Specialist, Security Risk & Compliance

You’re agile, keen and open to meaningful work and opportunities that come your way.

You bring structure, mitigation and education to our organisation. Our records and datasets are vast and varied. This is your opportunity to safeguard critical infrastructure, order and protect sensitive data, and defend against emerging cyber threats. You'll be part of an expert team who protect against thousands of threats every day.
 

In this role, you'll:

• Lead the integration of cybersecurity into the Sydney Trains Enterprise Risk Management framework. You’ll lead risk assessments and compliance programs, to identify and evaluate risks and guide action to mitigate threats, vulnerabilities and controls and ensure compliance programs meet regulatory, legislative, and policy obligations.
• Lead and promote cybersecurity risk management standards, strategies, practices, and procedures, deliver strategic risk mitigation recommendations, monitor risk management posture and create reports to provide actionable insights for continuous improvement. 
• Manage the CSMS and cybersecurity risk frameworks and lead the creation of incident response plans and exercises to improve readiness for cyber events as well as provide expert advice on cyber risk and compliance, addressing operational issues, initiatives, and inquiries.

Join us in safeguarding critical transport infrastructure, strengthening its cybersecurity resilience, and navigating the complexities of operational technology (OT) security. You’ll have the opportunity to influence cybersecurity strategy and governance to protect and enhance the systems that keep NSW moving.

For more information on this position and business unit, view the role description and information pack.
 

About you

• Demonstrated experience in enterprise risk or compliance management to lead risk assessments, compliance programs and risk management activities, ideally within an operational technology (OT) environment. 
• Extensive experience in identifying, qualifying, quantifying, rating and mitigating risk in complex technical environments with knowledge of industry standards, frameworks and best practices such as ISO27001, ISA/IEC 62443 Cybersecurity Risk Assessment Specialist certification, NIST, NSW CSP, ASD Essential 8 and ISM.  
• You’re recognised for your ability to communicate and engage with key stakeholders and have experience in delivering both technical and executive level artefacts. 

This is a Designated Security Assessed Position and will require the successful applicant to hold Australian citizenship and to obtain and maintain a NV1 security clearance. 

Who we are

Transport for NSW provides a safe, integrated, and efficient transport system. We connect people, communities and industry every day.

At Sydney Trains, our rail services keep Sydney moving by putting our customers at the centre of everything we do. We work with our local communities to deliver safe, timely and efficient rail services 24 hours a day, seven days a week.

Our trains and network are evolving to meet the needs of our customers now and well into the future. We’re continuing to integrate technological innovations that help us deliver a smarter and more sustainable network.

Join us
 

Our workforce is as diverse as the community we serve. If you’d like further information on our inclusion and diversity initiatives, visit Transport careers.

We offer a wide range of employee benefits, like our award-winning flexible and hybrid work options.

This role is hybrid-friendly, meaning you can mix in-person days at your team’s home base location with remote days. 

What are you waiting for…? Connect with us.  Apply now!

Applications close: 11:59 pm Sunday 30th March 2025.

For more information about this role, please contact RENEE.CAMPBELL@TRANSPORT.NSW.GOV.AU.

Aboriginal people and people living with disability are supported throughout the recruitment process and at work, and we encourage you to apply. Visit Supporting Aboriginal people or Supporting people with disability for more info or speak to your

talent team member to arrange any adjustments to how you interact with us. 

Need some help with your application? Take a look at our application tips video series.

#LI-Hybrid

#tccsj