Specialist, Cyber Enterprise Governance

**Make a difference**

As a Specialist, Cyber Enterprise Governance, you can make a difference for customers. Join the largest insurance group in Australia and New Zealand, we’re here for you. Are you ready?

**Your Role**

This is a Specialist, Cyber Enterprise Governance role where you will work as a key member of a Line2 cybersecurity team responsible for managing enterprise cybersecurity policy and standards and ensuring appropriate cybersecurity control issue management is performed by the line 1 risk stakeholders. You will build close relationships with diverse professionals. You will enjoy the challenge of continuously improving and managing risk for the business.

**About you -**- You have experience with security industry frameworks such as NIST CSF, NIST SP 800-53, ISO27001/2, ISO31000, COBIT- You are familiar with industry regulation, including APRA Prudential Standards, Australian Privacy Act and PCI-DSS- You’ll have experience with Governance, Risk and Compliance (GRC) tools such as ServiceNow GRC.- You’ll develop and maintain the Enterprise Security Policy and Standards documents (e.g., Information Security Framework, Policy, Standards, Guidelines, frameworks and procedures) that are pragmatic and effective in managing Cyber risk to within risk appetite.- You’ll manage cybersecurity Policy Exemption Records throughout their lifecycle, ensuring appropriate risk mitigation and issue/risk acceptances are properly recorded and documented actions are completed.- You will keep up to date on cyber industry trends, threats, vulnerabilities, controls and security industry practices relevant to the organisation; and translate these into appropriate security control objectives that are pragmatic and commensurate to the organisation’s risk appetite.- You will provide expert advice on cyber-related regulatory compliance obligations and how the organisation can demonstrate compliance.- You’ll manage regulatory obligation notification lifecycle activities to regulatory bodies such as APRA and ACSC, relating to cybersecurity incidents and cybersecurity control weaknesses. ABOUT US

IAG is not only the largest general insurance group in Australia and New Zealand, underwriting over $AUD13 billion of premium per annum, we’re also a tech and research facility, a hub for climate change experts and a centre of resilience design. We chat over coffee with customers, advocate for them in the corridors of Parliament and back them up in the community when life’s moments hit hardest.

You’ll know our brands - CGU, WFI, NRMA Insurance, AMI, NZI, and State Insurance to name a few. Together they turn our IAG purpose of making your world safer into action by helping, supporting ambitions and making insurance accessible.

At IAG you’re not just part of one brand, you’re part of a large purpose-led Trans-Tasman group dedicated to making your world a safer place.

We’re ready to grow your career, acknowledge every part of you, recognize your brilliance, lead you with purpose and help you live your own purpose through us.

**At IAG you can enjoy**:
- Grow your financial future with 13% superannuation as standard.- Access up to 50% off personal insurance, including home and motor insurance.- Flexibility and support so you can live life to the full.- Carers and parent’s hub and support.- Grow your career through dynamic Trans-Tasman secondments.

We’re committed to the reconciliation movement in Australia for Aboriginal and Torres Strait Island peoples and focus on providing a safe and supportive work environment for all our employees. You can find our Reconciliation Action Plan on our company website.