Head of IT Risk, Audit and Governance

Reporting to the Chief Information Officer, the Head of IT Risk, Audit and Governance will be responsible for overseeing and managing all aspects of technology-related risks and governance to ensure the effective and secure operation of HCFs information technology systems. The role will play a key role in identifying and mitigating IT-related risks, developing and implementing governance frameworks, and ensuring compliance with regulatory requirements. The role will lead a team of professionals and collaborate closely with key stakeholders to drive HCFs IT Risk Management strategy and build a culture of risk management at HCF

**The Role**
- Lead, inspire, coach, develop and motivate a high performing team to deliver IT risk and governance objectives.
- Develop and implement an IT risk management framework, including establishing relevant risk mitigation strategies, policies, and procedures for risk identification, assessment, and monitoring.
- Develop and maintain an IT governance framework that aligns with organisational goals.
- Ensure compliance with regulatory requirements and industry standards e.g. APRA CPS234, CPS-231, CPS-230, CPS-220 & PCI DSS
- Manage and facilitate internal, external IT audits to ensure effectiveness of controls.
- Provide guidance and support to project teams and programs of work through their risk management obligations, the identification of risks as well as the development and delivery of solutions within risk appetite
- Attend Board and Executive meetings when required
- Responsibility for the IT Risk, Audit and Governance budget
- Collaborate with Senior Leaders across the Business to ensure that the overall organisational and IT risk and governance strategies are effectively executed, and resources are appropriately allocated and managed.
- Promote a proactive approach to risk identification and management throughout the organisation and provide guidance and support on IT risk awareness and best practice.
- Regularly communicate IT risk management updates to stakeholders and executive management.
- Stay abreast of emerging IT risks and industry trends.
- Evaluate the impact of new technologies on IT risk and governance practices and make recommendations where necessary..

**About you**
- Bachelor's degree in Computer Science, Information Technology, or a related field (Master's degree preferred).
- High degree of demonstrable experience in IT risk management, information security, and IT audit at a senior leadership level.
- Strong understanding of IT governance frameworks, such as COBIT or ITIL.
- Extensive knowledge and understanding of regulatory requirements and industry standards related to IT risk and governance (CPS234, HPS231 & PCI DSS)
- Excellent written and verbal communication skills including the capacity to negotiate and liaise effectively with technical and non-technical stakeholders.
- Strong technical knowledge and understanding of network protocols, security principles, cloud technologies, and IT best practices.
- Proven experience in leading and managing teams, fostering a collaborative and inclusive work environment.
- Excellent strategic thinking, problem-solving, and decision-making skills.
- Strong project management skills, with the ability to prioritize and execute multiple initiatives simultaneously.
- Effective communication and interpersonal skills, with the ability to interact with stakeholders at all levels of the company.

**About HCF**

At HCF, our purpose is to bring our human touch to healthcare. Since 1932 we’ve been putting our members and their health first. As Australia’s largest not-for-profit health fund, we cover over 1.7 million members with health, life, travel and pet insurance and our vision is to make healthcare understandable, affordable, high quality and member centric.

**Culture**

Working in the health insurance industry, we know how important it is to prioritise the wellbeing of our own people. We’re all about creating a fantastic people experience, guided by our values, so that we can in turn better deliver for our members. We work with our people to create a work experience that is inclusive, supportive, safe and respectful so we can do the best for our members.

Come and join our HCF team

**Benefits**

From day 1 you will have access to:

- 50% subsidy on HCF Private Health Insurance
- Flexible working arrangements including the opportunity to work from Home (WFH), hybrid or from our modern Sydney offices
- 18 weeks Parental Leave for all new parents
- Mental Health & Wellbeing programs
- Discounts on HCF’s suite of products, life, pet, travel and general insurance

**A career with us - How to Apply**

At HCF, we are dedicated to fostering an inclusive and collaborative work environment that upholds our core values. HCF takes pride in our diverse workforce and inclusive workplace culture and we celebrate the richness of perspectives brought by individuals with different backgrounds and experiences, including