Technology Supplier Compliance Manager

Company Description

Supporting millions of Aussies since 1988 with low fees and competitive long-term performance. Profits back to members, not shareholders

Closing date: 3rd February 2025

Please note Rest does not accept speculative resumes from recruitment agencies 

Job Description

The Technology Supplier Compliance Manager ensures that Rest’s technology vendors adhere to our policies, standards, and regulatory obligations. This role focuses on governance, risk, and compliance, setting clear expectations and enforcing compliance to protect Rest’s data and technology infrastructure.

Key Responsibilities:

• Establish and monitor vendor technology-related risk management controls and compliance.
• Conduct due diligence and risk assessments on technology vendors to ensure compliance with company policies and regulatory standards.
• Collaborate with Risk Management, Procurement, Legal, and IT departments to enforce standardized vendor compliance processes.
• Coordinate risk management activities with vendors and respond to audit findings.
• Develop and update company-wide vendor management policies and procedures.
• Ensure vendor governance forums address risk and compliance management adequately.
• Provide training on vendor compliance requirements and best practices.
• Stay informed about relevant laws, regulations, and industry best practices, updating internal policies accordingly.
• Prepare reports for senior management on vendor compliance status and risk management efforts.
• Participate in contract negotiations to ensure compliance measures are included in agreements.

Qualifications

• Bachelor's degree in Business, Information Technology, Cybersecurity, or a related field.
• Relevant certifications such as CISM, CRISC, CISSP, or CISA are highly desirable.

Required experience, understanding or credentials including:

• Minimum of 5 years of experience in vendor management, IT Risk & compliance, or a similar role within a technology environment.
• Strong understanding of information security principles, data protection laws, and industry and regulatory standards such as ISO 27001, SOC 2, CPS 234, CPS 230, GDPR, and HIPAA.
• Experience with vendor risk management platforms and tools.
• Proficient in performing security risk assessments and audits.
• Excellent communication and negotiation skills, with the ability to engage effectively with both technical staff and vendors.
• Detail-oriented with strong analytical and problem-solving abilities.
• Ability to work independently as well as part of a team.

Additional Information

Benefits

Our benefits have been designed so you can tailor your experience with us and include:

• Personal and professional development opportunities 
• Flexible, hybrid working – work to suit your lifestyle (must be based in Australia) 
• Purchase leave scheme and gender neutral 16 weeks paid parental leave 
• Super Contribution Continuation for 12 Months of parental leave 
• Meeting free breaks (Rest Stops) 
• Income Protection Insurance 
• Rest Excellence awards (peer recognition awards based on Rest’s values and behaviours) 

If you share our values, believe you can help make a difference for our members and want to be part of a leading superannuation fund with a Super culture, please click Apply Now.

Rest is committed to creating a flexible work environment and culture that embraces diversity, equity, and inclusion - where people feel welcome, safe to be themselves and inspired to do their best.

We value the different backgrounds, lived experiences and abilities our diverse team brings. We welcome and encourage applications from candidates of all ages, cultural backgrounds, faiths, gender identities, sexual orientations and thinking styles. This includes people with disability, neurodiverse individuals, Aboriginal & Torres Strait Islander peoples and those with disrupted work history due to career or other breaks.

Please note only people with the right to work in Australia will be considered.

*Funds under management as at 30 June 2023. Rest is recognised as a Responsible Investment Leader by the Responsible Investment Association Australia (RIAA) in its Responsible Investment Benchmark Report 2022.

Rest will review applications prior to the closing date and may close the role earlier