Work at Sportsbet hero banner

Security GRC Consultant

  • 496301
  • Melbourne, VIC, Australia
  • Full time

Sportsbet is looking for a passionate and experienced Security GRC and PCI-DSS Consultant who will work alongside our technology and business teams to provide guidance and direction on appropriate security, PCI-DSS and technology risk management practices to help protect our customers and organisation.

We offer flexible working options, 5 weeks annual leave and have a company wide focus on continual learning and professional development.

About us!

Sportsbet's purpose is to bring excitement to life for its customers and we do this by over-delivering on excitement through serious fun, disrupting the status quo and living our values. We’re a flexible, progressive, open-minded, and inclusive employer with over 7,000 cool, clever and curious people around the world. As part of the Flutter Group, we’re a global player, but in Melbourne, Sydney and Darwin we’re tight knit, with 1,000 of us bringing excitement to life every day.

Our commitment to responsible gambling is genuine and demonstrated through the wide range of responsible gambling initiatives and tools – take a look: 

The Sportsbet Cyber Security team is full of experienced operators who enjoy the challenge that comes with working for a fast-paced digital organisation, are passionate about protecting our customers, and know how to have fun while doing it. We’re looking to improve our team with someone as passionate as we are.

About the role

You will be responsible for ensuring Sportsbet maintains its PCI-DSS compliance and alignment to ISO 27001 whilst driving on-going uplift across our controls.  This includes maintaining policies, processes, managing the audit and certification processes, regularly monitoring control effectiveness, developing metrics and championing security-related compliance initiatives

Key responsibilities include:

  • Analyse, implement and monitor risk and compliance management frameworks, policies, standards and best practices to maintain compliance with security-related compliance obligations (e.g. PCI-DSS and alignment to 27001).
  • Evaluate the technical controls and changes to PCI environments to ensure continued compliance and appropriate security is maintained.
  • Maintain relationships with internal and external audit and third-party consultants to provide primary contact point and to facilitate and support execution of audits. Assist with subsequent remediation efforts to achieve compliance and address security gaps.
  • Monitor the health of key technology controls by undertaking periodic control assurance activities. Maintain our perspective of key controls and oversee the maintenance of the key risk and control register.
  • Support our Security Advisors/Architects in ensuring security guidance for new commercial/technology initiatives to assess risk and meet minimum security compliance obligations.
  • Raise awareness and educate staff regarding PCI-DSS and broader security compliance obligations. Encourage a risk-mindset across all teams.

You won’t be alone, working within the Security GRC team and alongside our security architecture, application security and security engineering teams.

About You

  • 3-5 years within security-focused roles.
  • Strong knowledge of PCI-DSS requirements and experience with ISO 27001 or other good practices frameworks (NIST CSF, ASD Essential 8, etc).
  • Understanding of controls and techniques commonly used to meet PCI-DSS and ISO 27001 objectives.
  • Understanding of technologies and security considerations within digital, mobile/web development and across enterprise environments
  • Awareness of emerging security trends, including threats and countermeasures.


The Perks

We work hard and play hard, so along with a very competitive salary and generous performance-based bonus, we will also provide you with:

  • 25 days annual leave (a whole extra week of holidays!)
  • Tailored career development programs, as well as a commitment to developing Thought Leader and Specialist Talent programs
  • Genuine flexible working and remote working policy with an $850 work from home office allowance
  • Discounted gym memberships, free breakfast and loads of event and conference tickets and many more
  • Access to Headspace App and an employee assist program
  • Best in class Parental Leave program with six months paid leave for Primary Carers and Circle  In membership


We’re a flexible, progressive, open-minded, and inclusive employer who welcomes you for who you are, as you are- that’s why we assess behaviours, learning agility and expertise to ensure all types of experiences are considered for our roles. We encourage you to apply as soon as possible as we review candidates with 2-3 weeks of advertising.

Ready to bring excitement to life? Apply now

Apply Now

Refer someone to this job

Not You?

You are now being directed to the PageUp Apply Portal to complete your application.


Jobs recommended for you

Talent Acquisition Business Partner

496392 Melbourne VIC Australia Melbourne People & Culture Human Resources & Recruitment
Love speaking with candidates and partnering with stakeholders in a fast paced business? Got a passion for creating a superb candidate and hiring manager experience? If so, here’s your opportunity to make a difference delivering and hiring top ...

Risk & Trading Commercial Manager

496385 Melbourne VIC Australia Melbourne Risk & Trading Risk & Trading
Within our R&T department you will intake, validate and drive new trading initiatives to delivery, by collaborating with technology teams as both owner and SME.

Senior Workforce Planning Lead

496387 Melbourne VIC Australia Melbourne Customer Operations Call Centre & Customer Service, Project & Program Management, Reporting & Analytics
We are on the hunt for a Senior Workforce Planning Lead to establish an efficient and effective Rostering Model which complements Sportsbet’s customer demand across our 24/7 contact channels.

Sign up for Job Alerts

Not You?

Thank you