Senior Manager Cyber Governance and Compliance

Senior Manager Group Cyber Governance and Compliance

• You are a passionate cybersecurity risk professional with strong expertise in governance, risk and compliance
• We are one of the best and most advanced Cyber Security teams in Australia
• Together we can contribute to protecting the Group, its customers and community from current and evolving cyber threats.

See yourself in our team:

Our Group Security teams are responsible for providing best-in-class security, resiliency and reliability for the Group, its subsidiaries and its customers. They help keep our people and customers safe, sound and secure whilst helping us maintain our position as Australia's most trusted Bank.

Our cyber team is committed to building leading end-to-end cyber capability, prioritizing the protection of our critical assets, instilling disciple to deliver securely at velocity and safeguarding Australians through cross-sectoral partnerships.

Do Work that matters:

You will be playing a critical role in leading the development, implementation, and oversight of security governance, risk, and compliance frameworks. You will deliver cyber risk governance activities including risk reporting to specialist committees and Board.

You will also be responsible for:

• Developing and maintaining governance frameworks to support the Group's information security risk and compliance objectives.
• Collaborate with Enterprise Risk and Line 2 risk management to ensure cyber risk is integrated in Group's risk frameworks
• Provide accurate, timely and pragmatic subject matter expertise in relation to information security governance and frameworks.
• Report on information security risk in respect of information security initiatives, activities, processes and metrics, with reference to the Group Information Security Policy Framework, legal and regulatory obligations and industry best practices including (but not limited to) NIST Cybersecurity Framework 2.0.

We are interested in hearing from people who have a:

• Well-developed risk mindset - to the ability to proactively identify, understand, communicate and act on current and emerging cyber security risks.
• Previous experience with information security risk and control management frameworks and translating and implementing those within complex organisations.
• An understanding of cyber security control design, implementation and assurance testing processes.
• Experience with industry security standards such as ISO/IEC 27001, NIST CSF, E8 and COBIT 5.
• Strong negotiation and influencing skills to effectively interface with and manage key stakeholders from three lines of risk, including ability to present and translate technical information for stakeholders in other parts of the business.
• Demonstrated experience in working to tight timeframes with senior technical and non-technical stakeholders to communicate risk.

Technical Skills:

• Risk and Control Frameworks (Operational Risk Management Framework)

Whether you're passionate about customer service, driven by data, or called by creativity, a career here is for you.

Our people bring their diverse backgrounds and unique perspectives to build a respectful, inclusive and flexible workplace. We are working hard to build a team of people who represent the rich diversity of our customers and communities. If you're excited about this opportunity but you don't meet every single requirement, or your experience doesn't align perfectly, we still want to encourage you to apply. You may just be the perfect candidate for this opportunity or another within CommBank.

At CommBank we will inspire you with work that makes a difference, surround you with talented people that respect and value each other, and empower you to grow professionally and personally. Most of all, making a positive impact for customers, communities and each other is part of our every day.

We're determined to make a real difference for Australia's first peoples. We encourage all interested applicants to apply. If you're already part of the Commonwealth Bank Group (including Bankwest), you'll need to apply through Sidekick to submit a valid application. We're keen to support you with the next step in your career.