Senior Analyst, Cyber Audit

Gridware is one of Australia’s leading cybersecurity firms. We help businesses stay ahead of threats with sharp thinking, tailored strategies, and technical excellence. Our work spans major industries and focuses on delivering solutions that are not just compliant but intelligent, scalable, and built to last.

The Role

We are looking for a Senior Analyst to deliver high quality cyber audit and governance work across a diverse client base. You will run audit workshops, assess controls, write clear and actionable reports, and support organisations through the implementation of standards like ISO 27001, NIST CSF and the Essential Eight. The role blends hands on technical verification with strong documentation, communication, and leadership qualities.

This role is ideal for someone who enjoys structured frameworks, client interaction, and helping organisations lift their security maturity in practical ways.

What You Will Do

• Lead and deliver cyber audit engagements across ISO 27001, NIST CSF and the Essential Eight
• Run audit and discovery workshops with executives, IT teams and business stakeholders
• Prepare clear, well structured audit reports, maturity assessments and recommendations
• Support vCISO engagements by contributing to roadmaps, plans and ongoing governance activities
• Assist clients with the implementation of ISO 27001 controls and related frameworks
• Participate in tabletop exercises and help clients strengthen incident response capability
• Work across a mixture of hands on validation and documentation based activities
• Present findings to clients in workshops, steering committees or board level forums
• Contribute to internal methodology, templates and continuous improvement
• Collaborate with consultants across GRC and technical teams to ensure consistent delivery quality

What We Are Looking For

• At least 3 years of experience in cybersecurity, cyber audit, governance or GRC consulting
• Strong knowledge of ISO 27001, NIST CSF, Essential Eight and risk management principles
• Experience running workshops and presenting findings in a client facing environment
• Strong written communication and the ability to produce high quality documentation
• Ability to work independently and manage deliverables from discovery through to reporting
• Practical mindset with the ability to balance best practice and real world constraints
• A desire to grow into more responsibility including vCISO style work

Nice to Have

• Microsoft 365 security and compliance admin experience
• ISO 27001 Lead Auditor or Implementer certification
• Experience in tabletop facilitation
• Exposure to regulated sectors such as financial services, health or critical infrastructure
• CISSP, CISM or similar qualifications

Why Join Gridware

• Join Australia’s Top 5 Best Places to Work in Tech in both 2024 and 2025
• Work with one of Australia’s leading cybersecurity firms supporting major organisations
• Remote first culture within a supportive and high performing team