IT Security Engineer AU IT On-site

What Were Looking ForMust‑Have Skills

• Strong experience implementing and maintaining security controls aligned to NIST CSF and COSO frameworks
• Proven background in IT Security Governance, Risk & Compliance (GRC) roles
• Hands‑on experience with risk management methodologies, including qualitative and quantitative risk assessments
• Experience supporting internal and external audits, including evidence collection and audit readiness
• Knowledge of SOX controls and Australian Privacy regulatory requirements
• Experience validating control effectiveness through testing, assessments, and remediation tracking
• Ability to translate compliance and regulatory requirements into practical technical controls
• Strong collaboration skills with Security, DevOps, and Engineering teams
• Comfortable working across cloud, infrastructure, and application environments
• Strong analytical and problem‑solving mindset with attention to detail
  
  

Nice‑to‑Haves

• Experience with GRC platforms and integrations
• Automation skills using scripting, APIs, or RPA for compliance evidence collection
• Familiarity with CIS benchmarks, system hardening, and secure configuration management
• Experience with vendor risk management, including questionnaires, SIGs, and due diligence
• Background in continuous monitoring, logging, identity, access, or vulnerability management
• Experience building dashboards and metrics for risk and compliance reporting
  
  

What Youll Do

As an IT Security Engineer - GRC, you will strengthen JBS Australias security posture by ensuring technology, processes, and controls align with regulatory requirements, industry standards, and security frameworks. You will combine analytical rigour with technical expertise to deliver scalable, audit‑ready security controls while driving continuous improvement.

Key ResponsibilitiesSecurity Controls & Compliance Engineering

• Implement and maintain security controls aligned to NIST CSF and COSO frameworks
• Translate security policies and regulatory requirements into measurable, actionable controls
• Validate control effectiveness through technical testing and monitoring
• Track remediation activities and ensure closure of identified gaps
  
  

Automation & Continuous Monitoring

• Automate compliance evidence collection using RPA, scripting, APIs, and GRC tool integrations
• Engineer continuous monitoring solutions covering logging, identity, access, configuration, and vulnerabilities
• Reduce manual compliance effort through scalable, repeatable automation
  
  

Audit, Risk & Vendor Management

• Support audit readiness by ensuring systems produce reliable, complete, and consistent evidence
• Perform risk assessments and control evaluations across technology environments
• Support vendor risk management activities including due diligence and security assessments
  
  

Collaboration & Secure‑by‑Design

• Work closely with Security, DevOps, and Engineering teams to embed secure‑by‑design practices
• Advise technical teams on secure configurations and compliance requirements
• Contribute to continuous improvement initiatives across security governance and operations
  
  

Why Join Us

• High‑impact role influencing enterprise‑wide security and compliance posture
• Opportunity to engineer automation‑driven, audit‑ready security solutions
• Exposure to complex enterprise, cloud, and hybrid environments
• Strong collaboration with security, engineering, and business stakeholders
• Supportive culture aligned to JBS Australias values of excellence, quality, and leadership
  
  

About The Team

You will join a collaborative security function working closely with Group People & Culture, IT, DevOps, and Engineering teams. The team focuses on pragmatic, hands‑on security solutions that balance risk management, compliance, and business enablement.

Position Impact & Collaboration

• No direct reports, but strong influence across technical and business teams
• Acts as a key enabler of audit readiness and compliance maturity
• Plays a central role in translating governance requirements into technical reality
• Supports secure‑by‑design adoption across platforms and services
  
  

Success Measures

• Effective implementation and operation of NIST CSF and COSO‑aligned controls
• Audit readiness with minimal findings and timely remediation
• Reduction in manual compliance effort through automation
• Improved visibility into risk, control effectiveness, and compliance posture
• Positive stakeholder feedback from security, engineering, and audit teams

---