Here at Campaign Monitor we have an opportunity for a Security Consultant (Trust and Compliance) to join our global Security Risk & Compliance Team. In this role you will help the CM Group of companies (Campaign Monitor, CM Commerce, Emma, Delivra, Sailthru, LiveClicker and Vuture) to realise its mission by being the interface between CM Group Security and Business teams to address security and compliance challenges in addition to building trust with customers and prospects.

As the security landscape constantly evolves, there is ever a need to build and ensure trust with our existing customers and future prospects providing them with assurance over our security program and technical security controls.

Working within a global organisation as part of a multi-disciplined team, the role’s main focus will be to support the CM Group risk and compliance program through the execution of security assurance activities to ensure the on-going operating effectiveness of controls and providing technical security advisory support to our sales and support teams, when dealing with requests for information from CM Group customers and prospects.

In this role, you will have the opportunity to work among an amazing team of security professionals and perform tasks such as:

  • Be the expert on our suite of products and services from a security lens
  • Support sales and support teams through answering questions related to our security program
  • Respond to and review customers’ security questionnaires
  • Build customer trust through managing customer / prospect security meetings
  • Interface with the security team to ensure all the latest security capabilities and features are accurately represented
  • Provide insight into gaps in our security program that impact the sales and renewal processes
  • Develop and manage security and trust enablement documentation (white papers, standardised questionnaires, trust center, presentations etc)
  • Understand and evaluate the business environment and its associated risks to influence change with other Business teams (Product, Engineering, Finance etc)
  • Effectively plan, manage and execute on technology and security assurance activities (process and technical assessments)

You will be able to demonstrate the following skills, experience and attributes:

  • Strong interpersonal, presentation, and writing skills
  • A functional understanding of the Internet and network security systems and tools including firewalls, WAFs, encryption, and remote access systems
  • Experience completing customer security / compliance questionnaires
  • Degree qualified in a related IT discipline
  • Experience working in information technology specialising in information security
  • Experience with risk management, identifying risks and providing pragmatic risk mitigation solutions
  • A working knowledge of security standards such as SOC 2, ISO 27001, NIST CSF
  • Familiarity with audit and compliance work, preferably as a member of an audit or compliance team


  • Experience interpreting customer questions and mapping them to industry standard controls
  • Experience in writing customer-facing security documentation
  • Familiarity or experience working within a SaaS organisation / environment
  • Familiarity with privacy legislation and requirements such as GDPR
  • Industry relevant certifications (ICS2, ISACA, SANS)

What are the perks:

  • Competitive salary
  • Generous vacation and holiday schedule
  • Flexible work hours
  • Training budget to ensure you are always learning and growing
  • Daily, fully catered breakfast, lunch and snacks, drinks options and barista coffee when you are working in our Sydney office
  • Personal fitness, yoga classes, swimming passes, team sports fully funded by Campaign Monitor when you are working from the Sydney office
  • Salary Continuance and Life Insurance 
  • An awesome work environment using the best available equipment

Apply for this job

Think you're the person for this role? Fill out the form below and someone will be in contact soon.

  • Accept PDF, DOC and DOCX only.OR
  • Accept PDF, DOC and DOCX only.OR