IT Risk

ASIC is seeking a full time IT Risk & Governance Specialist to join their ePPO -Enterprise Portfolio and Performance Office Team
- Experience in working on large audit reviews and control testing activities is highly beneficial
- Salary starting from $117,382-$132,272 depending on experience (plus up to 15.4% superannuation)
- Permanent position based in Sydney

A future with ASIC means that your work will contribute to ASIC's vision for a fair, strong and efficient financial system for all Australians. We value what you will bring. We value those with sharp, analytical minds and are open to challenging the way things are done.

The team
Enterprise Portfolio and Performance Office (ePPO) is a centralised team whose purpose is to drive efficiency and uplift new capability such as program delivery, insight, change and continuous improvement across ASIC. We are undertaking major technology projects that will transform our business and continue our significant technology transformation in several areas such as virtualisation, mobility, and cloud.
The ePPO provides project and program management services, procurement services, and assurance and governance oversight. The team is also responsible for the business planning and change management function.

The role
- Test internal controls and robust testing of controls to ensure controls work effectively and as intended
- Schedule, plan, report and track established processes for auditors and reviewers such as ANAO, Internal Audit third parties, Gateway reviewers and DTA officers and act as IT's contact for these audit reviews
- Draft accountability statements, terms of reference and other governance documents.
- Develop an understanding of ASIC's and the IT team's enterprise risk profile, including the identification, operation and effectiveness of appropriate strategies for mitigating and actively managing risks to within appetite or tolerance levels.
- Record, evaluate and investigate suspected internal compliance breaches and either rectify or escalate as appropriate
- Draft reports going to IT Conformance Board; IT Executive Council; Executive Risk Committee and Audit Committee as required
- Report on the status of compliance actions and controls for ASIC's IT Cyber Security posture; and pro-actively identify improvements and efficiencies in this area
- Contribute to the implementation of the IT Governance and Assurance uplift program of work
- Build collaborative relationships with ASIC IT teams and ASIC business teams (eg. chief risk office, internal audit, privacy team) to foster good risk awareness across teams and influence

About you
Qualifications and experience
- A tertiary qualification in Information Technology or equivalent experience.
- Ability to effectively present complex information to project and executive level audiences both verbally and in writing.
- Ability to work independently with limited supervision and be accountable for outcomes.
- Strong stakeholder management and liaison skills.
- A commitment to customer service excellence and professional representation combined with proven ability to communicate and accept responsibilities.
- Experience undertaking large audit reviews and control testing activities, recording and evaluating effectiveness and presenting results to senior management.
- Experience managing large audit processes, the relationship with auditors and tracking action items.
- Understanding of risk management including managing audit processes and control testing.

About ASIC

ASIC is Australia's corporate, markets, financial services and consumer credit regulator. Our vision is for a fair, strong and efficient financial system for all Australians.
A future with ASIC means that your work will contribute to achieving ASIC's vision.
ASIC is an equal opportunity employer seeking people who want to make a difference. ASIC is committed to a diverse and inclusive workplace where the very best talent in Australia chooses to work. Applications from people of all ages, cultural backgrounds, abilities, LGBTIQ+ identity, and people of Aboriginal and Torres Strait Islander descent are encouraged to apply.
To work with us, you need to be an Australian citizen, and be prepared to complete an ASIC Suitability and Baseline Assessment which is issued ASIC's Security team.