Manager Cyber Risk

2 weeks ago


Sydney, Australia Commonwealth Bank of Australia Full time

Manager Cyber Risk

**See yourself in our team**:
The Technology and Operations (Tech & Ops) Risk team is responsible for providing specialist Operational Risk and Compliance (OR&C) advice and assurance of decisions made across the Technology, Chief Operating Office, and Business Unit divisions.

**Do work that matters**:
The Manager Cyber Risk plays and essential role within the **Security Operational Risk **team supporting the Group Security division. Work with the Executive Manager Cyber Risk to provide independent Line 2 advice and assurance over Line 1 implementation of the Risk Management Approach, the Operational Risk and Compliance Management Framework and actively uplift risk capability across the Cyber Security functions.

**Key responsibilities for this role include**:
**Technical**:

- Provide SME risk management advice to crews aligned to the following cyber domains: Application & Service Protection, Vulnerability Management, Data Security, Cloud Security, Third Party Security, Identity & Access Management, and Cyber Defence.
- Working as part of a team of professional SMEs to provide independent, pragmatic and value adding Operational Risk advice and assurance for technology and cyber risks across the Group.
- Monitoring and reporting of three lines of accountability (3LoA) activities to the Executive Manager, including BAU management of the Risk Management Approach, the Operational Risk Management Framework and Compliance Management Framework in support of CPS 220.
- Contributing to the oversight and monitoring of key technology and cyber risks, controls, issues, incidents, and risk-in-change.
- Supporting the appropriate identification, escalation and reporting of all related technology and cyber risk and compliance matters to the relevant stakeholders, including the relevant NFRCs, your EM/GM and to the Technology and Operations CRO.

**Leadership**:

- Work as part of a cross-skilled team that can support a range of inter-connected risk domains; speaking up and contributing to appropriate Line 2 oversight and challenge.
- Provide ideas for Line 2 risk management and assurance activities, data analytics and stakeholder reporting; contribute to a culture of learning and collaboration.
- Role model behaviours that are consistent with CBA values expectations and leadership principles; provide a safe workplace for all team members, customers and visitors.
- Develop and maintain partnerships with stakeholders; become a trusted advisor using commercial acumen, practical recommendations; and assist the business to understand where prioritised focus on key risks and compliance matters is required.

**We're interested in hearing from people who have**:

- Experience required in cyber security with sound knowledge of applicable industry standards, frameworks and regulations (e.g. CPS234, NIST, ISO27001, Information Security Manual, Essential 8, OWASP, MITRE).
- Preference for information security certification (e.g. CISM, CRISC, CISSP).
- Background in Operational Risk and Compliance with technology and cyber risk management specialties within the Financial Services industry highly regarded.
- High quality written and verbal communication skills, report writing, evidence gathering and data analysis capabilities.
- Stakeholder and influencing skills with the ability to proactively engage Line 1 teams and engender trust with pragmatic, commercially balanced risk advice.
- A curious and humble mindset, understanding of external trends and changes, interest in continuous learning, to build risk management best practice.

**Your Career**:
If you live the values and demonstrate the people capabilities we can offer great opportunities. Whether you want to move across the organisation or up into a leadership role, the way you live the values and demonstrate the people capabilities are key. Use the capabilities required for this role as a guide to the critical skills and behaviours you need for your next move.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.

Advertising End Date: 25/09/2024

Job ID REQ218629


  • Cyber Risk Manager

    2 weeks ago


    Sydney, Australia Allianz Australia Full time

    **CYBER RISK MANAGER - RISK AND COMPLIANCE MANAGER | SYDNEY, NSW** At Allianz, we’re proud to be one of the world’s leading insurance and asset management brands, with a workforce as diverse as the world around us. We care about our customers, which is why we hire the very best people to further our commitment to securing the future of our customers,...

  • Manager, Cyber Risk

    2 weeks ago


    Sydney, Australia Clyde&Co Full time

    Job Title - Manager, Cyber Risk - Job Location - Sydney - Job Type - Business Services - Country/Territory - Australia - Region - Asia Pacific - Description **About the team** Clyde & Co is an international law firm, with the largest, dedicated cyber incident response practice in Australia. The team advises small, medium, and large organisations...


  • Sydney, New South Wales, Australia beBeeRisk Full time $100,000 - $185,000

    Job OverviewThis role is responsible for managing cyber risk, coordinating assurance activities, and implementing security frameworks to improve outcomes and efficiency.Key Responsibilities:Support and maintain the Cyber Governance, Risk, and Compliance (GRC) program, including third-party security assessments and risk register management.Collaborate with...

  • Head of Cyber Risk

    1 week ago


    Sydney, Australia Westpac Banking Corporation Full time

    Head of Cyber Risk - Permanent - Sydney - Role sits in Risk Division / 2nd Line of Defence Function **How will I help?** As the Head of Cyber Risk, reporting to the Chief Risk Officer for Technology, you will join the Risk Division in a 2nd Line of Defence function and set, own, advise and report on the Group-wide approach to managing Cyber Risk. You will...

  • Head of Cyber Risk

    2 weeks ago


    Sydney, Australia Westpac Full time

    Permanent - SydneyRole sits in Risk Division / 2nd Line of Defence Function **How will I help?** As the Head of Cyber Risk, reporting to the Chief Risk Officer for Technology, you will join the Risk Division in a 2 nd Line of Defence function and set, own, advise and report on the Group-wide approach to managing Cyber Risk. You will have responsibility for...

  • Cyber Risk Consultant

    2 weeks ago


    Sydney, Australia Aon Full time

    Full time, permanent opportunity based in Sydney **Cyber Risk Consultant** This role is responsible for helping to set the strategy in relation to Aon’s Cyber Risk endeavours. In the role you will be executing the provision of Cyber Risk consulting services to a variety of clients within our corporate and global segments. The portfolio cuts across all...


  • Sydney, New South Wales, Australia beBeeCybersecurity Full time

    Cyber Security Advisory Lead Role Overview:">">Manage and lead a team in delivering risk assessment services.">Provide expertise and advisory services to stakeholders on ICT security risks.">Assess and document security risks, recommending treatment actions.">Advise on cyber security compliance, developing standards and strategies.">Contribute to the...


  • Sydney, Australia Aon Corporation Full time

    Posting Description: - Key leadership opportunity for a senior Cyber specialist - Work across an enviable portfolio for our Australian operations - Join one of Australia’s leading Cyber Risk solutions provider **Cyber Risk Consultant** You will be an integral component of the Cyber Solutions Group, working closely with the Cyber Insurance Practice...

  • Cyber Risk Consultant

    2 weeks ago


    Sydney, Australia Aon Full time

    **Job Description**: - Key leadership opportunity for a senior Cyber specialist - Work across an enviable portfolio for our Australian operations - Join one of Australia’s leading Cyber Risk solutions provider **Cyber Risk Consultant** You will be an integral component of the Cyber Solutions Group, working closely with the Cyber Insurance Practice...

  • Cyber Risk Manager

    6 days ago


    Sydney Central Business District, Australia Enterprise IT Resources Pty Ltd Full time

    Cyber Risk Manager Job Title: Cyber Risk Manager Contract Type: Contract Salary: AU$1250 - AU$1326 per day + WFH flexibility Reference: 6763 Contact Name: Tito Tealdo Job Description - **Duration**:Initial 6 months + view to extend - **Pay rate**:$1326 per day - **Location**:Sydney CBD/WFH flexibility**Key accountabilities**: - Coordinate the risk...