Job Description :
Role - Sr. Manager Cyber GRC
Location - QLD - L2/12 Marine Parade, Southport
Hybrid - 3 days in office
What’s the role?
The Cybersecurity Compliance Manager for Cybersecurity Governance, Risk and Compliance (GRC) will have a strong understanding of cyber security control principles, privacy principles and a sound understanding of global regulatory and compliance requirements.
Reporting to the VP of Cybersecurity Governance, Risk and Compliance you will support, develop and maintain the News Corp Global Cyber Compliance Program, including the management, monitoring and reporting of cyber risks and issues, cyber security policy and compliance exceptions, support the review and implementation of standards, guidelines, and processes to ensure compliance is maintained and the organization’s obligations toward Cybersecurity risks are managed appropriately.
You will principally support business unit stakeholders for Cyber Security compliance requirements for NIST CSF, PCI DSS, HIPAA and support the Privacy team with regional Privacy compliance. You will develop and maintain performance indicators and dashboards that effectively track cybersecurity posture, NIST CSF, PCI-DSS and HIPAA compliance status.
In addition, you will support and align Cybersecurity GRC initiatives with business objectives, outcomes and support the communication of their value to executives and stakeholders. You will also support the implementation and review of cyber risk assessments and cyber control assurance by collaborating with both local and global team members. You will continually support the maturity of the Cybersecurity compliance management process collaborating with internal, external and business stakeholders.
Who are you?`
8+ years’ experience within Cyber Security or Technology Risk related fields and 8+ years experience with directly managing technology platforms systems and services.
Demonstrated experience in Cybersecurity governance, cyber risk and compliance in a dynamic and complex business environment.
Knowledge and experience with industry frameworks and standards such as NIST CSF, PCI-DSS, SOX IT General Controls and ISO 27001/2.
The candidate must understand key modern Cybersecurity technologies, access controls, encryption, vulnerability management and network security best practices.
Strong communication skills and the ability to work autonomously while managing multiple projects.
Mature analytical, problem-solving, and critical-thinking skills, with the ability to interpret complex regulations and translate them into actionable policies.
You have experience in crafting, reviewing, and maintaining cybersecurity policies, standards, and procedures. Experience in the analytical review of cyber security controls with a pragmatic viewpoint. Support the annual review and update of global policies and procedures related to GRC to ensure they remain current and effective.
You have the ability to engage and influence executives, technical SME teams, and industry peers, translating complex cyber risks and compliance obligations into business language.
You have experience and ability to develop and maintain performance indicators and dashboards that effectively track cybersecurity posture and compliance status.
Strong integrity, adaptability to evolving threats and regulations, and you have a proactive approach to continuous improvement in cybersecurity governance.
You have the experience and ability to support the Cyber Security Awareness Manager during awareness campaigns and can contribute to the ongoing development of the global cyber awareness program.
You can work independently with cross-functional teams to identify and mitigate risks while fostering a culture of compliance and risk awareness throughout the organization.
You stay up-to-date with industry trends, regulatory changes, and emerging risks. Recommend improvements to GRC processes and tools to enhance efficiency and effectiveness.
Preferred experience with GRC tools such as ProcessUnity, RSA Archer, Vanta or similar platforms.
What’s in it for you?
Collaborative environment.
Opportunity to innovate, challenge the norm and pioneer the way forward.
Variety of work where no two days are the same.
Exposure to global cyber security operations, teams and services.
Equal Opportunity Employer
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status or any other protected characteristic.
Reasonable Accommodation
We are committed to providing reasonable accommodation for qualified individuals with disabilities in our job application and/or interview process. If you need assistance or accommodation in completing your application or participating in an interview due to a disability, email us at humanresources@newscorp.com. Please put "Reasonable Accommodation" in the subject line and provide a brief description of the type of assistance you need. This inbox will not be monitored for application status updates.
Please refer to the privacy notice at the bottom of this page for submitting any data access, deletion, or other data subject rights requests, where permitted under your local laws and regulations.