Compliance Assessor

We’ve only just begun, but what a beginning. In a once in a generation moment, we’ve brought together powerful brands to create one united force. TPG Telecom has a powerhouse of brands which include Vodafone, TPG, iiNet, Internode, Lebara, AAPT and felix. The latest technology and brave thinking let us connect our people and communities. You could play a role in that. A big one. We invite you to bring your boldness and stand out. You are empowered. Opportunities are plenty for those ready to accept the challenge.

This opportunity

Your role and responsibilities will revolve around ensuring adherence to industry standards, regulatory and legislative requirements and internal policies related to information security. You will play a pivotal role in evaluating and enhancing our security practices, collaborating closely with the Senior Compliance Manager, IT teams, Legal & Privacy team, Enterprise Risk, and other identified stakeholders.

Your primary focus will be on conducting audits, monitoring compliance, and identifying areas of improvement. By assessing our security controls, identifying gaps, and providing recommendations, you will contribute to strengthening our overall compliance posture and protecting data customers. Your efforts will also play a crucial role in demonstrating compliance to clients, stakeholders, and regulatory bodies.

You will generally assist with other Compliance activities as agreed with your line manager.

Responsibilities

• Perform comprehensive assessments and audits of organisational processes, procedures, maturity and practices to ensure compliance with applicable regulations, standards, and internal policies.
• Evaluate documentation, conducting interviews, and analysing data to identify areas of non-compliance or potential risks.
• Identify gaps or deficiencies in the compliance framework and practices.
• Review current processes with regulatory requirements, industry standards, and best practices to determine areas for improvement and develop actionable recommendations.
• Collaborate with stakeholders and relevant teams to develop strategies for addressing compliance gaps and improving overall compliance posture.
• Offer guidance and support to employees and stakeholders on compliance matters.
• Prepare detailed reports and documentation summarising compliance assessment findings, including identified issues, recommendations, and action plans.
• Maintain accurate records of assessments, remediation activities, and compliance-related communication for future reference and reporting purposes.

Key Tasks

• Prepare the organisation for audits, including facilitating necessary documentation and evidence gathering.
• Stay updated on relevant regulations and standards and assess their impact on the organisation's compliance requirements.
• Develop and implement policies, procedures, and controls to address compliance gaps and mitigate cybersecurity risks.
• Collaborate with stakeholders to communicate and reinforce compliance requirements throughout the organization.
• Identify vulnerabilities, gaps, and non-compliance issues and recommend remediation actions.
• Develop and implement monitoring mechanisms to track compliance progress and ensure ongoing adherence to requirements.
• Prepare reports and presentations on compliance status, findings, and recommendations for senior management and relevant stakeholders.
• Establish and maintain a repository of compliance-related documentation, including policies, procedures, and records of compliance activities.
• Ensure compliance documentation is up-to-date, accessible, and readily available for internal and external audits or inspections.
• Advise and guide internal teams on compliance requirements, ensuring they understand and adhere to cybersecurity regulations, standards, and policies.
• Collaborate with IT teams, legal departments, and other stakeholders to develop and implement controls, safeguards, and best practices to address compliance gaps.
• Stay updated on cybersecurity regulations and industry standards:
• Continuously monitor changes in cybersecurity regulations, industry standards, and best practices.
• Stay informed about emerging trends and technologies that impact compliance requirements.
• Coordinate and manage external audits or regulatory inspections related to cybersecurity compliance.

Knowledge and experience

• Knowledge of cybersecurity laws, regulations, and industry standards
• Certification in ISO 27001 Auditor or Lead Auditor.
• Desirable understanding of compliance frameworks and methodologies, including the ability to interpret and apply regulatory requirements to organizational policies and procedures.
• Familiarity with cybersecurity risk management principles and practices

Similar roles that you might already have

• Internal Auditor
• Environmental Compliance
• Risk and compliance officer, specialist, or manager
• IT Auditor
• Quality Assurance Auditor

About You:   

Your experience as an Compliance Assessor will be highly valued. We need a keen eye for detail, an ability to understand complex IT systems, and a talent for simplifying complexities. Most importantly, we seek someone excited about their role, friendly, empathetic and ready to collaborate with various internal teams

 Benefits and perks

• Flexible hybrid way of working (from home and office)
• ‘Stay Connected Mobile’ – Access to a free mobile plan
• ‘Stay Connected NBN’ – Access to a free NBN 100 plan
• ‘Your Leave’ - an additional 4 days of leave to be used whenever you like - every year
• Access to TPG Learning Hub platform and internal development opportunities
• Access to Corporate Partner Discounts

Bolder and better together! 

Don’t meet every single requirement? We're ok with that. Studies have shown that women and those of underrepresented groups are less likely to apply for roles unless they meet every single criteria. At TPG Telecom we recognise that what may make you different, makes the difference!

We’re all about enabling every individual to be their authentic selves and creating a place where everybody belongs. If you are excited about this role, but your experience doesn’t align perfectly with every qualification in the job description, we encourage you to APPLY NOW regardless. You may just be the right candidate for this or perhaps another similar role with us.

We are a 2024 Circle Back Initiative Employer – we commit to respond to every applicant.

Our Talent Acquisition Team and Hiring Managers kindly request no unsolicited resumes or approaches from Recruitment Agencies. TPG Telecom is not responsible for any fees related to unsolicited resumes.

#LI-Hybrid #LI-TS1