Connecting...

Location
Sydney
Salary
$90k-$120K Base+Super
Job Type
Permanent
Ref
BH-180724
Contact
Mark Montgomery
Contact email
Email Mark
Posted
about 1 month ago
You will work primarily as a Risk Analyst in Credit Risk Management Department, with general Operational Risk responsibilities. You will report to the Deputy/Assistant Head of CRMD, as part of the Second Line of Defence function, in a growing Foreign ADI. Core activities include information security risk and controls assessment, operational risk related assessment reviews and implementing controls testing.

Role
responsibilities:
  • Providing specialist information security assurance guidance & direction to internal stakeholders;
  • Identifying, quantifying, and reporting information security risks from use of technologies and third parties;
  • Responsible to run/execute security controls assurance program;
  • Modelling a strong service ethos to all stakeholders, ensuring pragmatic solutions to emerging risks are communicated.
  • Supporting the development and implementation of standardised information security risk metrics, KRIs and risk reporting frameworks;
  • Revising operational risk related policies, procedures, and guidelines, relating to information security, to ensure conformance with Australian Government regulatory requirements and industry standards;
  • Coordinate with teams to process assurance plan on critical operations and information security management.
  • Assist the daily risk management process under the Risk Management Framework, such as the operational tasks including assisting with policy gap analysis, risk data management, preparing training slides, and other tasks for the comprehensive risk management of an ADI.
  • Risk relevant ad-hoc tasks as assigned by Head of CRMD/CRO.
EXPERIENCE REQUIRED:
  • A Bachelor’s degree or higher education, majoring in Information Technology related;
  • At least one-year finance industry related working experience;
  • General understanding of industry-standards and/or Australian Government specific information security control frameworks;
  • Designing, collecting, and implementing standardised information security risk metrics, KRIs, control and testing frameworks and risk reporting frameworks & dashboards.
  • Ability to perform information security risk assessments, threat analysis and information security capability assessments of systems, services, and suppliers.
  • Ability to assist in the development of information security policies, standards, guidelines, and processes.
  • Highly interested in banking industry security and risk management;
  • Both written and verbal proficiency in English and Mandarin;

For further information on this role or to confidentially apply, please contact Mark Montgomery on 02 8227 9200 or apply directly via the Apply for this job button. Only WORD FORMAT resumes will be accepted.