
  
• Certifications such as CISM or CISSP.
  
  
• Experience in government, Defence, or highly regulated environments.
  
  
• Background in leading large scale assurance programs or uplift initiatives.
  
  

We are an inclusive employer committed to fostering a diverse and accessible workplace. We encourage applications from Aboriginal and Torres Strait Islander peoples, people with disabilities, LGBTQIA+ individuals, people of all ages, and those from culturally and linguistically diverse backgrounds.