IT and Cyber Risk Manager

Join to apply for the IT and Cyber Risk Manager role at Hollard Insurance Australia

Open for Sydney candidates only - hybrid work flexibility.

• Opportunity to work with one of the largest General Insurers in Australia
• Uplift risk capabilities by influencing senior leaders to adopt proactive risk practices

You will join the Enterprise Risk Management team within the Group Risk & Compliance function, which operates as Hollard's second line of defence. Group Risk & Compliance is operationally independent from business units, reports directly to the Chief Risk Officer (CRO), and through the CRO, has a direct line to the CEO and unfettered access to the Board Risk Committee.

As an IT and Cyber Risk Manager, you will support the Senior Manager of IT and Cyber Risk in developing, embedding, and continuously improving Hollard's risk oversight capability across technology, cyber and data domains. Your work will ensure alignment with APRA CPS 230/234, CPG235, the Privacy Act, and broader regulatory expectations, while strengthening operational resilience and risk culture.

• Govern and oversee technology, cyber, and data risk management across the enterprise.
• Provide pragmatic, outcome-focused risk advice that enables business objectives within approved risk appetite.
• Use expertise to influence senior leaders to adopt strong, proactive risk practices.
• Facilitate identification, assessment, and review of technology, cyber, and data risks.
• Review and challenge first line risk management activities, ensuring risks are identified, assessed, and treated effectively.
• Provide oversight and advice on key risks and controls across Hollard's environment.
• Provide independent challenge over material change initiatives, including technology transformation, cloud migration, AI initiatives and other digital projects.
• Assess risk management in change programs to confirm controls are designed and operating effectively.

• Demonstrated experience in IT, cyber, and operational risk roles within financial services, with proven expertise in technology and data risk management is required.
• Experience in risk oversight within major organisational change or transformation initiatives.
• Strong understanding of APRA CPS 230/234, CPG235, the Privacy Act, and ACSC Essential Eight maturity model
• Good familiarity with AS/NZS ISO 31000 and frameworks such as ISO 27001, NIST CSF, COBIT, COSO, and ITIL is needed.
• Understanding of AI governance standards, including Australian AI Principles and EU AI Act is preferred.

At Hollard, you'll discover an environment where you can truly make an impact. We offer the best of both worlds – the opportunity, agility and creativity of a company growing with scale, alongside a focus on becoming a catalyst for enduring, positive, social change.

We're a tight-knit team, where authentic voices and unique perspectives matter. We work supportively, collaboratively and inclusively to help shape our future and create shared value for our communities.

Hollard proudly promotes flexible work including remote work, non-traditional work patterns, and work-family balance. We're also unapologetically committed to creating a workplace that values your diversity with a true sense of inclusion. We actively seek to hire for your different lived experiences, including as it relates to disability, ethnicity, faith, Aboriginal and Torres Strait Islander Peoples, gender diversity, sexual orientation, age, neurodiversity.

We're building something special. Working closely with our industry partners to reshape insurance for the better, we're people changing insurance.

Please note: Even if you don't meet all our selection criteria, we encourage you to apply.

A full background check will be completed on the successful applicant.

Visit the Hollard careers page to learn about how Hollard will collect, store and handle your personal information.

We are NOT engaging Recruitment Agencies for this role and ask agencies to respect our policy of no unsolicited contact regarding advertised vacancies.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Banking and Financial Services