Risk and Compliance Officer

About the position.

Why GoLogic?

Want to be part of the solution? GoLogic Group isn’t your run-of-the-mill business. We’re a tech company focussed on finding solutions that improve lives. We’ve been doing it for over two decades!

We hire driven and talented individuals that dream big, work hard, and appreciate a good challenge!

About the role:

The protection of internal and customer information is of high importance. This role is central to helping GoLogic maintain its information security objectives which in turn:

  • Helps to protect customer and employee information by complying with auditable international standards for information security practices
  • Helps to align GoLogic with information security priorities and requirements of current and future customers
  • Demonstrates that GoLogic is committed to ongoing improvements to information security processes and strategies
  • Demonstrates that GoLogic has policies and procedures for identifying and reducing information security risks

In this role, you will be:

1. Managing information security risk and maintaining relevant certifications by:

  • Organising and managing Information Security Group meetings, ensuring that the Group operates according to its policies and procedures and that actions are completed
  • Identifying and assessing areas of significant business risk; detecting potential issues and control gaps, maintaining an information security risk register and recommending/implementing solutions
  • Maintaining and achieving external certifications, including ISO27001 certification; managing internal audits and external assessments
  • Designing and delivering training on information security and raising awareness of good information security practices
  • Maintaining information security policies, keeping policies up to date and developing new policies
  • Being a key member of the response team in the event of information security incidents and breaches
  • Managing and reporting compliance breaches and exposures

2. Supporting the wider business by:

  • Responding to questionnaires and enquiries from clients and prospects on information security standards
  • Reviewing the information security practices of suppliers to the company and developing/performing information security due-diligence procedures on suppliers
  • Reviewing information security requirements of clients and, if required, attending calls/meetings with clients and their information security teams
  • Maintaining external documentation on information security practices to provide to clients and assist with tender responses
  • Supporting the business with business continuity and disaster recovery procedures
  • Assisting with the review of contracts, terms and conditions and other legal agreements
  • Reviewing marketing and sales copy, scripts, and other collateral to ensure external-facing content is accurate and in line with compliance standards

This position reports to the Operations Manager with a moderate level of personal accountability.

Skills, knowledge and qualifications that will give you an edge:

  • 5 years+ related experience in information security, risk, compliance, or similar position
  • Bachelor's degree or equivalent in related field
  • Knowledge of security technologies (encryption, data protection, network intrusion prevention, host intrusion prevention, firewalls, privilege access, etc.)
  • Knowledge of enterprise IT security concerns and technologies, including but not limited to VPNs, network security, encryption, authentication, application-level network protocols, PKI, IPSec, Firewall, SSH, SSL, DES, LAN/WAN, and TCP/IP
  • Knowledge of security best practices with relation to applications, network and client setups
  • Experience with implementation and maintenance of IT Governance frameworks such as ISO 2700x, HIPAA, SOC 2 and ITIL
  • Experience with governance, compliance and audit within IT environments
  • Experience of risk management, including risk analysis, mitigation and monitoring

Benefits and perks

Some of the things that existing employee's love about GoLogic include:

  • Competitive salary
  • An enviable staff health benefits program that provides flexibility in covering approved costs of maintaining your health and wellbeing! (e.g. monthly massage, gym membership, and yoga classes, etc.)
  • Absolutely delicious gourmet lunches served daily by our corporate chef
  • An inhouse staff fitness and yoga studio
  • Awesome start-up culture within an established and stable business
  • An environment where you’ll be challenged to achieve and equipped with the tools to do so
  • Working in the centre of Maroochydore on Ocean Street in the beautiful Sunshine Coast, QLD!
  • Option to work from home each Friday
  • A talented team with an amazing workplace culture

In your cover letter, please provide context around your resume and how you will be able to meet the requirements of this role as described above.

All applications received on or before 17th January 2022 will be reviewed and candidate shortlisting will occur shortly after this time.

Employer questions

Your application should include answers to the following questions:

  • What's your expected annual base salary?
  • How many years' experience do you have as a Risk and Compliance Officer?
  • How much notice are you required to give your current employer?
  • What best describes your right to work in Australia?

Brand

GoLogic

Location

Maroochydore, Sunshine Coast

Employment Type

Full Time

Date created

January 4, 2022

Apply