Associate Director, Supplier Risk & Governance (Cybersecurity)

TL;DR

Associate Director, Supplier Risk & Governance (Cybersecurity): Guiding and advancing the Third-Party Risk Management (TPRM) function to protect the company from vendor-related risks with an accent on establishing world-class risk management frameworks and strategies. Focus on leading comprehensive risk assessments, driving cross-functional collaboration, and ensuring regulatory compliance across the vendor lifecycle.

Location: Melbourne, VIC. Flexible working arrangements: 3 days in office, 2 days remote.

Company

hirify.global is an Australian telecommunications company delivering mobile, broadband, and digital solutions to over 11 million customers.

What you will do

• Own and refine the enterprise TPRM framework in alignment with global guidelines.
• Lead comprehensive risk assessments across multiple domains using consistent methodologies.
• Drive cross-functional collaboration to embed risk-based thinking throughout the vendor lifecycle.
• Ensure compliance with regulatory requirements and prepare detailed reports for executive decision-making.
• Implement continuous monitoring systems and coordinate incident response and recovery plans.
• Translate geopolitical shifts, market moves, and supplier vulnerabilities into actionable business decisions.

Requirements

• 10+ years of experience in third-party risk oversight, GRC, or cybersecurity risk roles.
• Proven track record of crafting and implementing enterprise TPRM frameworks in large, complex organisations.
• Deep expertise in risk assessment methodologies and vendor lifecycle management.
• Strong regulatory knowledge of the Privacy Act and telecommunications compliance requirements.
• Experience with TPRM technology platforms such as RSA Archer or ServiceNow GRC.
• Must be based in Melbourne, Australia.

Nice to have

• Professional certifications such as CTPRP, CISA, or CISSP.

Culture & Benefits

• Competitive remuneration, colleague discounts, and monthly product credits.
• Flexible working arrangements with a hybrid office/home model.
• Inclusive, carer-neutral paid parental leave of up to 16 weeks.
• Professional development via hirify.global U industry-focused micro-credentials.
• Access to diversity initiatives and colleague-led networks.
• 24/7 free access to counseling and wellbeing support services.