Information Security Risk Management Lead
vor 2 Monaten
Information Security Risk Management LeadCuscal is a payments & regulated data services provider in Australia.
Since 1966, we have enabled banks, corporates, and fintechs to better serve and connect with their customers.
Our client's success is our success.
And you make it happen Payment systems are complex, regulated, and everchanging.
We are an established market-leading brand focused on driving client growth.
We're at the forefront of innovation, enabling the future for our clients through innovative technology like the New Payments Platform (NPP) and open banking.
We are an unlisted public company and one of five licensed banks in Australia with full direct connectivity and production capability across all domestic payment systems.
Our B2B model focuses on enabling other banks, fintechs, and corporates to deliver innovative and competitive payment and digital solutions to their clients and customers.
We are looking for an Information Security Risk Management Lead in our Group Risk and Compliance Team. Reporting to the Head of Operational Risk and Compliance, the Information Security Risk Management Lead is responsible for technology risk advisory, review/challenge, oversight, and monitoring over information security and data risk frameworks and how it is operationalized.
This is a highly visible role in the business ensuring technology risks are effectively identified, assessed, managed, and monitored across Cuscal.
Responsibilities of the Information Security Risk Management Lead in the team's capacity as the second line of defence under the Risk Management Framework fall into four key areas:
Technology Risk Management Framework Advisory, Oversight and MonitoringEnsure Information Security Risks (technology and cyber) and Data risks are adequately managed through Cuscal's frameworks in line with regulatory requirements (e.g., CPS 234, 230, CPG 235 etc.
), industry best practices, and operating environment in line with three lines of defence.Ensure line 2 risk management capability is built and sustained to review, challenge, oversight, and assurance reinforcing and maturing line 1 accountability with the business owners.Work collaboratively with Product domains, Engineering, and corporate functions to embed technology risk management practices into everyday activities, embed controls, and monitor/report on issues.Foster a risk culture that promotes open communication, transparency, and ownership of risk at all levels of the organisation.Risk Reporting & Analytics: Provide insights derived from technology and data risk reporting to the Board and Executive Leadership Team.2nd Line Review, Challenge and OversightReview and challenge risk/RiC assessments, adequacy, and effectiveness of risk mitigation strategies, controls, and action plans implemented by 1st line teams.Critically assess incidents, breaches, and near misses to identify systemic issues and recommend appropriate remediation actions.Ensure the continuous improvement of risk management practices by engaging with business units to provide constructive feedback and challenge assumptions.Act as a trusted advisor to senior leadership and business units on operational risk matters, including emerging risks, regulatory changes, and industry trends.Drive education and training programs to elevate operational risk awareness and capabilities across the organisation.Collaborate with product, client, and technology teams to ensure operational risk considerations are integrated into new initiatives, system changes, and major projects.Line 2 support for assessments of third-party technology risks and controls.Emerging Risks and InnovationStay informed about the latest developments in AI and other emerging technologies to proactively identify potential risks.
Support Cuscal teams in rapidly adopting new technologies in a safe and controlled manner.Review/provide oversight over initiatives to automate technology risk & controls monitoring processes using advanced tools and technologies.Promote a culture of innovation in risk management practices, encouraging the adoption of new approaches and technologies.Stakeholder EngagementWork closely with internal and external stakeholders as required, to ensure a cohesive approach to technology risk management.Develop and deliver training programs to enhance technology risk awareness and competency across Cuscal.Promote and drive a positive risk culture to lift overall risk management maturity across Cuscal.About You
To be successful in this position, you will have the following skills and experience:
Bachelor's degree in information technology, Information Systems, Risk Management, Cybersecurity, Computer Engineering, or a related field.
Relevant certifications (e.g., CRISC, CISA, CISSP) are desirable.Minimum of 4-6 years of experience in technology risk management within the financial services industry.Strong knowledge of risk management and IT frameworks and standards such as ITIL, ISO 27001, NIST, COBIT, and relevant APRA guidelines (CPS234, CPG235, CPS230, CPS220).Demonstrated experience in managing risks associated with AI, machine learning, and other emerging technologies.Prior experience leading risk maturity uplift at another organisation within a function, business unit, or risk class.Strong project management skills, including planning, execution, and stakeholder management.What's it like to work here? As well as good pay and a great culture, we back our employees by helping them work towards industry-recognised qualifications, using online learning, training modules, and career planning tools for you to grow with us.
We are committed to providing a diverse and inclusive workplace where the very best talent in Australia chooses to work.
