Hiring.fm
CommBank

Senior Manager Cyber International Governance and Compliance

Sydney CBD Area Full time

Senior Manager Group Cyber Governance and Compliance

  • You are a passionate cybersecurity risk professional with strong expertise in governance, risk and compliance
  • We are one of the best and most advanced Cyber Security teams in Australia
  • Together we can contribute to protecting the Group, its customers and community from current and evolving cyber threats.

 

See yourself in our team:

Our Group Security teams are responsible for providing best-in-class security, resiliency and reliability for the Group, its subsidiaries and its customers. They help keep our people and customers safe, sound and secure whilst helping us maintain our position as Australia’s most trusted Bank. 

Our cyber team is committed to building leading end-to-end cyber capability, prioritizing the protection of our critical assets, instilling disciple to deliver securely at velocity and safeguarding Australians through cross-sectoral partnerships. 

 

Do Work that matters: 
You will be playing a critical role in leading the development, implementation, and oversight of security governance, risk, and compliance frameworks. You will deliver cyber risk governance activities including risk reporting to specialist committees and Board.

 

You will also be responsible for:

  • Developing and maintaining governance frameworks to support the Group’s information security risk and compliance objectives.
  • Collaborate with Enterprise Risk and Line 2 risk management to ensure cyber risk is integrated in Group’s risk frameworks
  • Provide accurate, timely and pragmatic subject matter expertise in relation to information security governance and frameworks.
  • Report on information security risk in respect of information security initiatives, activities, processes and metrics, with reference to the Group Information Security Policy Framework, legal and regulatory obligations and industry best practices including (but not limited to)  NIST Cybersecurity Framework 2.0.

We are interested in hearing from people who have a:

  • Well-developed risk mindset – to the ability to proactively identify, understand, communicate and act on current and emerging cyber security risks.
  • Previous experience with information security risk and control management frameworks and translating and implementing those within complex organisations.
  • An understanding of cyber security control design, implementation and assurance testing processes.
  • Experience with industry security standards such as ISO/IEC 27001, NIST CSF, E8 and COBIT 5.
  • Strong negotiation and influencing skills to effectively interface with and manage key stakeholders from three lines of risk, including ability to present and translate technical information for stakeholders in other parts of the business.
  • Demonstrated experience in working to tight timeframes with senior technical and non-technical stakeholders to communicate risk. 

 

Technical Skills:

  • Risk and Control Frameworks (Operational Risk Management Framework)  

If you're already part of the Commonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We’re keen to support you with the next step in your career.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696.

Advertising End Date: 18/11/2025