Jobs
>
Sydney

    Senior Governance, Risk, Compliance - Sydney, Australia - Sas

    Sas
    Sas Sydney, Australia

    2 days ago

    Default job background
    Full time
    Description

    Senior Governance, Risk, Compliance - Audit (GRC-A) Security Advisor At SAS, where you start doesn't have to be where you end; and there is ample opportunity for internal career mobility.

    Whether you're looking to grow a new skill or experience a new role, there's no time like the present to take the next step; and we're here to support you in your journey.

    We're looking for a Governance, Risk, Compliance – Audit Security Advisor to join our team in Australia, specifically focused on Compliance in Government.

    The role will assess information security and cybersecurity risk, facilitate compliance with regulatory requirements and information security policies, execute assurance testing to required performance standards, and develop and report information security metrics.

    They are responsible for lowering information security and cybersecurity risk to SAS, partnering with other teams across the enterprise.

    Your responsibilities may include:
    While remaining updated of compliance and security regulations and standards within regulated markets for ex: IRAP, ISMAP, ISAE 3000, and/or ISO 27001), provide advisory services to the business, including recommendations for assurance and application of SAS security policies for SAS Cloud, on-premises projects, and country or regional offices.

    Review SAS Cloud or on-premises security contract terms, respond to RFP and security questionnaires, and support information security-related discussions with customer security teams and auditors during negotiations and post-sale operational activities.

    Facilitate and ensure continuous monitoring activities are operating effectively, identifying control gaps and deficiencies and reporting to management, as applicable.

    Assist in the development System Security Plans, Plans of Actions and Milestones, Continuous Monitoring Plans, and Incident Response Plans in collaboration with other teams.

    Conduct scheduled and ad hoc reviews of applicable SAS Cloud solution environments, including the support and management of external assessor activities related to certifications and customer contractual requirements.

    Research and contribute to information security polices and standards, with the objective of continually maturing operations, while meeting regulatory and compliance obligations.

    Participate in security investigations and compliance reviews, as required by contract or regulation.
    Identify and recommend cost effective improvements to security practices while maintaining compliance to required standards and regulations.

    Use the GRC tool to create and manage continuous monitoring indicators, build reporting dashboards, document electronic work papers, and manage audit documentation.

    Identify risk issues and work in collaboration with other teams across the enterprise to remediate.

    Other knowledge, skills, and abilities Maintain an ability to be flexible with others, to display tact and diplomacy, and to maintain a high degree of confidentiality and integrity.

    Strong time management skills (schedules, prioritization).
    Excellent communication, analysis, and process flow skills.
    Ability to be flexible, display tact and diplomacy, and maintain confidentiality and integrity.
    Must have the ability to work with little supervision, escalating issues, as appropriate.
    Perform other duties, as assigned.
    Travel as business requirements dictate at management discretion.

    Qualifications Bachelor's degree in Business, IT, Computer Science, Project Management or related field5-8+ years of functional experience in project management, management consulting, IT, audit/compliance or related field.

    Experience in a regulated (pharmaceutical, banking, insurance, government) industry (may be concurrent with the above functional experience).

    Understanding of regulatory standards (ex:
    IRAP, PMDA, PCI, NIST
    Knowledge and experience with best practices/standards (ex: COBIT, GAMP5, ISO 27000 or

    Must be an Australian citizen Successful applicants will be required to complete a background check (including criminal history check) prior to commencement of employment.

    Nice to Haves Use and/or implementation of a GRC tool (ex: Service Now, Archer, Teammate, Thompson Reuters)

    Management consulting experience Experience with Service Now issue management ticketing system Auditor or security certification (ex:
    CISA, IIA, CISSP) and/or training SAS software implementation experience or IT hosting experience Diverse and Inclusive At SAS, it's not about fitting into our culture – it's about adding to it.
    We believe our people make the difference.

    Our diverse workforce brings together unique talents and inspires teams to create amazing software that reflects the diversity of our users and customers.

    Our commitment to diversity is a priority to our leadership, all the way up to the top; and it's essential to who we are.


