GRC Manager

Who are Web Travel Group?

The Web Travel Group, an ASX 200 listed company (ASX: WEB), is a global B2B organisation servicing the travel industry, connecting hotels and other travel sellers to a diverse network of travel buyers all over the world through our trade only digital travel marketplace brand – WebBeds.

In September 2024, we changed our name from Webjet Limited to the Web Travel Group as part of a Demerger. The Webjet Group (Webjet B2C - comprising of Webjet OTA, GoSee, Trip Ninja) demerged from the Web Travel Group, creating two independent and simplified companies, improving our ability to pursue independent strategic priorities and growth agendas relevant to our businesses.

Find out more about the Web Travel Group at: www.webtravelgroup.com

How will you make an impact?

Join Web Travel Group as a GRC Consultant and take the lead in shaping and strengthening our compliance and security frameworks. You will play a lead role in key programs such as PCI-DSS, ISO 27001, and NIST CSF. You'll manage audits, conduct risk assessments, and support policy development—ensuring our compliance posture stays strong and future-ready.

Key elements to the role include:

• Maintain and lead our compliance programs including PCI-DSS, ISO 27001, NIST CSF etc.
  
• Manage audit programs – liaise with third-party auditors.
• Conduct risk assessments and gap analyses to understand key threats to our organisation.
• Select and implement an appropriate compliance tool to manage our compliance programs.
• Facilitate third-party risk management, vendor due diligence, and contract compliance.
• Support development of our security and compliance policies and procedures.
• Monitor and report on key risk indicators (KRIs), compliance metrics, and audit findings.
• Stay current on emerging regulatory trends and best practices in risk and compliance.
• Following up with key stakeholders on open risks and ensuring appropriate mitigations are in place.

The skills we would love to see in your suitcase!

• Bachelor’s degree in a related field i.e. Commerce, IT, Information Security, Risk Management, Finance.
• 2 years knowledge of frameworks such as:
  • ISO 27001 / 31000
  • NIST CSF
  • PCI-DSS
• Strong analytical, writing, and presentation skills.
• Ability to manage multiple projects and interact with both technical and non-technical stakeholders.
• Professional certification such as CISA, CRISC, ISO Lead Auditor/Implementer are preferred.
• Consulting experience is a plus.

Why choose us as your next destination?

We are super proud of our dedicated team of friendly, energetic & passionate professionals. Our people are key to the success of our business & everybody at WebBeds has their own unique role to play as we continue to drive the company forward.

Over 50 different languages are spoken by our workforce, but whether working from offices in Dubai or London or out in the field in Johannesburg or Buenos Aires, we all share the common goal to take pride in what we do & to deliver our partners with unbeatable service & support.

Dynamic environment with the chance to grow, influence & impact change Disruptive, fast-growing market leader within travel & endless possibilities Culture built on collaboration empowerment and innovation

Find out more about the WebBeds business at www.webbeds.com - #LI-Hybrid