Senior Manager

Position Summary

As the Senior Manager, Regulatory Compliance at China Construction Bank Corporation, Sydney Branch ("CCBS"), the role holder will be responsible for defining and delivering a comprehensive, fit-for-purpose regulatory compliance strategy. This strategy will cover a wide range of compliance areas relevant to wholesale banking, including licensing and authorisation requirements, prudential standards, reporting and disclosure obligations, privacy and data protection, governance and accountability frameworks, as well as regulatory breach and event management.

The Senior Manager of Regulatory Compliance will combine expert knowledge of regulatory requirements with the ability to lead and influence across both strategic and operational levels. As a key figure within the compliance team, the role holder will be responsible for ensuring the organization's adherence to evolving regulatory frameworks and obligations, while proactively managing risk within a complex, fast-moving business environment. The Senior Manager will play an instrumental role in elevating the compliance function, fostering a culture of integrity, transparency, and continuous improvement.

This role requires a leader who is hands-on in developing, implementing, and monitoring compliance policies, processes, and training programs, while also serving as a trusted advisor to senior leadership. The Senior Manager will work closely with cross-functional teams to ensure alignment with both local and global regulatory expectations, driving the integration of compliance best practices and ensuring ongoing regulatory readiness. Through proactive leadership and operational excellence, they will help safeguard CCBS's reputation and operational resilience in a rapidly changing regulatory landscape.

Key Responsibilities

Compliance Framework and Governance

• Set the Strategic Direction for Compliance: Collaborate with the Head of Internal Control & Compliance to design, articulate, and implement a forward-looking compliance strategy that is proportionate to CCBS's banking operations and aligned to strategic objectives.
• Proactively Anticipate Risks & Regulatory Developments: Provide critical insights on emerging regulatory trends, prudential standards, and market conduct risks, ensuring the compliance framework evolves in response to both domestic regulatory changes (e.g., APRA, ASIC, RBA) and global developments impacting wholesale banking.
• Use Risk & Data-Driven Insights: Leverage compliance risk assessments, thematic reviews, risk indicators, and external intelligence to identify key areas of vulnerability and set compliance monitoring and advisory priorities. Use this evidence base to advocate for resources, system enhancements, and process improvements that strengthen compliance resilience.
• Foster a Culture of Compliance: Engage with senior leadership to promote shared ownership of regulatory compliance outcomes across all lines of defence. Reinforce the expectation that regulatory compliance is not a control function alone but a core element of business execution, safeguarding both CCBS's license to operate and its reputation.

Policy Development & Maintenance

• Lead the creation and implementation of a comprehensive, thematic Compliance Policy Framework encompassing key regulatory compliance domains such as Conduct, Market Integrity, Data Protection, Event and Breach Reporting, Gifts and Benefits, and Whistleblowing, while remaining flexible to cover all current and emerging compliance obligations in wholesale banking. The Framework must ensure compliance with applicable laws and regulations (e.g., Corporations Act, ASIC and APRA requirements, Privacy Act, FAR/BEAR) and align with internal group standards and industry best practice.
• Lead efforts to test the sufficiency and effectiveness of the Policy Framework by implementing a structured and ongoing evaluation process. This includes designing and overseeing regular risk assessments, targeted compliance reviews, and thematic audits to identify weaknesses, inconsistencies, or outdated practices across the policy suite.
• Take ownership of overseeing timely and effective corrective action plans to address identified deficiencies in the Policy Framework and ensure continued compliance and relevance. This includes identifying root causes of gaps, updating policy content, enhancing procedural guidance, strengthening control mechanisms, or delivering targeted training to affected teams. Each corrective action plan will be documented with clear timelines, assigned accountabilities, and measurable success criteria to enable transparent tracking and follow-up.

Oversee CCBS's Licensing Requirements

Safeguard the Bank's License to Operate: Take ownership of ensuring that all licensing conditions under APRA, ASIC, and AUSTRAC regimes are continuously satisfied, proactively monitored, and embedded into business-as-usual operations.

• Strategic Oversight of Licensing Obligations: Oversee CCBS's authorisations under the Banking Act 1959, including APRA authority, as well as any AFSL/ACL obligations where wholesale products or services require them. Ensure the bank's operating model and governance structures remain consistent with the scope of these authorisations.
• Licensing Change Management: Provide strategic guidance on the compliance implications of new business initiatives (e.g., new products, markets, or booking models), ensuring licensing requirements are addressed upfront to avoid regulatory friction or operational risk.

Drive Effective Compliance

• Provide strategic oversight: to ensure the bank consistently meets all regulatory, legal, and internal compliance obligations across CCBS's operations.
• Embed accountability and ownership throughout the business by ensuring compliance responsibilities are clearly understood, monitored, and enforced across all levels of the organisation.
• Implement a structured Event and Breach Reporting capability as a core component of compliance management, enabling timely identification, assessment, escalation, and remediation of incidents or breaches. This ensures issues are addressed in accordance with regulatory requirements (e.g., APRA, ASIC, AUSTRAC) and internal governance standards.
• Drive continuous improvement and resilience by analysing incidents and breaches to identify systemic issues, strengthening policies, procedures, controls, and training programs to prevent recurrence.
• Ensure transparent reporting and escalation to Head of Internal Control and Compliance using insights from compliance monitoring and breach management to proactively enhance the bank's overall compliance posture.

