We’re working with a well-established Australian organisation seeking an IT Risk Manager to join their team on an initial 6-month contract. This is a hands-on delivery role, not a people management or leadership position.
You’ll work across IT and Cyber Risk, partnering closely with technology, security, and business stakeholders to identify, assess, and mitigate risk. The role is primarily Line 1, with exposure to Line 2 activities.

What you’ll be doing:

• Conduct day-to-day IT and Cyber Risk Assessments
• Support risk mitigation activities and escalate emerging risks where required
• Build and maintain risk dashboards& reporting
• Strengthen and maintain IT controls frameworks, policies, standards, and guidelines
• Act as the key point of contact for IT and security audits

• Coordinate audit activity and evidence collection

• Track findings and remediation actions

• Liaise across technology, security, and business teams to drive risk ownership
• Facilitate risk discussions and workshops with stakeholders
• Document and manage third-party and vendor risk assessments
• Maintain accurate risk and control documentation within GRC tools

What we’re looking for

• Proven experience in an IT Risk, Cyber Risk, or Technology Risk role
• Strong understanding of IT controls frameworks
• Experience supporting or coordinating security and IT audits
• Ability to translate risk into clear, practical insights for stakeholders
• Comfortable working in a hands-on, delivery-focused role
• Experience with third-party risk management highly regarded
• Strong communication and stakeholder engagement skills