Technology, Cyber & Operational Risk Lead
Melbourne Support Centre
Applications have closed
Australia Post
Australia Post provides reliable and affordable postal, retail, financial and travel services.General information
Press space or enter keys to toggle section visibility
Name Technology, Cyber & Operational Risk Lead Site / Location Melbourne Support Centre Ref # 12365239 Entity Australia Post Opening Date 31-Oct-2024 Suburb Richmond Work Type Permanent Full TimeDescription & Requirements
Press space or enter keys to toggle section visibility
Help us deliver like never before
We’re looking for a Technology, Cyber & Operational Risk Governance Lead to join our diverse, talented and innovative digital technology team who together are helping our customers and communities build a better future. Together, we design, build and maintain products, services and experiences that Australian's love and trust, while delivering a sustainable future for Australia Post, and you could be part of that.
We're empowered to deliver for our teams and to delight our customers. We provide an inclusive and supportive environment that nurtures talented people, trusts our teams to deliver their best, and leverages modern work practices and technologies. It's an unexpectedly dynamic and collaborative culture that feels more like a start-up than a 213-year old icon.
What you’ll deliver with us
The Technology, Cyber & Operational Risk Lead is responsible for leading and governing the process for identification, assessment, and mitigation of technology, cyber and associated compliance and operational risks across the organization. This role will also oversee the effective governance of Information Security and related Technology standards. This role will work closely with the Enterprise Services technology, operations, and business teams to provide advice, insight, guidance and support and ensure that effective risk management practices are in place.
You will provide support to the Head Of Cyber GRC and lead the 1st Line supervision and management of the Information Security, Cyber Security, Technology and associated operational risks for the Enterprise Services business unit. This position runs regular and ad-hoc reviews into areas of significant technology or information security risk to the organisation, including deep dives, and facilitating commercial solutions for any issues that may arise
You’ll also
- Work collaboratively with the technology and business teams to facilitate risk assessments, evaluation, mitigation, risk acceptance and reporting across IT, Cyber Security and Projects
- Oversee the development, rollout, embedding and periodic management of Information Security policies and standards, govern the effective implementation of the policies and influence stakeholders
- Lead and assist with reporting on risks, KRIs and controls testing for various forums including the Audit & Risk Committee, GM operational forums and Risk Representative Working Group
- Act as a key knowledge source for the continuous improvement of CISO activities based upon contemporary Technology, Cyber and Resilience risk management practices
- Drive process consistency across the GRC function including for risk assessments, compliance management and assurance activities
- Effectively influence stakeholders to negotiate and agree appropriate risk recognition, mitigation plans, and resource commitments to mitigate technology and information security risks for the organisation
About you
We are looking for someone with a lead or senior management background who can support the 1st Line Cyber Governance, Risk & Compliance (GRC) function and the CISO in effectively governing and discharging its responsibilities. You are able to collaborate with internal Audit and external reviewers to facilitate effective reviews including ensuring appropriateness of scope and findings. It is vital to maintain working relationships with Line 2 Risk & Compliance functions as well as other Group functions such as Legal, Procurement.
You’ll also need
- Broad experience working across policy, compliance, risk and security governance at a senior manager level ideally within a financial services or complex environment.
- Strong understanding of technology and cyber risk management frameworks (e.g. ISM, ISO27001, E8, NIST), operational risk management, and controls assurance practices.
- Ability to suport the deployment and operationalise the technology & cyber risk management framework across the enterprise
- Proven experience implementing best practice tools, templates and processes that improve IT resilience risk management across a large-scale enterprise.
- Knowledge of the IT & Cyber strategies and operations
- Information Security qualifications such as CISSP, CISM, CISA are desirable but not mandatory
- Member of relevant Professional Association / Institutes and external networking groups and industry involvement in security (such as AISA, ISACA or government led forums) is advantageous
How we’ll deliver for you
- Join Australia Post during this exciting transformation to “Deliver a Better Tomorrow”
- Enjoy a generous salary package and company benefits
We’re delivering together
At Australia Post, we acknowledge the Traditional Custodians of the land on which we operate, live and gather as employees.
We believe our business should reflect the diverse communities we operate in and are proud to be an inclusive workplace for people from all walks of life. We encourage applications from people of all ages, genders and backgrounds including Aboriginal and Torres Strait Islander peoples, People with Disability, LGBTQIA+ and Refugees. We are one of the largest organisations in Australia to successfully achieve Disability Confident Recruiter status. We are committed to providing an inclusive and barrier-free recruitment process and workplace for those living with a disability and are committed to reviewing and removing bias in our processes to create a gender-equitable recruitment experience and workplace. If you have any questions about accessibility, please contact our Diversity & Inclusion team on inclusivecareers@auspost.com.au
See and hear what it's like to be part of our teams in digital tech:
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: CISA CISM CISO CISSP Compliance Governance ISACA ISO 27001 NIST Risk assessment Risk management RMF
Perks/benefits: Startup environment
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.