Risk Compliance Officer

7 hours ago


North Sydney Council, Australia Sandstone Technology Full time $120,000 - $150,000 per year

Sandstone Technology is a leading provider of loan origination, internet banking and mobile banking solutions to financial institutions globally. Headquartered in Sydney, New South Wales and with offices in Manila in the Philippines and Leeds in the UK, Sandstone is delivering world's best practice strategic banking solutions to financial institutions globally. Our business is built around our people and our shared vision of continuous innovation, building market leading products, and partnering with our valued customers to transform banking experiences.

The Role

This is a global role working closely with customers, suppliers and internal stakeholders to drive security and compliance programs within Sandstone. The Risk & Compliance Officer will have responsibility for security policies and ensuring compliance with these policies, including driving an awareness program and culture within Sandstone. The role will also be responsible for the periodic training for relevant colleagues in Australia, Philippines and UK and the completion of compliance questionnaires.

The role will have significant autonomy and the successful candidate will be a key member in security discussions with Sandstone customers and suppliers.

Key Responsibilities

  • Ownership of ISO compliance process.
  • Maintain knowledge on relevant legislation and regulation (particularly as it relates to Australia and UK data protection, cyber security) and promulgate that knowledge within the organisation
  • Drive, maintain and enhance Sandstone's risk and compliance framework
  • Manage & coordinate to customer audit requests & RFP security questionnaires, provide required evidence and attestations, and provide client assurance packs
  • ISMS responsibilities, including updating and monitoring risk assessments, collating and reporting on metrics and conducting regular analysis of effectiveness of ISMS, escalating, following up and flagging non-compliance, managing ISMS incidents and mitigation plans and reviewing effectiveness of compliance and security training.
  • Review, update and manage ISMS policies and procedures
  • Supplier management, including undertaking periodic supplier assessments and managing supplier compliance in relation to SST policies
  • Organise / conduct annual internal audits and facilitate annual ISO Audits
  • Internal stakeholder management and influence in relation to Risk and Compliance priorities.

About you:

  • Minimum of 5+ years in a similar role
  • Experience with security governance, policies, principles, practices, standards and controls including ISO27001
  • Working knowledge of privacy legislation including GDPR, Australian Privacy Act, Australian Privacy Principles
  • Able to demonstrate the capability to manage Information security challenges at an enterprise level
  • Identify and resolve security risks using analytical and problem-solving skills
  • Proven ability to be highly organised and responsive
  • Strong communication and negotiation/influencing skills
  • Financial Services and/ or software house experience is preferable
  • Develop, manage and implement of SOC 2 & SOCI compliance framework initiatives.
  • Knowledge and experience in Data Security Management or PCI certification will be highly regarded.

Why Sandstone?

  • Career development planning and opportunities to achieve certifications such as SAFe, AWS
  • Access to learning & development resources as well as a personal budget and allocated time off for additional training of your choice
  • Flexibility and work/life balance
  • Opportunities to work with the latest technologies such as cloud, AI/ML (depending on your interests)
  • Fantastic team culture and social activities, weekly volleyball throughout the year (when possible)
  • Fully stocked fridge and snack cupboards

A bit about us

Before "fintech" was a thing, our founders were dreaming up new ways to transform banking, simplifying the customer journey and the employee experience.

29 years later Sandstone Technology is still leading the charge, innovating and evolving as the industry evolves. Our high client retention rate is our proudest achievement with 33 financial institutions across Australia, New Zealand, Asia and the United Kingdom placing their trust in our solutions.

If you like the sound of this challenge and are interested in working with us, apply now with your up to date resume



  • Sydney, Australia TMGM Full time

    The Compliance and Risk Officer works under the direction of the Chief Compliance Officer in collaboration with staff members in other departments. The Compliance and Risk Officer is responsible for coordinating and overseeing all risk management activities and providing guidance, advice and assurance to the Board and Risk Management Committee on risk...


  • Sydney, Australia Dimensional Fund Advisors Full time

    Notes to applicants: - Dimensional sees great value from collaborating in our offices and appreciates the benefits of flexibility. Most roles fit our office-first hybrid approach which includes working 3 days in the office and the choice to work 2 days in the office or remotely, depending on what is best for that work day. This maximizes in person...


  • Sydney, Australia Playgroup NSW Full time

    Risk and Compliance Officer - Hybrid Role - 37.5 hour week - SCHADS Level 4 **About us** Playgroup NSW, a values-based community service organisation, supports and delivers a range of universally accessible, targeted and inclusive programs and services. Our vision is to positively impact every NSW child, their family and community in the first 2,000 days...


  • Sydney, Australia Prospa Full time

    We're a passionate team of brilliant achievers, and together we're using technology to take the small business finance industry next level. Our mission is to keep small businesses moving - with smart cash flow solutions right when they need them. Supporting them through ups and downs. Making their lives easier. Helping them Prosper. **The role**: As the...


  • Sydney, Australia Employ Full time

    3 years Risk or Compliance Experience required - Big four banking Assurance and Compliance, Risk Frameworks lines 1,2,3 - Reporting to the head of Risk and Compliance - Managed Risk in line 1,2,3 and managed risk frameworks and controls - Attend senior Stake holder meetings - Manage a dynamic and challenging environment - Build very strong relationships with...


  • Sydney, Australia Brighte Full time

    Risk & Compliance Officer **Brighter Together** Our mission is the make sustainability affordable and accessible for everyone. By offering financial solutions to homeowners, we're making renewable energy and home improvements more accessible to the everyday Aussie. Our founder and CEO, Katherine McConnell, has been awarded Telstra Business Woman of the...


  • Sydney, New South Wales, Australia NextSense Full time $60,000 - $90,000 per year

    Our Purpose and AmbitionNextSense is a not-for-profit organisation supporting people with vision or hearing loss across Australia. We work with children, adults, and their families, providing a holistic approach to hearing services for newborns through to people over 90 years old, and helping children who are blind or have low vision to develop the right...


  • Council of the City of Sydney, Australia LGT Group Full time

    Risk and Compliance Advisor (Front Office) Sydney (AU) LGT is the largest Private Banking and Asset Management group in the world to be owned by an entrepreneurial family. As the family office of the Princely House of Liechtenstein, we have years of experience in the management of sizeable sums of assets. Your role - Risk, Legal & Compliance (RL&C)...

  • Group Risk

    7 days ago


    Sydney, Australia Blacktown Workers Club Group Ltd Full time

    Overview Workers Lifestyle Group is seeking an experienced Group Risk & Compliance Officer to join our Finance team. This is a high-impact role ideal for professionals from the Hospitality / Finance sector looking to broaden their remit across compliance, risk management, and ESG governance. You will play a key role in upholding the integrity,...

  • Compliance Officer

    11 hours ago


    North Sydney, Australia Shift Full time

    **Company Description**: At Shift, we’re business specialists dedicated to helping Australian SMEs take control of their cashflow, streamline trade terms and choose the right financial products. We believe Australian businesses are the driving force behind our economy and are core to our communities. That’s why our business expertise, focus on...