Head of Cyber, Technology

We are seeking a highly skilled and experienced Head of Cyber, Technology & Data Risk to join our risk leadership team. Reporting directly to the Chief Risk Officer, this is a high-profile second line of defence role with direct exposure to the Board and Executive.

This is more than a compliance role – it's an opportunity to help shape the organisation's risk culture, influence major transformation projects, and provide strategic oversight of cyber, technology, and data risk. You will act as a trusted partner to senior leaders, offering both challenge and support, while making complex issues simple and actionable.

What will your key responsibilities include?

• Providing expert advice and support in designing policies and frameworks and in interpreting legislation and regulations.
• Assist the Chief Risk Officer and responsible committees in implementing relevant frameworks related to information security, technology governance, and data governance that align with the organisation's risk appetite and position.
• Keeping up to date with industry best practices and translating complex technical issues into clear, business-focused insights for the CRO, Board, and Executive Committees.
• Offering guidance on regulatory engagement and fostering a strong risk management culture.
• Developing and embedding a mature risk culture – encouraging open discussion of risks, running awareness initiatives, and role-modelling positive behaviours.
• Providing independent oversight of cyber resilience exercises and regulatory testing.
• Building credibility across the business with the technical expertise to challenge and influence senior stakeholders.

What are we looking for?

• In-depth knowledge of cyber risk frameworks, regulatory requirements, and standards (e.g., SOX, PCI DSS, ISO 27000, APRA CPS 234).
• Experience in Cyber Risk and/or Information Security Management or related functions.
• Experience in governance and control frameworks.
• Diversity of thought and experience to drive organisational progress while upholding our values.
• Demonstrated ability to influence at Board and Executive level, with experience presenting to senior audiences.
• Excellent stakeholder management skills, particularly in building and maintaining relationships with cross-functional teams.
• Information Security qualifications such as CISSP, SABSA, or CISM.
• Outcome-focused with the ability to drive oneself and others to achieve desired ends efficiently.

Beyond the expected perks that we're proud to offer like fitness passports, corporate health insurance, and paid parental leave, we go the extra mile to offer benefits that truly enhance your work-life balance, career growth, and sense of belonging. This role offers the chance to:

• Play a critical role in shaping risk culture at an evolving and values-driven organisation.
• Provide Board-level input on cyber, technology, and data risk strategy.
• Influence major technology programs that underpin the organisation's future.
• Join a collaborative, people-focused culture where your voice is heard and impact is visible.
• Work flexibly in a supportive environment that values both professional excellence and personal balance.

About us

As one of Australia's largest customer-owned banks, we're a driving force in customer owned banking, operating under the trusted brands Greater Bank and Newcastle Permanent. With over 200 years of combined experience, we've helped hundreds of thousands of Australians achieve home ownership and providing a genuine alternative to the big banks—all while strengthening the communities we serve. At the heart of everything we do are our core values:

• Lead with heart – We genuinely care about achieving better outcomes for our customers and communities.
• Own the action – We build trust by doing things the right way, with honesty and transparency.
• Embrace opportunity – We look ahead, focusing on our strengths and expertise to challenge the status quo.
• Thrive together – By working as one, we create the best possible future for our customers and communities.

And we're just getting started. Join a team shaping the future of trusted banking and make a real impact where it matters most.

Recruitment notes We operate to ethical recruitment standards. All applicants are required to undergo a skills assessment, comprehensive background check, Bankruptcy Check and a National Police Check. If you require adjustments to be made during the recruitment process or would like to discuss accessibility requirements, your Talent Acquisition Partner will be happy to engage in a confidential discussion and assist. Your unique talents and perspectives are what make us stronger.

About NGM Group

NGM Group is committed to delivering trusted banking to enable our customers and communities to thrive. We do this by leading with heart, doing the right things in the right way, and by maintaining high standards of ethical behaviour in everything that we do.