Manager Third Party Cyber Incident Response - Sydney, Australia - Commonwealth Bank

Commonwealth Bank

Verified Company

Sydney, Australia

1 week ago

Posted by:

Olivia Brown

beBee Recruiter

Description

Manager, Third Party Cyber Incident Response
-
Be a part of a high profile Cyber Security program:

-
Rewarding and challenging role:

-
Great culture and team environment

Cyber Security protects the Bank and our customers from theft, losses and risk events, through effective and proactive management of cyber security, privacy and operational risk.

Your contribution

You will be a member of a highly motivated team responsible for the consistent, transparent and sustainable implementation and maintenance of the Third Party Cyber Incident Response Plan within the Compliance Incident Management Framework across the Group globally.

Your responsibilities

You will be responsible for:

Advise and support a diverse range of stakeholders on management of third party cyber incidents in accordance with the Group's Third Party Cyber Incident Response Plan.
Maintaining and using your broad technology, cyber security, and management skills to effectively assess potential cyber impacts to the Group and coordinate and/or escalate to other cyber and business units as required.
Respond to and manage reported incidents, notifications and advisories of Third Party Cyber Incidents in a timely and consistent manner.
Manage the implementation of corrective, mitigation and remediation for Third Party Cyber Incident Response and significant supply chain threats.
Maintain strong partnerships within Cyber Security, our stakeholders and suppliers, fostering a collaborative environment.
Build awareness of Cyber Security Third Party Incident Response across the Group, educating business stakeholders, delivery teams and internal response functions.
Provide accurate and succinct reporting for management and governance oversight.
Work with the business, risk management and compliance stakeholders to ensure compliance with Group Policies, risk standards and obligations.
Preparing and maintaining standard operating procedures, support documents, and awareness materials for the Group and our stakeholders.
Driving continuous improvement across all team processes and reporting.

Your experience:

Experience working on cyber incidents (and/or High Priority Incident Management).
Have broad knowledge of relevant local and international legislation and regulations, including APRA CPS 234, Privacy Act 1988, GDPR, and the SOCI Act
Degree / qualification in Cyber Security or a related discipline (eg. CISM or any GIAC certification)
Clear oral and written communication skills, including the ability to influence across a range of stakeholder groups
Strong technical ability across technology and cyber security to analyse and respond to trends, critical threats and opportunities. You have strong ability to diagnose problems and issues and recommend appropriate actions.
Decision making skills to deliver the right outcomes for the Group, its customers and the community.

We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on

Advertising End Date: 26/02/2023