As Line 1 Risk Manager, you will identify risks associated with the day-to-day operations, processes, and activities within the technology business unit.
You will be responsible for managing and mitigating technical risks within the Technology Business Unit according to the organisation's risk appetite.
Individual Accountabilities Assess and identify risks associated with day-to-day operations, processes, and activities within the technology business unit. Establish a continuous monitoring process to manage new or evolving technology risks that could impact the organisation, including assessing the risk severity and likelihood, and ensuring effective risk mitigation strategies are implemented. Regularly review and test controls to ensure there is effective risk mitigation in place. Provide regular detailed reports listing all identified risks, escalating areas where risk assessment is pending, providing visibility of risk exposure, and ensuring confidence in mitigation plans to senior management and executive stakeholders. Define and maintain a risk heatmap demonstrating movements of risk and proving the effectiveness of risk mitigation plans, or escalating where risk mitigation is inadequate. Accountable as the governing body to enforce adherence to risk controls, escalating to Line 2 risk and CTO where controls are not being adhered to. Provide training and awareness programs for technology staff on risk management practices and policies. Assess technical risk for hot patches for incident resolution. Implement governance of technical risk management, embedding risk approvals within release management processes, driving accountability for the technology team to address identified risks. Qualifications and Experience 5+ years of experience in technology risk. Proven experience in risk and control management practices, including in-depth knowledge of risk frameworks. Experience in executing risk management activities, including risk identification, risk assessment, and control assurance activities. Experience in developing and enforcing technical risk controls, guidelines, and processes. Knowledge of industry standards for engineering controls, including security controls applicable to managing code reviews via GitLab or GitHub. Strong communication and negotiation skills with the ability to influence a wide range of stakeholders, including technical leads, solution architects, enterprise architects, engineering teams, and C-suite executives. In-depth knowledge of ISO27001 controls as they relate to software development, including infrastructure. If you have worked in a similar role and are interested, hit the apply now button, and one of our consultants will give you a call.
Please note that this role is only available for people who work in Sydney and have full working rights.
#J-18808-Ljbffr