The Company We’re partnering with a fast-growing Australian cyber consultancy that is deliberately challenging how the industry thinks about risk. Their team blends technical depth with sharp commercial acumen, helping organisations move beyond compliance theatre and into meaningful, defensible outcomes.
This is a boutique environment where intellectual curiosity is valued, assumptions are tested, and engagements are tailored not templated. They work with well-known brands who want more than a checklist; they want someone who can interpret real-world threats, question legacy thinking, and design solutions that actually make sense in their business context.
The Opportunity After refining the brief and rethinking the approach to market, we’re looking for a Lead Cyber Risk Consultant who is first and foremost a critical risk thinker. This isn’t a role for someone who simply maps controls to frameworks. It’s for someone who can connect technical controls to tangible business risk, challenge surface-level findings, and articulate why something matters in practical terms.
Key Responsibilities
- Lead client engagements focused on cyber risk, moving beyond framework mapping into real-world threat and business context.
- Connect technical controls to tangible business risks and articulate why gaps matter commercially.
- Challenge compliance-driven thinking and guide clients toward pragmatic, outcome-focused solutions.
- Facilitate workshops and discussions that test assumptions and uncover root causes, not just symptoms.
- Translate complex technical findings into clear, board-ready risk narratives.
- Contribute to the evolution of service offerings, helping shape how modern cyber advisory is delivered.
- Support and mentor junior consultants, elevating the overall critical thinking capability of the team.
- Participate in a two-stage interview process including a behavioural assessment and a case-based discussion designed to surface deeper problem-solving ability.
What you're experience may look like
- 3-7 years’ hands-on experience in cyber GRC and strategy.
- Proven experience leading projects and managing client relationships.
- Breadth of experience across frameworks and engagements.
- Experience in building strategies, running tabletop exercises, and shaping GRC initiatives.
- A passion for making an impact - through client work, thought leadership, or building new capabilities.
- Background in Big 4 or boutique security consultancy experience preferred.
Why Join? - Career Growth: Steer your career in a direction that suits you.
- Variety & Challenge: Diverse industries, complex projects, and evolving threats.
- Expert Team: Work alongside industry leaders passionate about cyber.
- Balance & Perks: WFH flexibility, monthly meal allowance, and regular team events.
- Permanent Opportunity. Competitive Salary & Benefits.
If you’re a senior cyber security consultant who thrives on strategy, wants to broaden your impact, and is passionate about helping organisations rethink cyber risk, you’ll feel right at home here.
If you think this could be the right opportunity for you please apply to this role or reach out with your CV to jreid@decipherbureau.com