Senior Manager Cyber Governance Risk & Assurance

Sydney, Australia

Cuscal

Cuscal is a payments & regulated data services provider in Australia. Since 1966 we have enabled banks, corporates and fintechs to better serve and connect with their customers.

View all jobs at Cuscal

Apply now Apply later

Company Description

For a winning team that is evolving.  Forward with Cuscal.

At Cuscal, you’ll find a strong, successful company that’s reimagining the future. And our team is right there at the heart of it all. Here, you’ll deliver or support interesting, ground-breaking projects that have real impact - on Australia’s financial services sector and the millions of customers it serves. You’ll innovate alongside skilled, smart, connected teams. And you’ll build an impressive, fulfilling career that continues to grow. As the largest independent payment solution providers, we’ve set the standard for over 50 years. Now, we’re preparing to pioneer the next 50.

Job Description

We are looking for Senior Manager, Cyber Governance, Risk & Assurance to join our dynamic and evolving IT Security team!

What is this role about?

As the Senior Manager, Cyber Governance, Risk & Assurance you will, lead the development and execution of the cyber governance, risk management, and assurance strategy. This role ensures that cybersecurity risks are effectively identified, assessed, managed, and mitigated, in line with the organization's risk appetite and regulatory requirements.

Here’s some more insight into what you’ll work on,

Cyber Governance & Risk Management:

  • Develop and maintain the Cuscal’s cybersecurity governance framework, ensuring alignment with industry best practices, regulatory requirements, and business objectives.
  • Lead the development of policies, procedures, and standards that support the Cuscal’s cybersecurity risk management program.
  • Oversee the identification, assessment, and management of cybersecurity risks, ensuring alignment with the Cuscal’s risk appetite and tolerance levels.
  • Provide leadership and oversight for the development and maintenance of cyber risk registers, ensuring timely updates and accurate reporting to senior leadership.

Cyber Assurance:

  • Develop and execute a cybersecurity assurance program, including audits, assessments, and third-party assurance activities, to ensure ongoing compliance with internal policies, regulatory requirements, and best practices.
  • Lead the response to internal and external audit findings related to cybersecurity, working with stakeholders to implement corrective actions.
  • Develop and implement a comprehensive cyber assurance framework that monitors and ensures the effectiveness of cybersecurity controls across the Position Description business.
  • Coordinate penetration testing, vulnerability assessments, and other assurance activities to continuously monitor and improve the organization’s security posture.

Strategic Contribution:

  • Contribute to the development and execution of the organization’s cybersecurity strategy, ensuring alignment with business objectives and evolving regulatory requirements.
  • Stay current with emerging trends, threats, and regulations in the cybersecurity landscape, ensuring that the governance, risk, and assurance programs are forward-looking and resilient.

Qualifications

What can you bring?

  • 10+ years of progressive experience in Cybersecurity, with at least 5 years in leadership role focus on cybersecurity governance, risk management, and assurance roles
  • Be able to navigate the challenges of a varied role in a dynamic organisation.
  • Ability to identify tasks and activities required to meet project requirements and to set goals and priorities in line with business objective.
  • Ability to contribute to short, medium- and long-term planning and effectively promote ideas.
  • Significant people management experience.
  • Strong knowledge of security standards and frameworks including ISO27001, SOC2, PCI DSS and NIST.
  • Proven track record in managing complex cyber risk and assurance programs in large organisations.

Although not required, any experience in the following would be highly regarded:

  • Payment’s industry, ATM/EFT/POS technology, cards and finance or other regulated industries and/or 24x7 mission-critical environments. 
  • Knowledge of security frameworks and standards such as CPS234, ASD Essential 8 etc. 
  • Understanding of legal, regulatory, privacy and security matters associated with the Banking and Finance Industry. 

 

Additional Information

What’s it like to work here?

As well as good pay and a great culture, we back our employees by helping them work towards industry-recognised qualifications, using online learning, training modules and career planning tools for you to grow with us. We are committed to providing a diverse and inclusive workplace where the very best talent in Australia chooses to work. We support our colleagues with flexible work arrangements through our hybrid model whilst also offering a wide range of financial, lifestyle, health & wellbeing benefits.


How do you Apply?

Start here. Just click on the APPLY button.

If you think this role is the right fit for you, we invite you to apply. Let’s explore who you are and what drives you. We’d love to share our vision for the future of payments sector. Please note candidate screening and interviews may be conducted prior to the closing date of the job advert.

Cuscal does not accept unsolicited resumes from recruitment agencies and search firms. Please do not email or send unsolicited resumes to any Cuscal employee, location or address.

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  2  0  0

Tags: Audits Banking Compliance Finance Governance ISO 27001 NIST PCI DSS Pentesting Privacy Risk management SOC 2 Strategy

Perks/benefits: Career development Flex hours Health care

Region: Asia/Pacific
Country: Australia

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.