Manager, Third Party Cyber Incident Response

Manager, Third Party Cyber Incident Response

See yourself in our team:

Cyber Security protects the bank and our customers from theft, loss and risk events, through effective and proactive management of cyber security, privacy, fraud, physical security and operational risk.

Do work that matters:

The Third Party Cyber Incident Management team protects the Group and our customers from theft, losses and risk events, through effective and proactive management of cyber security incidents, threats, privacy and operational risk. The team is passionate about identifying opportunities to leverage existing and new technologies to mitigate risks that span across cyber, fraud and protective security domains.

Your impact and contribution

Responsibilities include:

You will be expected to perform the following tasks in a manner consistent with CBA’s Values and People Capabilities:

• Lead third party cyber security incident management activities to identify, coordinate, investigate and resolve incidents, as part of the Cyber Defence Operations function in accordance with the Group's Third Party Cyber Incident Response Plan.
• Monitor and analyse key intelligence points to ensure timely management of third party cyber incidents.
• Analyse and prepare reports on third party cyber incident management activities to team members, stakeholders and leadership.
• Improve current processes and tools to maximise the efficiency and productivity of the team’s technical capabilities.
• Act as a subject matter expert and key point of contact; providing advice on detection, containment, eradication and recovery phases throughout a third party cyber incident.    
• Work with the business, risk, privacy and compliance stakeholders to ensure compliance with Group Policies, risk standards and obligations.
• Build awareness of the Third Party Cyber Incident Management function, educating business stakeholders and extended teams.
• Support the embedding of a risk and control culture across our business stakeholders.
• Actively participate and raise initiatives to create new technologies and platforms to drive improvements in the operational response to third party cyber incidents.
• Drive consultation within Cyber Defence Operations to identify and develop opportunities to improve the operational effectiveness of the Third Party Cyber Incident Management team and materially reduce security risk through technologies and data.
• Effectively manage relationships with the key stakeholders including security, business and technology partners, colleagues and other external teams
• Work within a team environment and across business units to complete associated tasks with exceptional results.
• Continual research into banking cyber security threats including malware, phishing, botnets, and other threat actor techniques and tactics.
• Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions and decisions we expect from our people.
• Encourage new ideas, embrace change, and continuously look for innovative ways of performing activities.
• Be confident and have the ability to work independently and to manage and execute tasks within set timeframes.

We are interested in people who have:

• Demonstrated experience in Cyber Security incident response (and/or High Priority Incident Management) within the financial services industry or security consulting firms
• Experience in Systems Architecture is highly regarded.
• Broad knowledge of relevant local and international legislation and regulations, including APRA CPS 234, Privacy Act 1988, GDPR, and the SOCI Act
• The willingness to engage in self-learning or security research outside of standard business hours
• The ability to capture and articulate intelligence in a clear, concise manner, both verbally and written
• A strong technical ability across technology and cyber security, with experience in system architecture and interpreting complex network designs to analyse and respond to trends, critical threats and opportunities, and the ability to diagnose problems and issues and recommend appropriate actions
• Be comfortable with ambiguity and challenging the status quo to create innovative solutions
• Experience in critical thinking and driving productivity improvements

• Clear oral and written communication skills, including the ability to influence across a range of stakeholder groups
• Experience in managing dependencies between complex environments.
• Experience in critical thinking and driving productivity improvements
• Decision making skills to deliver the right outcomes for the Group, its customers and the community.

If you're already part of the Commonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We’re keen to support you with the next step in your career.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.