Key skills
CloudPMPProject ManagementRisk ManagementCollaboration
About this role
Role Overview
- Manages a portfolio technology controls uplift initiatives to ensure AIA Australia’s technology control environment is meeting the latest trends of technology and regulatory development.
- Acts as one of the subject matter experts on Technology Controls and Governance in providing advisory on the emerging risk concerns.
- Partner with other risk champions to advocate the risk culture.
- Conduct analysis of the technology risk data collected from different information sources, and provide constructive recommendations to stakeholders for timely actions.
- Leads Technology Controls and Governance engagements including audit support, customer assurance engagements, third party security assessment, risk incident management, regulatory engagements, etc.
- Development and manage reports and dashboards on the progress of technology control uplift initiatives including risk registration and action tracking.
- Timely escalate the issues that are causing the delay of the initiatives.
- Provide ad-hoc support to other technology control and governance team members in emerging situation.
Requirements
- Minimum of 8 years of experience in technology control and risk management, technology audit, technology compliance function
- Strong awareness of Australian regulatory requirements including APRA CPS 234, CPS 220, ACSC Essential Eight, SoCI Act, Privacy Act, ISM, etc.
- Thorough understanding of international best practices of information security controls framework / standards, such as ISO/IEC 27001, PCI-DSS, NIST CSP.
- Thorough understanding of end-to-end process on audit and regulatory engagements
- Possess at least one of the information security / technology audit certifications such as CISA, CIA, CISSP, ISO27001 Lead Auditor, etc.
- Holders of PMP or other project management related certification is beneficial.
- Understanding of controls over public / private / hybrid cloud is preferred.
- Good understanding of best practices on technology control and compliance while keeping practicability
- Detail mined with excellent analytical skills supported by qualitative and quantitative data
- Be able to demonstrate to build and maintain an efficient, effective and repeatable audit and regulatory engagement framework, including knowledge retention and record management
- Be able to work under pressure with tight deadlines while maintaining quality of deliverables.
- Adaptable, able to interact and build strong relationships with people from a diverse range of backgrounds through team working and collaboration.
Tech Stack
- Cloud
- PMP
Benefits
- Access our training and development to build on your current skills
- Career development through internal mobility opportunities
- Work for a business helping millions of Australians and make a difference to someone’s life everyday
- Access additional leave days a year to recharge and refresh yourself
- Enjoy wonderful Health and Wellbeing initiatives that support you
- Work with supportive and inclusive working environment
- Flexible working arrangement