Senior Manager, Third-Party Cyber Incident Management

Senior Manager- Third Party Cyber Incident Management

See yourself in our team:

Cyber Security protects the bank and our customers from theft, loss and risk events, through effective and proactive management of cyber security, privacy, fraud, physical security and operational risk.

Do work that matters:

The Third Party Cyber Incident Management team, protects the bank and our customers from theft, losses and risk events, through effective and proactive management of cyber security incidents, threats, privacy and operational risk. The team is passionate about identifying opportunities to leverage existing and new technologies to mitigate risks that span across cyber, fraud and protective security domains.

Your impact and contribution

Responsibilities include:

You will be expected to perform the following tasks in a manner consistent with CBA’s Values and People Capabilities:

• Lead and uplift the capabilities of the Third Party Cyber Incident Management team
• Lead third party cyber security incident management activities to identify, coordinate, investigate and resolve incidents, as part of the Cyber Defence Operations function in accordance with the Group's Third Party Cyber Incident Response Plan.
• Monitor and analyse key intelligence points to ensure timely management of bank related incidents.
• Analyse and prepare reports on third party cyber incident management activities to team members, stakeholders and the leadership.
• Improve current processes and tools to maximise the efficiency and productivity of the team’s technical capabilities.
• Act as a subject matter expert and key point of contact; providing advice on detection, containment, eradication and recovery phases throughout a third party cyber incident.    
• Work with the business, risk, privacy and compliance stakeholders to ensure compliance with Group Policies, risk standards and obligations.
• Build awareness of the Third Party Cyber Incident Management function, educating business stakeholders and extended teams.
• Manages activities to define policies, guidelines and standards.
• Supports the embedding of a risk and control culture across our business stakeholders.
• Actively participate and raise initiatives to create new technologies and platforms to drive improvements in the operational response to third party cyber incidents.
• Drive consultation within Cyber Defence Operations to identify and develop opportunities to improve the operational effectiveness of the Third Party Cyber Incident Management team and materially reduce security risk through technologies and data.
• Effectively manage relationships with the key stakeholders including security, business and technology partners, colleagues and other external teams
• Continual research into banking cyber security threats including malware, phishing, botnets, and other threat actor techniques and tactics.

We are interested in people who have:

• Strong experience in Cyber Security incident response (and/or High Priority Incident Management) within the financial services industry or security consulting firms
• Experience in systems architecture highly regarded.
• Strong experience in people leadership and expanding capability of the team function
• Broad knowledge of relevant local and international legislation and regulations, including APRA CPS 234, Privacy Act 1988, GDPR, and the SOCI Act
• The ability to capture and articulate intelligence in a clear, concise manner, both verbally and written
• A strong technical ability across technology and cyber security to analyse and respond to trends, critical threats and opportunities, and the ability to diagnose problems and issues and recommend appropriate actions
• The ability to navigate and optimise security technologies and operations
• Experience in critical thinking and driving productivity improvements
• Clear oral and written communication skills, including the ability to influence across a range of stakeholder groups
• Experience in managing dependencies between complex environments..

If you're already part of the Commonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We’re keen to support you with the next step in your career.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.