Security Consultant - GRC

At Deputy we’re on a mission to change the way the world of hourly work “works”. Businesses that use Deputy unlock thriving workplaces – one where staff are engaged and empowered, customers are served well, businesses are legally compliant, and companies profits thrive. For decades, software has primarily driven innovation in knowledge work businesses (Slack, Zoom, Asana, Notion), rather than hourly work businesses (think cafes, retail, manufacturing, medical clinics) – we are here to change that!

Deputy is a global cloud SaaS workforce management software company, HQ'd in Sydney (AU), San Francisco, and London (UK). We’ve helped 10s of millions of people across all industries in 70 countries save time and money managing their hourly workforce so they can focus on what they do best, run thriving businesses.

We have crossed $100m ARR, with strong financial stability and backed by leading US/Global investors. Our Target Market is about 60% of the world’s workforce, an ambitious vision, matched with an incredible values-led culture. Come join us!

We are looking for a Security Consultant to assist with the management of Deputy’s Governance, Risk and Compliance Programs during our next stage of growth. The consultant, familiar with GRC and Privacy, will primarily support influencing and building strong relationships with key business stakeholders. The goal is to assist in managing the overall governance framework, supporting compliance and privacy initiatives, and handling Deputy’s security and technology risks within the company's risk appetite.

Trust is the team responsible for ensuring that the Deputy platform lives up to the high expectations of the millions of people using it everyday.

This is your chance to help build the security and privacy team culture you’ve always wanted to work in. 

• You have experience in information security fundamentals, you have been working in the industry for a few years.
• You have a broad understanding of domestic and international information security regulatory requirements that may apply to Australian organisations
• You are comfortable working with other areas of the business, we are a small team, and you’ll need to influence rather than rely on authority.
• You can communicate technical and compliance requirements in a way that's easy to understand, regardless of one's background or technical knowledge.
• You have strong presentation and written documentation skills, working together requires telling a story everyone can understand.
• You are comfortable with unfamiliarity, you are ready to learn and aren’t afraid to ask questions.
• You are experienced with Information Security Management Frameworks and standards such as ISO27001, SOC, NIST and PCI. 

• You may have ISO27001 Auditor experience or have worked as part of a team that led companies through ISO27001 and/or SOC audits.
• Experience with PCI-DSS Certification, either as a practitioner or an auditor. 
• Experienced with GDPR Compliance programs and information privacy, including privacy by design, and privacy impact assessments.
• Experience working with security questionnaires from existing and prospective clients, ensuring they have the confidence to move forward with Deputy
• Familiarity or experience working with high-tech cloud SaaS companies, or fast-growing startups.

• Like many roles in scale-ups, this is a varied position that will work across all aspects of GRC and Privacy.
• Deputy is growing in Australia, the US and Europe and our compliance needs cover domains such as ISO27001, SOC, PCI, GDPR, NIST and the Secure Controls Framework.
• Deputy is an ISO27001, SOC2 and PCI Compliant company, and this role will assist in maintaining these programs, as well as elevating Governance and Risk Management processes throughout the business. 

Employee Perks

- Share Options

- Paternity/Maternity Leave Policies

- Flexible Work Policy

- Company wide Development & Coaching

- Hackathons

- Awards - "Your Time to Shine & Celebrate Success"

- Social Events & variety of social clubs (Books, LGBT, Games, Sports)

- Mental Health Support

- Munch & Learns

Learn More About Deputy

Deputy Linkedin Page 

Deputy Instagram

The Bay Area's Top Workplaces

Open the Pod Bay Doors Podcast - E165: Silvija Martincevic, CEO & Board Director, Deputy 

International Shift Worker Sunday

Customer Story - Honest Burgers: from inflexible all-in-one to Deputy’s best of breed flexibility

Best Employee Scheduling Software 2023 (Forbes Advisor)

Silvija Martincevic: Five Things I Wish Someone Told Me Before I Became A CEO

Customer Reviews - GetApp and G2Crowd

Deputy believes in equal opportunity and that inclusiveness and diversity promotes innovation. Our global team members are from a variety of cultures. And we welcome different perspective and skills. 

#LI-Hybrid