Manager Cyber Technology and Data Risk

Your responsibilities include: Operational Risk Assurance: Targeted operational risk oversight and advisory across digitally-enabled business units to support alignment with strategy, business outcomes and compliance with APRA Prudential Standards. Performing targeted assurance reviews of key cyber, data and technology domains to provide insight into risk and control environment maturity. Oversight, challenge and review of control design, implementation and assessment. , Second Line risk representative on relevant risk forums, management risk committees, project working groups and steering committees. Second line challenge and oversight of operational risk and governance frameworks including incidents and issues Monitor and report on key risk indicators, issues, incidents, metrics, and emerging risks. You are accountable for creating a culture of delivery, teamwork, commitment to excellence and a professional ethic that enables the achievement of team and organisational objectives. Across the Risk team you are responsible for supporting the delivery of team outcomes and behaviours.You will help lead the team by building on our strengths and in a manner that supports continued high levels of engagement and satisfaction. Compliance and regulatory adherence Ensure compliance with relevant APRA standards, including CPS230, CPS231, CPS232, CPS234, and CPG235. Stakeholder engagement Provide Second line challenge and oversight on operational risk and governance frameworks. You are accountable for the execution of the operational risk strategy that supports the bank’s strategic objectives across its key portfolios and customer segments, and assisting in the articulation of that strategy with senior leaders and regulators. Work across the Bank to promote a risk aware culture. Provide training and awareness programs as required. Perform the role of Second Line risk representative on relevant risk forums, management risk committees, project working groups and steering committees Continuous improvement Stay updated with industry best practices and emerging risks. Implement continuous improvement initiatives to enhance the effectiveness of the second line of defence. Lead and participate in risk management projects and initiatives. Your experience will generally be consistent with demonstrating capability across risk and technology domains. This would include direct, transferable or equivalent experience in most of the following: Minimum of five(5) years’ experience in risk management roles or roles with a significant risk management component. Experience in dealing with business management, operational risk, model risk, technology risk, project, product or process management issues in a financial or related institution, or in a consultancy/audit capacity. Knowledge of relevant financial services regulatory and compliance considerations. Knowledge of relevant cyber (ISO 27000 Series, NIST, SOC 2, etc) technology (ITSM, COBIT etc) and data (DAMA / DMBOK) standards and frameworks. Some knowledge of Project Management (PMBOK / PRINCE2) frameworks is also desirable. Experience with both strategic and operational perspectives of technology, cyber and data, with the ability to communicate and relate these to non-technical stakeholders.