Junior Cyber Security Officer

About us
We are Protecht - a fast growth Governance, Risk &
Compliance (GRC) SaaS business. We provide world-class enterprise risk management, compliance, training, and advisory services to over 350 customers across various industry sectors through our offices across APAC, USA &
Europe.
Our Purpose
Through our people, we enable smarter risk taking by our customers to drive their resilience and sustainable success.
We use our passion and thought leadership in risk management to build and develop the best products, training, and support to help customers on their risk management journey.
Why join us?
At Protecht, a positive and super friendly culture awaits you, where learning is valued and supported. We empower our people through leadership, training, knowledge-sharing, and mentorship. Here are some of the perks of working with Protecht:

• A highly flexible culture - our way of working lets people work across home and our offices.
• A strong commitment to your learning and development - fortnightly dedicated L&
  D afternoons
• Reward &
  Recognition programs.
• A strong focus on work / life balance with access to Birthday leave, bonus days, paid parental leave and long service leave.
• Monthly social events
• Competitive remuneration and Annual Performance Bonus
• Generous Employee Referral program

About the role!
The Junior Cyber Security Officer role is responsible for protecting the confidentiality, integrity and availability of our SaaS applications, customer data and internal information assets.
There will be a strong focus on:

• The maintenance of existing security certifications which include IRAP, SOC2 and ISO 27001
• Creating content for and responding to security-related Request for Proposals (RFPs).

Here are some of your key responsibilities:

• Maintain Protecht's current security certifications (ISO 27001, SOC2 and IRAP).
• Help implement technical requirements for the certification and accreditation of security systems.
• Help mature security controls against industry benchmarks (CIS, NIST, Essential8 etc).
• Understand and document Security requirements in alignment with current industry best practices.
• Identify gaps and risks and provide advice on security governance.
• Develop, maintain, and implement information security policies and procedures to manage risks.
• Ensure company compliance with the Information Security policies and procedures.
• Support and/or undertake internal cyber security assessments and audits.
• Support sales teams with RFP/RFI queries specific to Security.
• Draft, edit, and finalize detailed and accurate responses to security RFP questions, ensuring compliance with industry standards and company policies.
• Maintain and update a repository of standard security responses and documentation for future RFPs.
• Acts as a technical resource for security assessment and regulatory compliance.
• Evaluating IT risks focused on cyber security.

Are you the one?
You'll be a great fit if you have:

• A degree / diploma in relevant field
• 1-2 years of demonstrated IT Security experience
• Passion for security and a strong desire for career growth in cyber security
• Familiarity with Information Security frameworks/standards (i.E. SOC2/AICPA, CIS, NIST, ISO27001, Government ISM/IRAP etc).
• Excellent written and verbal communication skills, with the ability to convey complex security concepts in a clear and concise manner.
• Knowledge of modern cyber security concepts, threats, tools and techniques
• Ability to respond and satisfy customer RFP queries regarding security
• The ability to work with Agile/Scrum teams, with minimal supervision)

Nice to have:

• One or more industry qualifications related to the security governance field is a plus
  • CISSP, CISM, CISA, SSCP, CRISC, GIAC, CGEIT
• Understanding of security audits
• Understanding of Government ISM/IRAP
• Understanding of ISO 27001
• Understanding of SOC2
• Experience or understanding of Cloud/AWS environments.
• Familiarity with privacy regulations (Australian privacy principles, GDPR).
• Proficiency in Microsoft Office and familiarity with RFP management tools (e.G., RFPIO) is a plus

To be eligible for this role, you must have current Australian work rights (Australian citizen / permanent resident).
Visit our to find out a little more about working with us.