Security Portfolio Specialist, CORIE

• Unique and dynamic environment

• Exciting time of growth

• Sydney CBD location with consideration for remote work

About the Role

The Reserve Bank of Australia is hiring for a Senior Security Portfolio Specialist, CORIE to join a skilled team on a permanent basis. This is an outstanding chance to take an important role in a unique team. The job holder will provide a balance between technical and non-technical cyber resilience expertise. They will work within a team that is responsible for day-to-day operations of the Cyber Operational Resilience Intelligence-led Exercises (CORIE) program and framework.

About the Team

Reporting to the Manager, CORIE Program & Industry you will join a small, cross-skilled team of cybersecurity program experts, part of a larger multi-disciplinary security services team, sitting across the full spectrum of cybersecurity roles. There is a strong culture for collaboration, innovation and celebrating personal successes. The team is constantly looking to improve and welcomes fresh perspectives and ideas.

While positioned within the RBA’s cybersecurity team, you will work closely with individuals from other agencies within the Council of Financial Regulators.

Key Responsibilities

• Lead cyber intelligence-led Red-Team exercises, providing the Council of Financial Regulators (CFR) with expertise and reporting on financial institutions' cyber resilience.

  • Oversee exercises and serve as the interface to participating companies involved.

  • Support participating companies throughout the entire duration of an exercise.

  • Support program leads / colleagues as required and jointly oversee the exercise.

• Contribute to the strategic control and management of the CORIE program and guiding framework.

• Participate in internal and external program management groups.

• Perform thematic analysis of cyber assessments and present results.

• Contribute to embed cyber resilience within the CFR's broader operational resilience approach and frameworks.

• Stay informed on the evolving regulatory landscape and emerging operational resilience challenges facing Australia’s financial sector, with a focus on cyber resilience.

• Contribute actively to the development of new cyber tools and practices to maintain their relevance for the CORIE program and framework.

• Contribute the preparation, submission and presentation of reports related to the progress of cyber resilience assessments, as required.

• Draft papers for regulatory groups on cyber resilience trends and changes.

• Help to maintain effective working relationships with government agencies including APRA, ASIC, ACSC, Home Affairs, and other organisations.

• Help to develop and maintain effective relationships with industry service providers, supporting the growth of resource availability and capability in country.

• Contribute to thought leadership on cyber matters including leading activities to upskill colleagues and peers and efforts of the Australian regulators to maintain and enhance the cyber supervisory approach.

• Help to develop and maintain effective working relationships with peers in overseas central banks and industry governing organisations.

• Represent the RBA/CFR in industry forums, working groups, and external engagements to share insights and contribute to the advancement of cyber resilience regulatory initiatives.

About You

We are looking for a candidate that is passionate about cybersecurity and technology and enjoys sharing that passion with others.

Essential Criteria

• Significant experience of delivering cyber risk and resilience reviews and assessments, including scenario-based testing in the context of intelligence-led Red-Teaming or penetration testing, threat modelling or simulation exercises.

• Knowledge of cyber threat landscape and technology trends.

• A broad understanding of general cybersecurity and information technology topics and principles relevant to a modern enterprise environment. 

• Knowledge of relevant cyber security standards, best practice, and guidelines.

• Excellent project management skills (planning, resource management, risk management) including delivery of complex projects.

• Demonstrated ability to collaborate on work to produce the best outcomes for stakeholders.

• Excellent analytical and problem-solving skills able to turn analysis into relevant output.

• Ability to provide subject matter expertise confidently using appropriate judgement.

• Proven business partnering experience.

• Excellent communication skills, both verbal and written, with the ability to draft and present briefings for senior stakeholders and to present clear conclusions and recommendations.

• Be a highly motivated and pragmatic thinker, capable to challenge confidently in new environments.

Desirable Criteria

• At least 2 years dedicated technical or non-technical experience in a Cyber Threat Intelligence, Red-Teaming or cyber regulatory role.

• Alternatively, 3 years’ experience in other IT Security functions, or project/program/risk management.

• Bachelor's degree in a relevant field, Certified Information Systems Security Professional (CISSP) or Certified Information Systems Manager (CISM), and/or equivalent practical experience.

• Operational knowledge of CORIE or another similar framework.

• Understanding and knowledge of cyber and/or information security related regulations, guidelines, and standards particularly in relation to the Australian financial industry (e.g. CORIE, CPS234) and the international regulatory landscape (e.g. TIBER-EU, EU DORA, CBEST).

• Experience with finance sector service providers.

Travel may be required, as is occasional working irregular hours. The successful candidate will hold or be required to undertake a Negative Vetting Level 1 security clearance, and as a result we can only accept applications from Australian citizens.

Be More

Working for an organisation that truly makes a difference to the people of Australia, we can offer development and career opportunities in a collaborative environment that supports your growth, wellbeing and promotes flexibility. Your individual growth and success drives the RBA forward as an organisation. Be more means you can do more, for yourself and for Australia.

Why RBA?

The RBA makes an important contribution to the Australian economy through the pursuit of national economic policy objectives and associated activities in financial markets and banking. We also issue Australia's banknotes and operate infrastructure critical to the payments system, all of which contribute to the welfare of the Australian people. 

Made up of specialists across a wide range of fields, our people, values, and culture play  a critical role in achieving our objectives. Striving to be Open & Dynamic, we consider and incorporate different perspectives, work across teams and are transparent with each other, whilst delivering quality together effectively and focusing on outcomes by prioritising, testing, learning, and refining as we go. 

Our people conduct themselves with a high degree of integrity, while striving for excellence in the work they perform and the outcomes they achieve. We encourage intelligent inquiry and we treat one another with respect while promoting the public interest through our efforts.

We know it is the growth and success of our people that drives the RBA forward. Come and make a bigger contribution while you build and develop your own skills too, because being more means you can do more, for yourself and for Australia.

The Reserve Bank of Australia is committed to equity, diversity and inclusion through key initiatives.  We welcome and encourage applicants from diverse backgrounds to apply, including Aboriginal and Torres Strait Islander peoples, culturally and linguistically diverse background, those living with a disability and from the LGBTQ+ community.  We are committed to making the recruitment process fair and equitable for all our candidates. 
 

Application Close :

.