Cyber Security GRC Analyst

ivering a leading-edge capability for the environments our deployed military personnel rely on. This role offers the chance to apply your broad experience in a supportive team environment, explore new technologies in the cyber security space, and engage with highly skilled peers, partners, and military personnel.

As a Cyber Security GRC Analyst, you will provide cyber security subject matter expertise and guidance to stakeholders and the broader team. Your work will focus on the integration of governance, risk, and compliance (GRC) across various systems. This is a diverse role with broad scope that offers the opportunity to apply and further develop your skills while contributing to national security.

Key Responsibilities

• Evaluate the effectiveness of security controls against the ISM, Essential Eight, Cyberworthiness, NIST, other approved frameworks, and standard designs.

• Conduct security, gap, and compliance audits, providing detailed reporting and documentation.

• Maintain, verify, and update accreditation documentation and compliance artefacts, including risk assessments and reports.

• Apply cyber security governance, risk, and compliance principles and frameworks in day-to-day practice.

• Prepare and manage compliance documentation such as risk registers, security plans, audit results, and ensure accurate recordkeeping.

Qualifications & Experience

Alongside relevant education and/or practical experience, you will be a collaborative, outcomes-focused individual who is committed to meeting customer needs. You will bring:

• Over 5 years' experience in Cyber Security GRC, audit, risk, or compliance roles; experience working in Defence settings is highly regarded.

• Demonstrated ability to produce high-quality security assessment documentation and manage compliance activities.

• Sound knowledge of risk management frameworks such as ISO 31000, FAIR, OCTAVE, and the NIST RMF.

• Industry-recognised certifications such as CRISC, CISM, CISA, CISSP, ISO 27001 or equivalent.

• Strong communication and stakeholder engagement skills, with high attention to detail and well-developed organisational abilities.

This role does require the successful applicant to be an Australian Citizen and hold a NV-2 level security clearance.

Diverse Team Members, Shared Values and a Common Purpose

Providing our customers with smarter solutions takes an incredible team with diversity of thought, experience and perspectives driving innovation. Inclusion is at the heart of our culture and is one of our core values. It's about creating a workplace where everyone can do important work, feels welcome, valued, and respected, and has equal access to opportunities to thrive. Paul Chase - Chief Executive, Leidos Australia.

Leidos Australia is an equal opportunities organisation and is committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islanders, culturally and linguistically diverse people, people with disabilities, veterans, neurodiverse people, and people of all genders, sexualities, and age groups.

Our five Advocacy Groups (Women and Allies Network, Young Professionals, Defence & Emergency Services, Action for Accessibility and Abilities and Pride+) provide an opportunity for team members to connect and collaborate on shared interests, and work to support and celebrate our diverse community.

Next Steps

• To apply for this role, follow the links or apply via our Careers page.

• Recruitment process - virtual / face to face interview & background checks.

• Applicants may also need to meet International Traffic in Arms Regulations (ITAR) requirements. In certain circumstances this can place limitations on persons who hold dual nationality, permanent residency or are former nationals of certain countries as per ITAR 126.1.

• We are committed to making our recruitment process accessible to all candidates. Please contact our Careers team [email protected] if you'd like to discuss any additional support during your application or throughout the recruitment process.

Original Posting:

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.