    To put it plainly:
    you are welcome here.
    Resumes may be considered in the order they are received.
    SAS employees performing certain job functions may require access to technology or software subject to export or import regulations.
    To comply with these regulations, SAS may obtain nationality or citizenship information from applicants for employment.

    SAS collects this information solely for trade law compliance purposes and does not use it to discriminate unfairly in the hiring process.

    SAS only sends emails from verified "" email addresses and never asks for sensitive, personal information or money.
    If you have any doubts about the authenticity of any type of communication from, or on behalf of SAS, please contact

    Explore more Info Sec / Cybersecurity career opportunities Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.

    #J-18808-Ljbffr
  • Employ

    Risk and Compliance Officer

    6 days ago

    Employ Sydney, Australia

    3 years Risk or Compliance Experience required · - Big four banking Assurance and Compliance, Risk Frameworks lines 1,2,3 · - Reporting to the head of Risk and Compliance · - Managed Risk in line 1,2,3 and managed risk frameworks and controls · - Attend senior Stake holder meetin ...

  • Cuscal

    Risk & Compliance Manager

    1 week ago

    Cuscal Sydney, Australia

    Payment systems are complex, regulated and everchanging. We are an established market leading brand who are focused on driving client growth. We're at the forefront of innovation punching above our weight. We're enabling the future for our clients through technology like the New ...

  • IOOF Holdings

    Risk and Compliance Manager

    1 week ago

    IOOF Holdings Sydney, Australia

    **Date**:10-May-2023**Location**:Sydney, NSW, AU, 2000**Employment Type**:Permanent Full Time- Opportunity to join our high performing Enterprise Risk and Compliance division · - Permanent full-time role · - Sydney or Melbourne location · **The difference you will make at Insigni ...

  • FutureYou

    Risk and Compliance Officer

    1 day ago

    FutureYou Sydney, Australia

    Job details · Posted · 22 February 2024 · Salary · Base + Super · Location · Sydney · Job type · Permanent · Discipline · Legal, Risk & Compliance · Reference · BH-15019 · Job description · Risk and Compliance Officer · Brilliant organisation that is driven by purpose and values ...

  • Commonwealth Bank

    Risk and Compliance Manager

    2 days ago

    Commonwealth Bank Sydney, Australia

    **See yourself in the team**: · The **Chief Operations Office **(COO) is the engine room of the CBA Group dedicated to operating and enhancing the processes that deliver products and services to our customers. · The **Chief Controls Office (CCO) **is a first line of defence funct ...

  • Clayton Utz

    Risk & Compliance Advisor

    2 days ago

    Clayton Utz Sydney, Australia

    Join our Risk Management team and become a pivotal part of the firm's risk management strategy. We are seeking an experienced and proactive National Risk and Compliance Adviser to drive risk awareness and ensure compliance across our national operations. · The Role · This dynamic ...

  • Burgess Paluch

    Compliance & Risk Manager

    2 days ago

    Burgess Paluch Sydney, Australia

    Career enhancing opportunity · - Work/life balance · - Energetic, team based culture · **Business** · Career enhancing opportunity for a · **Compliance & Risk Manager to join highly profitable professional services business in this senior role.** The culture is hugely collaborati ...

  • Symbion

    Risk and Compliance Coordinator

    3 days ago

    Symbion Sydney, Australia

    **Job no.**: 494467 · **Work type**: Full Time Permanent · This newly created role will see you contribute to the Workplace Health and Safety (WHS) practices across the National business. · **Summary**: · - Newly created opportunity to contribute to the WHS practices · - Full Tim ...

  • Morgan McKinley

    Risk and Compliance Manager

    2 days ago

    Morgan McKinley Sydney Central Business District, Australia

    About The Role: · - Working with the broader Risk & Compliance team to transform end-to-end control framework and environment to meet new CPS 230 requirements. · - Supporting the Group and Corporate team in designing and embedding a fit for purpose group wide risk and compliance ...

