Governance, Risk and Compliance

About the job Governance, Risk and Compliance (GRC) Consultant

**Governance, Risk and Compliance (GRC) Consultant**

** We Are Fujitsu**

We use technology to make happier lives. We are a global leader in technology and business solutions that transform organizations and the world around us. We have a long heritage of bringing innovation and expertise, continuously working to contribute to the growth of society and our customers.

** About the Role**

We are looking for a Governance, Risk and Compliance (GRC) Consultant to join our team and partner with a highly skilled team to provide real-time security advice and guidance to uplift our clients cyber posture.

You will help our clients:

- Develop and embed cyber security policy in alignment with industry frameworks and standards e.g. ISM, PSPF, Essential 8, NIST, ISO27001 / 27002, etc.
- Undertake compliance assessments in alignment with policy and industry standards,
- To quantify, understand, and manage security risks,
- Uplift the cyber security stance and protect their systems,
- Develop meaningful risk reporting.
- Assist client with the security authorisation of their systems

Location could be flexible across Wellington/ Auckland/Christchurch. This role offers hybrid working.

** Responsibilities**:
With mínimal oversight:
Authoring security policy, process improvement, and security documentation artifacts,

Undertaking compliance assessments against whole-of-government and industry standards,

Creating threat models that reflect the unique context of an organization and its in scope systems,

Undertake risk assessments,

Assisting with the uplift of cyber security posture and awareness to protect their systems and data.

Collaborating with internal teams to ensure the understanding of security risks and proposing fit-for-purpose

mitigations,

Supporting the automation of collection and collation services for cyber reporting across multiple sources.

Leading or supporting the team to deliver outcomes within scope, on time, on budget and to expected

standards

Manage your own workload to ensure client and company timelines are met.

Consistently use the quality assurance process to deliver client results

Other duties as required

** Mandatory Skills**:
**Cyber Security Frameworks & Compliance**
- Strong understanding of ISM, PSPF, Essential 8, NIST, ISO 27001/27002, and other relevant standards.
- Experience conducting compliance assessments and security audits.
- Ability to develop and embed cyber security policies aligned with industry best practices**.**

** Risk Management & Threat Modelling**
- Expertise in assessing, quantifying, and managing security risks.
- Proficiency in threat modeling tailored to organizational security needs.
- Capability to provide meaningful risk reporting and recommendations.

** Security Documentation & Policy Development**
- Experience in authoring security policies, process improvement plans, and security documentation.
- Ability to create clear and actionable security guidelines for organizations.

** Cybersecurity Posture & Awareness**
- Proven ability to uplift an organizations security stance.
- Skilled in training and improving security awareness across teams.
- Technical Knowledge & Compliance Reporting
- Strong understanding of security authorization processes for systems.
- Experience in automating cyber reporting across multiple sources.

** Required skills**
- Ability to work independently and with mínimal oversight.
- Strong communication skills to collaborate with teams and stakeholders.
- Critical thinking to assess security gaps and propose solutions.

** Why Fujitsu?**

We are an organization with a strong set of values and a history of respecting fairness and equality, whilst promoting diversity, equity, and inclusion. We constantly push ourselves to do better and strive to bring together a diverse mix of perspectives and talents in an inclusive environment, where we encourage our people to bring their full selves to work. We call this Be Completely You.
- **We put people first. We believe in the power of diversity to drive innovation and our AWEI (Australian Workplace Equality Index) Gold Employer status, and Rainbow Tick certification for LGBTI+ inclusion show that we value an inclusive culture.**
- **We offer tailored career paths across our global organization to support your professional and personal growth.**
- **Our customers trust us. We have an excellent reputation across the region and globally.**
- **Best in-class reward and recognition programs flexible work, volunteering leave, and more.**
- **We live our values of aspiration, trust, and empathy, all day, every day.**

** Commitment to Diversity, Equity and Inclusion**

** Search Firm Representatives PLEASE READ**: