Full-Time
Senior Governance
Risk and Compliance Consultant
Posted on 11/24/2025
Kyndryl
10,001+ employees
Managed IT infrastructure and cloud services
No salary listed
Canberra, Australia + 2 more
More locations: Melbourne VIC, Australia | Sydney NSW, Australia
In Person
 IT & Security (2) |
|---|
| , |
- Expertise in Australian regulatory frameworks such as APRA CPS230/234, SOCI, ESCO, VPDSS, IS18, Australian Privacy Principles (APPs) and the Australian Cyber Security Centre (ACSC) guidelines.
- In-depth understanding of Australian laws such as the Privacy Act 1988, Notifiable Data Breaches (NDB), and the Critical Infrastructure Bill.
- Ability to apply industry frameworks like the NIST Cybersecurity Framework (CSF), ISO 27001 and CIS Controls within the Australian context.
- Experience with government and industry certifications, such as IRAP (Information Security Registered Assessors Program).
- Expertise in conducting risk assessments and audits in accordance with local regulatory requirements and frameworks.
- Excellent written and verbal communication skills for creating documentation, presenting findings, and advising clients at the C-suite level.
- Strong stakeholder management capabilities, especially when liaising with senior management and government entities in the Australian market.
- At least 7-10 years of experience in Governance, Risk and Compliance, with a strong emphasis on Chief Information Security Officer consulting services in the Australian market.
- Proven experience in advising Australian enterprises, government agencies, or large-scale private sector organisations on regulatory compliance and risk management.
- Familiarity with Australia’s Critical Infrastructure Risk Management practices, Cyber Security Strategy 2020-2030, and other national frameworks.
- A strong track record of managing complex, enterprise-level cybersecurity and compliance projects within Australia.
- Experience in leading GRC-related initiatives and working in a consultancy environment, specifically in Australia.
- Certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Auditor are highly desirable.
- Australian Citizenship with the ability to obtain AGSVA security clearance.
- Provide advisory services to Australian clients, guiding them in managing cybersecurity risks and ensuring compliance with Australian regulations and frameworks including APRA CPS230/234, SOCI, ESCO, APPs, ACSC guidelines, NIST CSF, ISO 27001 and CIS Controls.
- Conduct risk assessments and evaluate existing security programs to design and implement effective security governance, risk management, and compliance frameworks.
- Assist clients in meeting the Notifiable Data Breaches (NDB) scheme compliance and help develop and refine incident response plans.
- Work with executive teams to develop security strategies and align security initiatives with business goals to ensure confidentiality, integrity, and availability of critical data.
- Collaborate with clients to understand security requirements and assess current security posture, providing expert guidance on security practices, risk management strategies, and robust security policies.
- Design and implement security controls, policies, and procedures and work with cross-functional teams to deploy technologies such as firewalls, intrusion detection/prevention systems, access controls, and encryption.
- Conduct thorough security assessments to identify vulnerabilities and risks, and produce findings that form the basis for security audits and reviews.
- Produce reports and findings to inform management decisions and actions and stay updated on the latest security threats, technologies, and best practices.
- Contribute to the design and review of IT infrastructure, systems, and applications to ensure secure by design from inception.
- Collaborate with customers and vendors on security assessments, audits, and due diligence activities.
- Certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Auditor are highly desirable.
Kyndryl provides managed IT infrastructure services for large enterprises, helping them run and modernize their technology environments. Its offerings cover cloud adoption, cybersecurity, security operations, and digital workplace services, all delivered under long-term managed-service contracts. The company works by partnering with major technology providers (including Microsoft) to offer integrated, end-to-end solutions, often complemented by a new security operations center (SOC) and other security capabilities. This focus sets it apart from competitors through scale, enterprise-grade governance, and a history rooted in IBM’s infrastructure services, now independent but aligned with large technology partners. The goal is to support digital transformation by providing reliable, scalable, and secure infrastructure management that enables enterprises to operate efficiently and securely in a cloud-enabled world.
Company Size
10,001+
Company Stage
IPO
Headquarters
New York City, New York
Founded
2021
Simplify's Take
What believers are saying
- Sovereignty services capture revenue as 83% of leaders prioritize repatriation per 2026 Readiness Report.
- India MeitY empanels Kyndryl for AI rollout across government departments in seven service categories.
- Google Cloud partnership expands distributed cloud for AI-ready sovereign modernization in 60 countries.
What critics are saying
- Job cuts from 73,000 employees disrupt services and drive client exodus by fiscal 2028.
- TCS undercuts Kyndryl at 4 million rupees monthly on India AI contracts eroding market share.
- Internal control weaknesses delay filings and trigger SEC fines consuming $200M severance cash.
What makes Kyndryl unique
- Kyndryl Sovereignty Solutioning assesses IT dependencies for business continuity amid rising repatriation needs.
- Kyndryl Digital Twin on Microsoft Foundry predicts workplace tech failures using agentic AI proactively.
- Kyndryl Agentic Service Management transitions enterprises to autonomous AI workflows with ISO 42001 maturity models.
Help us improve and share your feedback! Did you find this helpful?
Benefits
Professional Development Budget
Hybrid Work Options
Company News
Kyndryl has launched Sovereignty Solutioning, a suite of advisory, implementation and managed services designed to help organisations manage dependencies and maintain business continuity across complex IT environments. The offering includes a new Sovereignty Readiness Assessment that evaluates data, operational and technical domains to identify risks and create implementation roadmaps. The services combine consulting, engineering and operational capabilities to design sovereignty-ready architectures and operate under sovereignty constraints with appropriate controls. According to Kyndryl's Readiness Report, 83% of business leaders say sovereignty and repatriation considerations have grown more important in the past year. The assessment identifies sovereignty gaps and translates them into sequenced options, addressing emerging areas including AI, where organisations must consider data flows for training and inference whilst maintaining operational auditability.
Kyndryl predicts tech gremlins with Digital Twin solution. April 10, 2026 Built on Microsoft Foundry, the new solution analyses data from devices to predict tech problems before they occur, saving employees time and frustration Kyndryl, an IT infrastructure provider, is helping organisations to avoid workflow disruption by anticipating and resolving technology issues with its new capability, Kyndryl Digital Twin for the Workplace. The Kyndryl Digital Twin for the Workplace is built on Microsoft Foundry and combines predictive intelligence, automation and operational insight, all with the aim of improving the employee experience through automated IT service operations. Digital twins enable organisations to collect both real-time and historical data from across the system. In an AI-infused cloud environment, an enterprise can then deploy agentic AI to analyse operational patterns and predict likely points of failure or user frustration that support staff can then address proactively. The Kyndryl solution detects and addresses employee technology issues proactively by analysing signals from employee devices, applications and workplace locations. It then automatically triggers alerts, recommends corrective actions, and dispatches support resources before a system fails. Agentic AI can also use the digital twin data to anticipate heightened system demand - such as seasonal or weather-based surges in the travel and hospitality industries - and activate or route the necessary resources to keep things moving smoothly for workers and customers. In these types of situations, the combination of agentic AI and digital twins progresses beyond simple automation into the realm of predictive analysis and corrective action. "As a company, we sit squarely at the intersection of people, places and technology, where real work happens, not just systems," says Michael Przytula, SVP and the Global Digital Workplace Services Lead at Kyndryl. "At Kyndryl, Technology Magazine is moving beyond reactionary support toward predictive experience engineering, turning experience data into foresight and real business impact from day one. "This isn't just about optimising tools; it is about elevating human work itself, anticipating friction before users feel it, mobilising insights into action and unlocking value that transforms how organisations work in the real world." The aim of the game: no more tech disruptions. Kyndyrl aims to help enterprises predict and resolve technology problems before they arise, rather than only discovering a tech issue after employees are impacted, which leads to lost productivity, frustrated workers and disrupted operations. Take the example of a minor tech disruption in an airport. A slow or unstable gate agent workstation can force employees to move terminals to keep flights on schedule, which isn't helpful for staff or customers. The Kyndryl Digital Twin for the Workplace creates a virtual representation of how work happens across an organisation. Michael adds: "Digital workplace systems are part of any organisation's core operational infrastructure. Productivity stops when these systems fail, with a direct and immediate impact on the enterprise and its customers. "Therefore, it's essential for managers to be able to spot impending challenges before they occur. A digital twin of a workplace system gives organizations a clear view across their entire systemic landscape. "The digital twin can pinpoint areas of compromised performance - whether at the departmental level, issues with specific technologies, or even a specific user who's having a degraded experience." Backed by Microsoft tech. The Kyndryl Digital Twin for the Workplace is powered by Microsoft's Azure cloud platform and uses Microsoft Foundry to orchestrate its advanced AI capabilities. The combination of Kyndryl's deep expertise in digital workplace operations and Microsoft's AI platform allows organisations to move beyond experimentation and implement production-ready, AI-driven workplace solutions right away. "Predictive, AI-driven operations - built on Microsoft Foundry - means fewer disruptions, better experiences and real productivity gains for enterprises to enable their employees to do their best work," writes Alice Boyce, Director of Global Alliances Marketing at Kyndryl, on LinkedIn. This offers significant advantages to customers, including Agentic AI optimisation, where AI agents autonomously identify technology issues, recommend the precise fixes and validate the outcomes without human intervention. Plus, customers gain location-aware workplace health, which provides real-time visibility into the digital performance of specific offices or geographic regions. Finally, the solution delivers smarter asset and logistics planning by integrating with inventory and supply chain systems to predict future hardware refresh needs and optimise stock placement. Executives. * Alice Boyce Director, Global Alliances Marketing * Michael Przytula Senior Vice President, Global Digital Workplace Practice Lead Company portals.
India taps six firms for government AI rollout. India's Ministry of Electronics and IT has empanelled Tata Consultancy Services, Innefu Labs, CoRover, Cactus Communications, Kyndryl, and NEC Corporation to develop and deploy AI tools across government departments. The work will be carried out under a two-year framework initiated by the National e-Governance Division. More than 80 companies bid for the framework, which covers seven service categories. It aims to create a pool of AI and machine learning talent for projects such as chatbots, model fine-tuning, pilot programs, and inference infrastructure. Innefu Labs was the lowest bidder for on-demand AI manpower at around 4 million rupees (US$43,000), while TCS bid around 4.2 million rupees (US$45,000). The shortlisted firms must match the lowest price. Food for thought. Implications, context, and why it matters. This empanelment suggests a price-driven approach to public sector AI. * More than 80 companies competed, which signals heavy demand for government AI work in India 1. * The framework asks shortlisted firms to match the lowest discovered price for on-demand AI manpower, around 4 million rupees (US$43,000) a month, which puts budget control at the center 1. * The price-match requirement limits premium pricing by large IT services companies like Tata Consultancy Services (TCS) and supports a steady, low-cost talent pool for chatbots, model fine-tuning, pilots, and inference infrastructure 1. The government's pricing model could create ripple effects in the tech industry. * A low, fixed benchmark for on-demand AI manpower could push down service fees, plus some private-market salaries, by giving buyers a new reference point 1. * Over the next two years, the six empanelled companies may gain an edge, which could concentrate government AI work and leave out many of the other bidders 1. * If this approach works, other government technology contracts may adopt it, reshaping competition between smaller low-cost firms and bigger incumbents 1. Recent TCS developments. Stay updated on the go with our mobile app. Get latest insights with smoother, more personalized experience through TIA mobile app. How would you feel if you could no longer use Tech in Asia? Share, tag us, and land on our Wall of!
Kyndryl is launching a new service to help companies manage AI agents and improve returns on their technology investments, according to CEO Martin Schroeter. Speaking on Bloomberg Tech, Schroeter emphasised the importance of proper AI control as organisations increasingly deploy AI agents across their operations. The service aims to address growing demand from companies seeking to maximise value from their AI implementations whilst maintaining appropriate oversight and governance.
Kyndryl has launched Agentic Service Management, a framework combining maturity models, assessments and implementation blueprints to help enterprises transition from traditional IT operations to autonomous, AI-driven workflows. The offering addresses a critical gap: whilst over two-thirds of organisations invest heavily in AI, nearly half struggle to achieve returns because their governance and controls remain rooted in pre-AI systems. The service, available through Kyndryl Consult, evaluates organisations' readiness for agentic operations against standards including ISO 42001, providing gap analyses and phased roadmaps. Kyndryl is applying the framework internally through Kyndryl Bridge, building on its existing automation foundation that executes nearly 200 million automations monthly across more than 8,000 certified playbooks. The company also offers Agentic AI Digital Trust as a standalone security-first framework for managing AI agent operations in regulated industries.