Transurban Logo

Transurban

Cyber Compliance and Assurance Lead

Posted 8 Days Ago
Be an Early Applicant
In-Office
Melbourne, Victoria
Senior level
In-Office
Melbourne, Victoria
Senior level
Lead the implementation and maintenance of the ISO 27001 ISMS, conduct audits, manage cyber risk compliance, and develop security policies.
The summary above was generated by AI

Working at Transurban is different; it’s a place where you can see the benefits of your work play out in real life, every day. We create city‑sized solutions—building and operating safer, smarter, and more sustainable roads—to solve pressing transport challenges that are slowing cities down.

About the role

We’re seeking a Cyber Compliance & Assurance Lead to drive the implementation, maintenance, and continuous improvement of our ISO 27001 Information Security Management System (ISMS). This role is central to strengthening Transurban’s cyber governance, ensuring our security practices align with business obligations, regulatory requirements, and enterprise risk appetite.

You’ll have the autonomy to shape our assurance vision, modernise governance practices, uplift cyber maturity, and influence strategic decision‑making across a major ASX‑listed organisation.

Day‑to‑day, you will:

  • Lead Transurban’s ISO 27001 certification journey and ongoing ISMS uplift

  • Conduct internal audits, assessments, and periodic reviews across technology and business environments

  • Manage the cyber risk and compliance lifecycle, ensuring accurate registers, timely escalation, and alignment to the Enterprise Risk Management Framework

  • Translate regulatory and industry requirements (ISO 27001, NIST CSF, PCI DSS) into actionable control objectives

  • Support third‑party risk assurance by assessing critical vendors and validating controls

  • Develop and uplift cyber security policies, standards, and procedures across IT and OT

  • Operate an enterprise control assurance framework that tests control effectiveness—not just existence

  • Produce audit‑ready evidence and track remediation actions to closure

  • Build unified cyber metrics and dashboards that provide meaningful insights to senior leadership

  • Create targeted security awareness content aligned to ISMS principles and uplift cyber culture across the organisation

This role will suit someone with a curious mind and transferrable skills, including:

  • Strong leadership in cyber or technology risk management

  • Proven experience implementing and operating ISO 27001 ISMS at scale

  • Expertise in cyber control assurance and third‑party risk management

  • Deep understanding of GRC practices, control design, and industry frameworks (ISO 27001, NIST CSF, PCI DSS, Essential 8)

  • Ability to influence technical and executive stakeholders with clear, risk‑based insights

  • Experience engaging auditors and managing complex compliance obligations

  • Strong communication skills and executive presence

  • High resilience, adaptability, and ownership in a dynamic environment

  • Relevant certifications such as ISO 27001 Lead Implementer/Auditor, CISSP, CISM, or CISA (highly desirable)

If you meet some of these requirements, but not all, we encourage you to submit your application. 

With a career at Transurban, you’ll enjoy a range of benefits, including:

  • Flexible working and leave options, including the ability to purchase additional leave

  • 16 weeks paid parental leave for all parents, with superannuation paid during unpaid leave

  • Learning and development opportunities to support your career growth

  • Health and wellbeing support, including access to Headspace, EAP, and wellness facilities

  • Share offers and insurance benefits

  • Social activities, community programs, and paid volunteer days

We offer flexibility so you can balance work and life commitments. Let’s talk about what that could look like for you.

We embrace diversity with a foundation of safety, wellbeing, and inclusion—where everyone belongs.

We welcome applicants from all backgrounds, including Aboriginal and Torres Strait Islander peoples and people living with disability.

If you require adjustments during the recruitment process, please contact us at [email protected].

Job Type:

Permanent

Closing Date:

27-Feb-2026 0:00

Please note: The closing date reflects the time zone of the Primary Location for this job posting.

Primary Location:

Melbourne CBD & Inner Suburbs Melbourne VIC

Top Skills

Essential 8
Iso 27001
Nist Csf
Pci Dss
HQ

Transurban Melbourne, Victoria, AUS Office

Tower 5, 727 Collins Street, Melbourne, Victoria, Australia, 3008

Similar Jobs

9 Hours Ago
Remote or Hybrid
2 Locations
Senior level
Senior level
Artificial Intelligence • Cloud • Sales • Security • Software • Cybersecurity • Data Privacy
The Engagement Manager will manage customer engagements, oversee project management duties, maintain client relationships, and mentor team members for growth. Responsibilities include tactical project management, client communication, and revenue opportunity identification.
Top Skills: SaaSSoftware
11 Hours Ago
Remote or Hybrid
2 Locations
Junior
Junior
Cloud • Computer Vision • Information Technology • Sales • Security • Cybersecurity
Responsible for deploying and demonstrating CrowdStrike's cybersecurity platform to prospective customers, creating technical evaluations, and providing ongoing support during the sales process.
Top Skills: Anti-Virus SolutionsComputer ForensicsCrowdstrike FalconCybersecurityIncident ResponseMalware AnalysisNetwork Administration
13 Hours Ago
In-Office
Melbourne, Victoria, AUS
Junior
Junior
Blockchain • eCommerce • Fintech • Payments • Software • Financial Services • Cryptocurrency
As a Customer Success Analyst, you will support strategic initiatives by analyzing operations, representing customer needs, and driving improvements across cross-functional teams to enhance customer retention and satisfaction.

What you need to know about the Melbourne Tech Scene

Home to 650 biotech companies, 10 major research institutes and nine universities, Melbourne is among one of the top cities for biotech. In fact, some of the greatest medical advancements were conceptualized and developed here, including Symex Lab's "lab-on-a-chip" solution that monitors hormones to predict ovulation for conception, and Denteric's vaccine for periodontal gum disease. Yet, the thousands of people working in the city's healthtech sector are just getting started, to say nothing of the tech advancements across all other sectors.

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account