Information Security Manager

Rabobank is the world’s leading specialist in food & agribusiness banking. One of our key strengths lies in our people who have a deep understanding of agriculture & are committed to adding long-term value for clients. Our commitment to our employees & clients is at the heart of everything we do.

Rabobank’s Security & Control department, part of the broader COO Domain, is seeking an Information Security Manager to be based in Sydney. This newly created role is ideal for someone eager to broaden their expertise across multiple cybersecurity domains, including risk & governance, security operations, incident response, and identity & access management.

We’re looking for an individual who thrives on challenges & is ready to make a meaningful impact by uplifting & maturing a critical function within the bank.. This is an individual contributor role reporting to the Head of Information Security to own & deliver various improvement initiatives. Your excellent stakeholder engagement skills will be crucial as you collaborate with stakeholders across the business to embed security into operational processes & drive continuous improvement of the bank’s security posture.

**Top Role Accountabilities**:

- Continuous improvement of the bank’s security posture_
- Identification. Prioritisation & implementation of various security uplifts & initiatives.
- Drive automation & process optimization to reduce manual effort & improve efficiency in security operations.
- Develop & maintain a roadmap for security enhancements aligned with business objectives & regulatory changes.
- Monitor emerging threats & trends to proactively adapt security strategies & maintain resilience.
- Information Security Governance & Reporting _
- Driving the development & maintenance of frameworks, policies, & standards that keep us compliant with APRA CPS 234, ISO 27001, DORA & other regulatory requirements across Australia & New Zealand (e.g., RBA, RBNZ, Home Affairs).
- Prepare & deliver clear, concise, & insightful information security reports for senior management & the Board, including risk posture updates, compliance status, & progress on key initiatives.
- Providing expert guidance on governance, risk, & assurance strategies & matters while leading security awareness initiatives that foster a culture of accountability & resilience.
- Partnering with global teams, senior stakeholders, & governance forums to align security practices, manage third-party risks, & deliver measurable improvements in cybersecurity performance.
- Defining & monitoring key performance indicators (KPIs) & metrics to assess effectiveness.
- Third-Party Risk Management:_
- Collaborating with supplier relationship managers, vendors, & internal teams to manage third-party cyber risks, integrate robust security practices into vendor processes, & design testing plans that meet regulatory & Rabobank standards.

**To be successful you will have**:

- A minimum of 5 years’ + experience in IT Cyber Security within financial services.
- Deep knowledge of security regulations, frameworks, standard & best practices (CPS 234 & SOCI, ISO 27001, NIST, CIS).
- Strong experience in risk assessment & mitigation strategies.
- An ability to design & oversee security policies, procedures & governance frameworks.
- A Cyber Security Qualification e.g. SSCP/CISSP/CISM.
- Excellent written & verbal communication skills.
- An ability to work independently & execute effectively.
- An ability to engage confidently & influence executive leadership, IT teams & external stakeholders.
- Proven experience with metrics & producing up to board level reporting.

Rabobank Australia values inclusion, belonging, & positive experiences for all. Our work environment, our benefits, & the way we live our values, “Client Driven”, “Responsible”, “Professional” & “Cooperative” make it a great place to work. We welcome applicants from diverse backgrounds.

Please let our Talent Acquisition team know if you need any accommodations to make our opportunities more accessible to you.