  • IAG New Zealand

    Risk & Compliance Lead

    6 days ago

    IAG New Zealand Sydney, Australia

    READY FOR ANYTHING · At IAG, we live and work by our purpose to make your world a safer place. We are motivated by a unique culture that celebrates honesty, creativity, empathy, equity and collaboration. We call it the IAG way, and it means we all share a 'ready for anything' min ...

  • Class Super

    Risk & Compliance Manager

    1 week ago

    Class Super Sydney, Australia

    HUB24 leads the wealth industry as the best provider of integrated platform, technology and data solutions. At HUB24, we know the smartest investments start with our people. We are innovative and ambitious, and we move fast. · At HUB24, we empower our employees to bring their ide ...

  • TMGM

    Compliance and Risk Officer

    1 day ago

    TMGM Sydney, Australia

    The Compliance and Risk Officer works under the direction of the Chief Compliance Officer in collaboration with staff members in other departments. The Compliance and Risk Officer is responsible for coordinating and overseeing all risk management activities and providing guidance ...

  • Bluefin Resources

    Risk and Compliance Manager

    1 day ago

    Bluefin Resources Sydney, Australia

    **Overview** · As an SME in Operational Risk and Compliance for the Client and Technology division, focusing on Superannuation products. In this 1st line role, you will be providing risk, control and compliance advice and support on incidents, breaches and issues, as well as fost ...

  • KPR Solutions

    Risk & Compliance Coordinator

    1 week ago

    KPR Solutions Sydney, Australia

    Permanent Role · **Responsibilities include**: · - ensure all business induction & training policies are followed and implemented · - ensure all visitors, contractors and new employees, are included and fully understand our clients rules · - Ensuring high standards of Quality are ...

  • Zodia Custody

    Compliance & Risk Manager

    1 week ago

    Zodia Custody Sydney, Australia

    Compliance & Risk Manager · **Digital Asset Custody, globally, without compromise.** · Zodia Custody is a FCA, CBI and CSSF registered Virtual Asset Service Provider (VASP), offering Digital Asset Custody services to Institutional Investors. Zodia Custody is a Venture backed by S ...

  • The Royal Australian College of General Practitioners (RACGP)

    Risk & Compliance Administrator

    7 hours ago

    The Royal Australian College of General Practitioners (RACGP) Sydney, Australia

    Work with a high-profile Medical College · - $76,106 p.a. plus 14% Superannuation plus 17.5% annual leave loading · - Full time, permanent opportunity with flexible location and WFH options · **About the RACGP** · The Royal Australian College of General Practitioners (RACGP) is t ...

  • Playgroup NSW

    Risk and Compliance Officer

    6 days ago

    Playgroup NSW Sydney, Australia

    Risk and Compliance Officer · - Hybrid Role · - 37.5 hour week · - SCHADS Level 4 · **About us** · Playgroup NSW, a values-based community service organisation, supports and delivers a range of universally accessible, targeted and inclusive programs and services. Our vision is to ...

  • SAS

    Governance, Risk, Compliance

    7 hours ago

    SAS Sydney, Australia

    : · At SAS, where you start doesn't have to be where you end; and there is ample opportunity for internal career mobility. Whether you're looking to grow a new skill or experience a new role, there's no time like the present to take the next step; and we're here to support you in ...

  • IAG New Zealand

    Compliance and Risk Consultant

    6 days ago

    IAG New Zealand Sydney, Australia

    READY FOR ANYTHING · At IAG, we live and work by our purpose to make your world a safer place. We are motivated by a unique culture that celebrates honesty, creativity, empathy, equity and collaboration. We call it the IAG way, and it means we all share a 'ready for anything' min ...

  • NGS Super

    Risk and Compliance Manager

    7 hours ago

    NGS Super Sydney, Australia

    **Introduction**: · NGS Staff Benefits · Before you learn more about the job ad, we encourage you to familiarise yourself with our fantastic NGS Staff Benefits page (link below) to understand our offering which includes Additional Leave Entitlements, Personal & Professional Devel ...