We support our colleagues with flexible work arrangements through our hybrid model whilst also offering a wide range of financial, lifestyle, health & wellbeing benefits.
Next Step
If you think this role is the right fit for you, we invite you to apply.
Let's explore who you are and what drives you.
We'd love to share our vision for the future of the payments sector.
Please note candidate screening and interviews may be conducted prior to the closing date of the job advert.
Cuscal does not accept unsolicited resumes from recruitment agencies and search firms.
Please do not email or send unsolicited resumes to any Cuscal employee, location, or address.
#J-18808-Ljbffr
-
Information Security Risk Management Lead
vor 4 Wochen
Sydney, Österreich Cuscal Limited VollzeitThis is a Information Security Risk Management Lead role with one of the leading companies in AU right now 🔥 -- Cuscal Limited -- with an amazing team. They are continuing to grow rapidly. This is the chance to join right as the 🚀 takes off.More About the Role at Cuscal Limited 🧐🧐## **Job Description** **Our client’s success is our success. And...
-
Information Security Risk Management Lead
vor 2 Monaten
Sydney, Österreich Cuscal Limited VollzeitThis is a Information Security Risk Management Lead role with one of the leading companies in AU right now 🔥 -- Cuscal Limited -- with an amazing team. They are continuing to grow rapidly. This is the chance to join right as the 🚀 takes off.More About the Role at Cuscal Limited 🧐🧐## **Job Description** **Our client’s success is our success. And...
-
Sydney, Österreich Tideri Jobbörse VollzeitInformation Security Risk Management Lead Cuscal is a payments & regulated data services provider in Australia.Since 1966, we have enabled banks, corporates, and fintechs to better serve and connect with their customers.Our client's success is our success.And you make it happen!Payment systems are complex, regulated, and everchanging.We are an established...
-
Cyber & Information Security Lead
vor 2 Monaten
Sydney, Österreich Tideri Jobbörse VollzeitWe are seeking a highly motivated and technically skilled Cyber and Information Security Lead to join a fast-growing, innovative organisation.This role is perfect for someone with a strong background in security architecture and consulting, who is comfortable balancing high-level strategy with hands-on operational tasks.Job Title: Cyber and Information...
-
Chief Information Security Officer
vor 3 Monaten
Sydney, Österreich Clearcompany VollzeitSummary:We are seeking a highly skilled and experienced Chief Information Security Officer to lead our organization's information security efforts. The successful candidate will be responsible for developing and implementing security strategies, policies, and procedures to protect our organization's information assets from cyber threats and attacks. The...
-
Information Security Manager Anz
vor 2 Monaten
Sydney, Österreich Tideri Jobbörse VollzeitEuronet is seeking a hands-on Information Security Manager to join our team.The Security Manager is responsible for supporting and maintaining the security of epay Australia and New Zealand users and computing infrastructure (75%).This includes offices, datacenter server systems, network equipment, virtualization, and cloud deployments.The Security Manager...
-
Cyber Security Risk Manager
Vor 6 Tagen
Sydney, Österreich University Of New South Wales VollzeitAdd expected salary to your profile for insightsEmployment Type: full time continuing role as Cyber Security Risk ManagerExcellent salary package including superannuationBased Kensington, Sydney.Hybrid options availableJoin Our High-Performing Cyber Security Team at UNSWAt UNSW, we're driven by a bold vision: to deliver academic excellence, foster social...
-
Senior Business Information Security Officer
vor 2 Monaten
Sydney, Österreich Qantas VollzeitAbout UsFounded in the Queensland outback in 1920, Qantas has grown to be Australia's largest regional, domestic, and international airline.Qantas has a range of subsidiary businesses that support the overall operations of the Group.The Qantas Group's main business is the transportation of customers and freight using two complementary airline brands —...
-
Information Security Manager
Vor 4 Tagen
Sydney, Österreich Buscojobs AU C2 VollzeitStickman Consulting Private Limited – Sydney NSWWe seek a highly skilled and experienced Information Security Manager with a strong background in cybersecurity and project management.The ideal candidate will coordinate closely with the Governance, Risk, and Compliance (GRC), Purple Teaming (PT), Security Operations Center (SOC) and Cloud Security services...
-
Virtual Chief Information Security Officer
vor 3 Monaten
Sydney, Österreich Blueapache VollzeitVirtual Chief Information Security OfficerblueAPACHE is an Australian owned award-winning Managed Service Provider, recognised for the 5th year running, as Mid-Market Partner of the Year at the ARN Innovation Awards.We pride ourselves on being a genuinely great place to work, with a vibrant culture, clear vision, and strong leadership. When joining...