Anticipate and Navigate Regulatory Change

• Provide strategic oversight and leadership for regulatory change management, ensuring the bank proactively identifies, assesses, and implements changes across all compliance obligations.
• Establish a structured regulatory change program that systematically monitors domestic and international regulatory developments, industry trends, and emerging supervisory expectations. Ensure timely assessment of impact on policies, procedures, controls, and staff responsibilities.
• Lead the design and execution of change initiatives by collaborating with first-line business units, control owners, to embed new regulatory requirements effectively into business operations while mitigating compliance risk.

Assurance

• Build and execute a formal compliance assurance plan establishing foundational processes, methodologies, and scoping criteria that align with CCBS's risk profile, regulatory obligations, and internal control framework evolving to become more data-driven and targeted, incorporating feedback from early reviews, lessons learned, and maturing control environments.
• Generate actionable insights and establish a clear process to document findings, assign ownership for remedial actions, and track progress to resolution.
• Take ownership of leading the development and completion of comprehensive enterprise-wide risk assessments. These assessments will identify key risk drivers, emerging threats, and areas of heightened vulnerability, providing critical input into the design and prioritization of control testing and assurance activities.
• Report to senior governance forums including the Internal Control and Compliance Committee and Risk Management Meeting providing transparency on control health, assurance outcomes, and remediation status.

Control Testing

• Lead the development and implementation of a comprehensive, risk-based control testing framework that evaluates the design adequacy and operating effectiveness of key compliance controls across all regulatory and internal policy obligations. The framework will be scalable, aligned with regulatory expectations, and incorporate clear methodologies for testing, documentation standards, sampling approaches, and performance metrics to ensure consistent and reliable assessments.
• Drive remediation and continuous improvement by ensuring that identified control weaknesses and compliance gaps are addressed through structured programs with defined accountability, timelines, and measurable outcomes. This strengthens the overall compliance and control environment and ensures adherence to regulatory obligations.
• Act as a trusted advisor to first-line business leaders and control owners, providing strategic guidance and practical recommendations to improve control design, embed effective risk management practices, and foster accountability for compliance across all areas of the business.

Training & Awareness

• Develop and implement a structured and comprehensive compliance training and awareness program that supports CCBS's commitment to regulatory compliance, ethical conduct, and risk-informed decision-making. The program will adopt a risk-based approach, prioritising content development and delivery according to the regulatory obligations, thematic compliance areas, and risk exposure of different staff groups.
• Ensure the program remains current, relevant, and effective by establishing a defined review and update cycle triggered by regulatory changes, audit or assurance findings, internal incident learnings, or industry developments.
• Empower first-line business teams with practical knowledge and tools to identify, manage, and escalate compliance risks effectively. This includes clear guidance on how to incorporate regulatory obligations into day-to-day activities, make informed decisions, and adhere to internal policies and escalation protocols.
• Promote a culture of compliance awareness across CCBS, reinforcing that compliance knowledge is a shared responsibility critical to protecting CCBS's reputation, operational integrity, and regulatory standing.
• Stakeholder Engagement & Communication
• Act as a trusted advisor to the 1LoD and business management providing critical insights on emerging regulatory and compliance risks, regulatory changes, and internal control gaps. Use data-driven assessments, risk indicators, and trend analysis to advise on compliance priorities, ensuring that decision making is aligned with regulatory requirements and industry standards.
• Serve as the primary representative of the regulatory compliance function in both internal and external forums. Proactively contribute to discussions around the development of industry standards, regulatory expectations, and collective responses to emerging financial crime trends. Leverage the insights gained in these forums to enhance CCBS's policies, procedures and controls.
• Ensure proper execution of internal and external reporting ensuring that it maintains the characteristics of accuracy, completeness and timeliness.

Leadership

• Lead the creation and execution of individualized development plans that align each team member's role-specific responsibilities, with their personal career goals. These plans will reflect regulatory expectations, the evolving nature of compliance risks, and internal control frameworks.
• Implement a performance management approach that fosters a culture of continuous improvement, professional growth, and accountability.

Ad-Hoc Responsibilities

Execute compliance-related tasks and projects as assigned by the Head of Internal Control and Compliance.

Experience & Qualifications

• Bachelor's degree in Law, Finance, Commerce, Business, or related field (postgraduate qualifications or certifications such as GRCI, ICA, or equivalent are highly regarded).
• 8–10 years' experience in a regulatory compliance or second-line assurance role within financial services, including at least 5 years in a leadership position.
• Strong knowledge of Australian regulatory frameworks (APRA, ASIC, AUSTRAC, ACCC) and familiarity with international standards and guidance.
• Proven expertise in developing, implementing, and managing compliance frameworks, policies, and monitoring programs.
• Demonstrated ability to manage regulatory engagement, including responding to reviews, information requests, and remediation programs.
• Strong data and analytical skills, with experience using compliance technology and reporting tools.

Core Capabilities

• Strong strategic and analytical thinker, capable of translating regulatory requirements into practical compliance solutions.
• Exceptional communication skills—able to simplify complex regulatory issues for diverse audiences, from board members to frontline staff.
• Strong stakeholder management and influencing skills, with the ability to engage across all levels of the organisation and externally.
• Resilient and adaptable, able to manage competing priorities in a dynamic regulatory environment.
• Proven leadership capability—building, motivating, and developing teams to achieve high standards of excellence.
• High level of integrity, accountability, and commitment to fostering a culture of compliance.