Manager, Third Party Cyber Incident ResponseCommonwealth BankCyber Security protects the bank and our customers from theft, loss and risk events, through effective and proactive management of cyber security, privacy, fraud, physical security and operational risk.Do work that matters :The Third Party Cyber Incident Management team protects the Group and our customers from theft, losses and risk events, through effective and proactive management of cyber security incidents, threats, privacy and operational risk.Your impact and contributionResponsibilities include :Lead third party cyber security incident management activities to identify, coordinate, investigate and resolve incidents, as part of the Cyber Defence Operations function in accordance with the Group's Third Party Cyber Incident Response Plan.Monitor and analyse key intelligence points to ensure timely management of third party cyber incidents.Analyse and prepare reports on third party cyber incident management activities to team members, stakeholders and leadership.Improve current processes and tools to maximise the efficiency and productivity of the team's technical capabilities.Act as a subject matter expert and key point of contact; providing advice on detection, containment, eradication and recovery phases throughout a third party cyber incident.Work with the business, risk, privacy and compliance stakeholders to ensure compliance with Group Policies, risk standards and obligations.Build awareness of the Third Party Cyber Incident Management function, educating business stakeholders and extended teams.Support the embedding of a risk and control culture across our business stakeholders.Actively participate and raise initiatives to create new technologies and platforms to drive improvements in the operational response to third party cyber incidents.Drive consultation within Cyber Defence Operations to identify and develop opportunities to improve the operational effectiveness of the Third Party Cyber Incident Management team and materially reduce security risk through technologies and data.Effectively manage relationships with the key stakeholders including security, business and technology partners, colleagues and other external teams.Work within a team environment and across business units to complete associated tasks with exceptional results.Continual research into banking cyber security threats including malware, phishing, botnets, and other threat actor techniques and tactics.Adhere to the Code of Conduct.
The Code of Conduct sets the standards of behaviour, actions and decisions we expect from our people.Encourage new ideas, embrace change, and continuously look for innovative ways of performing activities.Be confident and have the ability to work independently and to manage and execute tasks within set timeframes.We are interested in people who have :Demonstrated experience in Cyber Security incident response (and / or High Priority Incident Management) within the financial services industry or security consulting firms.Experience in Systems Architecture is highly regarded.Broad knowledge of relevant local and international legislation and regulations, including APRA CPS 234, Privacy Act 1988, GDPR, and the SOCI Act.The willingness to engage in self-learning or security research outside of standard business hours.The ability to capture and articulate intelligence in a clear, concise manner, both verbally and written.A strong technical ability across technology and cyber security, with experience in system architecture and interpreting complex network designs to analyse and respond to trends, critical threats and opportunities, and the ability to diagnose problems and issues and recommend appropriate actions.Be comfortable with ambiguity and challenging the status quo to create innovative solutions.Experience in critical thinking and driving productivity improvements.Clear oral and written communication skills, including the ability to influence across a range of stakeholder groups.Experience in managing dependencies between complex environments.Decision making skills to deliver the right outcomes for the Group, its customers and the community.Advertising End Date : 18 / 12 / 2024#J-18808-Ljbffr