GRC Specialist

Keen to get stuck into GRC consulting, with the added bonus of OT/ICS security exposure? Here's one that ticks both boxes, hands-on from day one.

• Experience or strong interest in OT security, ideally with exposure to IEC 62443
• Must be Brisbane-based with Australian PR or Citizenship.
• Hands-on role, take ownership and thrive in a supportive team.

What’s in it for you

• Salary: $90k - $140k base + super (depending on exp).
• Flexible hybrid setup (2-3 days in the office, Brisbane CBD).
• Paid training allowance + conference budget.
• 3 days volunteer leave each year.
• Salary packaging options (super, laptop, vehicle).
• Social club + team events, fresh fruit, coffee, and a weekly laundry service.
• Industry memberships covered (AISA, ISACA, OWASP).

What you’ll be doing

This is a permanent role with a consultancy that works across a mix of industries in QLD and nationally. You’ll be delivering governance, risk, and compliance (GRC) work to clients. Things like:

• ISO 27001 gap assessments, ISMS work, Essential Eight assessments.
• Policy, strategy, and roadmap development.
• Third-party/vendor risk, tabletop exercises, threat modelling.
• OT/ICS consulting exposure (IEC 62443) is a big bonus here.
• Supporting senior consultants on larger engagements, and taking the lead on smaller ones.

What you’ll bring

• Experience in GRC or security strategy work (any level considered).
• Understanding of frameworks like ISO 27001, NIST CSF, Essential Eight, ISM, PCI DSS.
• Good documentation and reporting skills (technical background a bonus).
• Ability to communicate risks and security concepts in plain English.
• Any OT/ICS/IEC 62443 experience or interest = huge win.
• You’ll need to be based in Queensland and able to spend a couple of days a week in the Brisbane office.
• You must have full Australian working rights (PR or citizenship).

Applying

If you’re interested, email me your updated CV, plus either a cover letter or a few dot points about how your experience lines up. A capability statement or example work is always a bonus. Happy to do a reference check upfront if you’ve got someone in mind.

When applying, please also include answers to the below:

• What is your target base salary (excluding super)?
• What is your current notice period?
• Do you have any upcoming holidays booked? (include dates)
• What is your Australian residency or visa status?
• Do you hold any active security clearance? (please specify)
• Where are you currently based? (City & State)

E: [email protected]

P: 0452 564 644

Decipher Bureau is committed to fair, unbiased recruitment. We don’t discriminate based on race, religion, gender, sexuality, age, or disability. We just care about finding the right person for the job.