Executive Manager Cyber Operational Risk and

Executive Manager Cyber Operational Risk and Compliance

**See yourself in our team**:
The Technology and Operations (Tech & Ops) Risk team is responsible for providing specialist Operational Risk and Compliance (OR&C) advice, assurance and acceptance/approval of decisions made by Line 1 Technology.

**Do work that matters**:
The purpose of the role is to lead the Operational Risk support function for Cyber, including network, data and access controls implementation, regulatory engagement as well as governance and reporting.

**Key responsibilities for this role includes**:
**Technical**:

- Building and managing a Line 2 function of professional SMEs to provide independent, pragmatic and value adding Ops Risk advice, assurance and approval/acceptance for cyber security risks, focusing on cyber controls across the portfolio including subsidiaries (in line with Line 2 FAR accountabilities).
- Advising, monitoring and reporting on the successful implementation of 3LoA and delivery of all elements of the Risk Management Approach and Operational Risk Management Framework in support of CPS 220 and CPS230.
- Leading the oversight and monitoring of existing and emerging cyber security threats, the Group's response, implementation of controls, and remediation of gaps.
- Ensuring the appropriate identification, escalation and oversight of all related cyber risks, including the Group's response, to the relevant stakeholders, including the relevant NFRCs, your GM and to the Technology and Operations CRO.
- Providing a Line 2 view to Executive Management of the culture and effectiveness of operational risk within Line 1 Technology, and across the Group.

**Management style**:

- Provide thought leadership for Line 2 risk management and assurance activities, analytics, and reporting. Encourage a culture of learning and collaboration.
- Inspire, motivate and engage team members to achieve business objectives.
- Develop a cross-skilled and curious team that can support a range of areas both analytically and commercially, speaking up and ensuring appropriate Line 2 oversight and challenge.
- Attract, develop and retain team members, and provide them with quality opportunities for education, exposure and experience.

**We're interested in hearing from people who have**:

- Advanced cyber skill base, including network, data and identity controls assessment, regulatory engagement and reporting.
- Ability to deal with ambiguity and complexity, link cyber risks to business strategy and stay across external trends.
- An experienced leader who understands operational risk management practices and has an ability to influence and engage pragmatically as a trusted but independent partner.
- High quality written, verbal and interpersonal skills.
- Continuous learning and improvement mindset.

**Your Career**:
If you live the values and demonstrate the people capabilities we can offer great opportunities. Whether you want to move across the organisation or up into a leadership role, the way you live the values and demonstrate the people capabilities are key. Use the capabilities required for this role as a guide to the critical skills and behaviours you need for your next move.

We support our people with the flexibility to balance where work is done with at least half their time each month connecting in office. We also have many other flexible working options available including changing start and finish times, part-time arrangements and job share to name a few. Talk to us about how these arrangements might work in the role you're interested in.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.

Advertising End Date: 13/12/2024

Job ID REQ225046