Overview Provide objective assurance and advisory services on the effectiveness of cyber security controls, governance and risks Open to applicants based in Sydney or Melbourne, with 3 days a week of office attendance required per week Full time, permanent position We are Woolworths Group We are Woolworths Group. 200,000 bright minds, passionate hearts, and unique perspectives across Australia and New Zealand. Connected by a shared Purpose - 'to create better experiences together for a better tomorrow'. That Purpose fuels our ambition to explore new ideas, make brave commitments, and innovate better ways to meet the food and everyday needs of more than 24 million customers every week. If you're excited to turn today's blue-sky thinking into a better tomorrow for future generations, you'll find yourself supported and enriched in a dynamic, inclusive, and empowering workplace. With a culture of genuine care, a flexible approach to work, and opportunities across the group to grow your career and make a meaningful impact, the possibilities for what we can achieve together are endless. What you’ll do In the Senior Auditor - Cyber Security position, you’ll be serving as a cyber security assurance resource within the Internal Audit team, supporting the Senior Audit Manager and Audit Manager in the delivery of the annual audit plan and providing independent, objective assurance over the cyber security control environment and risk management processes. In this role, you’ll be an integral part of the Internal Audit (IA) function, and you’ll be the specialist in providing objective assurance and advisory services focused on the effectiveness of cyber security controls, risk management, and governance processes across the business. Key responsibilities of the role include: Support the development and delivery of the Rolling Audit Plan and Board Reporting. Efficiently plan and execute technology and cyber security audits, including testing controls and documenting findings. Prepare audit reports, provide objective, commercially sensible recommendations, and report to management and the Audit and Finance Committee (AFC). Manage multiple simultaneous audits, follow up on open issues, and oversee relationships with professional service suppliers. Proactively monitor industry trends, emerging threats, and strategic initiatives to support continuous operational improvements in Internal Audit. Build and maintain strong partnerships, representing Internal Audit and engaging effectively with various levels of management and Cyber Security Leadership. What You’ll Bring To succeed in this role, we are seeking for one of two profiles: The Technical Specialist: Experience in Cyber Security Operations, GRC, Vulnerability Management, or Security Engineering who wants to move into a strategic Assurance/Risk role, with no prior Audit experience required, OR The Audit Professional: Experienced IT/Cyber Auditor with a strong track record of digging deep into technical details rather than just process reviews. In further detail, you’ll need to demonstrate: Minimum 3 years in Security Operations OR Technology Audit Team. Working knowledge of NIST CSF, Essential Eight or similar is required. Curiosity over Checklist: A desire to ask "Why?" and "How does this actually work?" rather than just asking "Is there a policy for this?" Bridge-Building: The ability to be seen as a helpful partner to the Cyber team, not a policeman. Critical Thinking and Resilience: Ability to distinguish between a theoretical risk and a practical, immediate threat, whilst comfortable working in a changing environment and managing multiple stakeholders with different priorities. Relevant industry certifications (e.g., CISA, CISSP, CISM, OSCP, CEH, or cloud certifications) are highly regarded but not mandatory for candidates with strong practical experience. What you’ll experience We embrace diversity of thought and love to take on challenges with a pragmatic and innovative approach. Our culture thrives on mutual respect, care, curiosity, openness, and a proactive attitude. We continually seek ways to pair, collaborate, support, and learn from each other as a team! Team discounts across our range of Woolworths Group brands you know and love and a robust rewards program that celebrates and incentivises purpose-driven work A global business with endless career possibilities around every corner and across every discipline – with valuable exposure to a vast and exciting business network A progressive and flexible ‘work from anywhere' policy that gives you the opportunity to harmonise work, life and your wellbeing Parental Leave provisions and various leave types, including but not limited to Study Leave and Sports Representation Leave Everyone belongs at Woolworths Group Diversity, equity, inclusion, and belonging are key to realising our purpose of better together for a better tomorrow. We recognise the value our team’s diversity brings to our business, customers, and communities and that teams with diverse experiences and backgrounds enrich our group and are better able to innovate and solve problems. As one of the largest employers in Australia and New Zealand, we aim to create a truly inclusive workplace where everyone feels that they belong, can be their best selves, and reach their full potential. We encourage all candidates to apply; please let us know in your application if we can support you with any adjustments in the hiring process. See how we’re creating better experiences together, for a better tomorrow Discover more opportunities with Woolworths Group J-18808-Ljbffr
