Please beware of recruitment scams that are currently targeting jobseekers. Click here for further advice.
- Posted 05 December 2025
- SalaryNegotiable
- LocationNorth Sydney
- Job type Permanent
- DisciplineTechnology & Transformation
- Reference555274_1764890789
Back to jobs
Information Security Analyst
Job description
Information Security Analyst
Start Date: 5th January 2026
Level: Mid-Senior
Position: Permanent
As an experienced Information Security Analyst, you'll be joining a growing organisation that has full board and C-suite backing for cyber initiatives. This is a chance to embed cybersecurity into day-to-day business operations and help shape a strategic, long-lasting security culture.
You'll have the autonomy to build things properly, contribute to team strategy sessions, and grow both professionally and personally. The company is maturing its cyber posture, uplifting standards, and standardising processes and your work will directly influence how the business realises cyber benefits while still moving fast.
Responsibilities Include:
* Contribute across GRC, documentation, risk, stakeholder management, and process improvement.
* Coordinate cyber initiatives and small projects, working closely with mid-management and business stakeholders.
* Work autonomously and able to take action, follow processes, and drive outcomes with minimal oversight.
* Articulate board-level decisions in clear, simple language for operational teams.
* Lead and organise both GRC and basic technical audits
* Support SecOps activities when needed
* Drive security awareness initiatives and manage the awareness platform.
* Contribute to uplift programs and standardisation of IT/cyber processes.
* Small travel requirement to other offices nationally
Experience Required:
* Approx. 5 years of cybersecurity experience, ideally with 3-5 years in GRC.
* Strong understanding of cybersecurity fundamentals and common frameworks.
* Ability to work autonomously, think through problems, and execute standard processes with discipline.
* Background in IT administration (Microsoft environment preferred) e.g., early career IT admin who moved into cyber/analyst roles.
* Comfortable with basic scripting and hands-on troubleshooting when needed.
* Cybersecurity degree is beneficial but not mandatory.
If you are interested in making a real impact on cyber initiatives in a growing company - please get in touch for more details!