Senior Manager Controls Assurance

Are you a seasoned professional in the realm of Technology Risk & Assurance, equipped with a keen understanding of the complexities surrounding technology risk challenges? We are seeking a Senior Manager who excels in navigating the intricacies of technology assurance, particularly in automation and engineering.

Do work that matters

As a Senior Manager, Controls Assurance, you will join our high performing Technology Chief Controls Office (Tech CCO) team and assist in supporting Technology to identify, assess and manage the risk inherent in providing a range of technology and operations services to the CBA group.

See yourself in our team

Technology CCO (TCCO)’s purpose is to ensure our technologists have the capabilities to effectively manage non-financial risks and provide secure and always available technology products and services to our customers.

The TCCO Controls Assurance Domain works closely with the Chief Information Officers across Technology to ‘shift left’ by driving an emphasis on inherent risk reduction through modernisation and simplification of the Group’s technology estate. This is in parallel to ensuring the current control environment is being effectively managed, risks (current and emerging) are transparent and have robust treatment plans, and enable the delivery of key strategic objectives through simple and proactive risk advice and assessment.

We do this through:

1. Building valued, proactive relationships with our Technology CIOs, TCCO functions, Risk (line 2) and Group Audit & Assurance (Line 3) partners.

2. Enabling the delivery of the Technology and broader Group’s strategy through timely, balanced risk advice and assessment

3. Growing the capability of our TCCO function through bar raising, education and development of our people

4. Continuously improving our methods and practices through innovation to enable a modern, future fit control function

5. Actively participating in TCCO’s leadership to motivate and support each other, our teams and stakeholders

In any given week you will

• Work with the Chapter Lead to improve the approach for monitoring, assessing and testing controls

• Identify, innovate and implement techniques to automate and optimise controls monitoring, assurance and testing including technology solutions

• Lead the assessment of control design and effectiveness, including how they are operationalised by the business

• Prioritise workloads and leverage Agile practices to drive continuous improvement and progress

• Provide coaching to support more junior members of the team to report on control assurance outcomes and actions

• Lead the delivery of assurance findings, focusing on developing intelligence that protects the organisation and customers from risk

• Lead the proactive identification and assessment of control weaknesses and gaps, including root cause analysis and reporting obligations

• Provide subject matter expertise on remediation strategies

• Partner with stakeholders to design control enhancements, including innovative solutions to digitize and automate controls

• Utilise analytical techniques to create transparency and visualisation of controls testing and assurance outcomes

• Develop a proactive risk and control culture

We're interested in hearing from people who have

• Advanced understanding and knowledge of the risk and control environment with proven experience across one or more domain areas of cyber security, operational resilience, operational risk, compliance and regulatory change within a Technology domain

• Technology assurance experience

• Proven experience in a large/complex organisation, ideally a financial institution or Technology company

• Strategic thinking and an ability to drive the team to analyse trends, insights and opportunities, diagnose problems and issues and recommend appropriate actions

• Experience in software engineering practices and the use of Artificial Intelligence solutions in risk management or assurance would be highly desirable

• Demonstrated experience in providing risk advice and support of large complex organisational change in response to Technology transformation or regulatory change initiatives

• Ability to develop constructive working relationships with a large and varied stakeholder group at all levels of seniority across a Business Unit

• Product or tooling knowledge across cyber/technology, or CISM, CISA, CRISC, CGEIT, CDPSE, COBIT, ITIL, CISSP or other IT risk related certifications (e.g. ISO200x, PCI/DSS) is favourable

• Demonstratable ability to find solutions that are in the best interest of both the customer and CBA, using advanced questioning techniques.  Is able to have difficult conversations with stakeholders that, through professionalism, will preserve the long-term relationship

• Experience in the end to end leadership of risk management in complex environments, including experience in developing controls, incident and issue management, adhering to compliance obligations and developing ‘risk resilient’ cultures;

• The skills to manage risk effectively including authentically communicating the importance of risk in a way that mobilises others to act, making robust decisions based on data and root cause analysis, creating an environment where people feel safe to speak up, working collaboratively across the three lines of accountability and delivering sustainable results.

Your path looks like:

If you live and breathe the values and demonstrate the people capabilities we can offer great opportunities both within the Tech Chief Controls Office and beyond the wider CBA group. We’ll help you find the next step that’s right for you and enable you to be your best.

We support our people with the flexibility to balance where work is done with at least half their time each month connecting in office. We also have many other flexible working options available including changing start and finish times, part-time arrangements and job share to name a few. Talk to us about how these arrangements might work in the role you’re interested in.

If you're already part of the Commonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We’re keen to support you with the next step in your career.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.