-
Virtual Chief Information Security Officer
vor 3 Monaten
Sydney, Österreich Blueapache VollzeitVirtual Chief Information Security OfficerblueAPACHE is an Australian owned award-winning Managed Service Provider, recognised for the 5th year running, as Mid-Market Partner of the Year at the ARN Innovation Awards.We pride ourselves on being a genuinely great place to work, with a vibrant culture, clear vision, and strong leadership.When joining...
-
Virtual Chief Information Security Officer
vor 3 Monaten
Sydney, Österreich Blueapache VollzeitVirtual Chief Information Security Officer blueAPACHE is an Australian owned award-winning Managed Service Provider, recognised for the 5th year running, as Mid-Market Partner of the Year at the ARN Innovation Awards.We pride ourselves on being a genuinely great place to work, with a vibrant culture, clear vision, and strong leadership.When joining...
-
Information Security Officer
vor 3 Wochen
Sydney, Österreich Moray & Agnew Lawyers VollzeitWe're passionate about what we do and want you to be too. Moray & Agnew is one of Australia's leading law firms with an unrivalled reputation in our markets.We're proud that our partners and our legal expertise are consistently recognised by Chambers Asia-Pacific, Legal 500 Asia-Pacific, Best Lawyers and Doyle's Guide. With over 110 partners, our teams are...
-
Senior Information Security Consultant
vor 20 Stunden
Sydney, Österreich Cochlear VollzeitCochlear is the global market leader in implant hearing solutions.Cochlear's mission is to help people hear and be heard.Around the world, more people chose a Cochlear-branded hearing implant system than any other.A Cochlear Implant is an electronic device that is surgically implanted under the skin near the ear that restores hearing to those who suffer from...
-
Information Security Officer
vor 3 Wochen
Sydney, Österreich Moray & Agnew Lawyers VollzeitWe're passionate about what we do and want you to be too.Moray & Agnew is one of Australia's leading law firms with an unrivalled reputation in our markets. We're proud that our partners and our legal expertise are consistently recognised by Chambers Asia-Pacific, Legal 500 Asia-Pacific, Best Lawyers and Doyle's Guide.With over 110 partners, our teams are...
-
Senior Information Security Consultant
vor 2 Monaten
Sydney, Österreich Cochlear VollzeitCochlear is the global market leader in implant hearing solutions. Cochlear's mission is to help people hear and be heard. Around the world, more people chose a Cochlear-branded hearing implant system than any other. A Cochlear Implant is an electronic device that is surgically implanted under the skin near the ear that restores hearing to those who suffer...
-
Information Security Consultant
vor 2 Monaten
Sydney, Österreich Paxus - Technology + Digital Talent Vollzeit12 month contract + potential for extensionDay rate up to $1300 depending on provided experienceHybrid Working Environment - WFH/OfficeOur client is seeking a Senior Information Security Consultant to implement security best practices, transform tooling, and streamline processes. Your expertise will support control owners to effectively manage threats and...
-
Senior Information Security Consultant
vor 2 Monaten
Sydney, Österreich Tideri Jobbörse VollzeitCochlear is the global market leader in implant hearing solutions.Cochlear's mission is to help people hear and be heard.Around the world, more people chose a Cochlear-branded hearing implant system than any other.A Cochlear Implant is an electronic device that is surgically implanted under the skin near the ear that restores hearing to those who suffer from...
-
Information Security Manager
Vor 7 Tagen
Sydney, Österreich Stickmancyber VollzeitInterested in joining us on our mission for a safer digital world?View our available positions below.Position: Information Security ManagerRoleType: HybridLocation: Sydney, AustraliaJoin StickmanCyber: Pioneers in Cybersecurity as a Service and AI driven Cybersecurity PlatformAt StickmanCyber, our mission is more than a commitment – it's a guiding light:...
-
Information Security Manager
vor 1 Woche
Sydney, Österreich Stickmancyber VollzeitInterested in joining us on our mission for a safer digital world?View our available positions below.Position: Information Security ManagerRoleType: HybridLocation: Sydney, AustraliaJoin StickmanCyber: Pioneers in Cybersecurity as a Service and AI driven Cybersecurity PlatformAt StickmanCyber, our mission is more than a commitment – it's a guiding light:...
