Join DFR ICT as a Technology Risk and Audit Analyst—lead risk management, drive security, and shape ADF Careers' technology future. We are seeking a Technology Risk and Audit Analyst to lead risk management, enhance processes, and support secure digital operations.
You will work with ICT Leadership to identify and mitigate risks, transforming ADF Careers' technology risk capabilities and ensuring regulatory compliance.
Details about the Client ADF Careers is the largest workforce outsourcing solution in the southern hemisphere with over 80,000 applications received on average each year.
ADF Careers is on a mission to recruit the right people, in the right numbers, at the right time to support the Australian Defence Force to build, sustain and maximise Defence capability.
Our people are our greatest asset.
We recognise and respect our people's need to work in ways that support their careers, families, and lifestyle.
That's why we offer flexible working arrangements, learning pathways, additional leave entitlements and extensive corporate discounts across a variety of product and services.
Job Description As the Technology Risk and Audit Analyst, you will bring your expertise in technology and risk management to lead DFR ICT's risk practice.
You'll drive strategic improvements in risk management, helping the organisation navigate digital complexities with efficiency and security.
Collaborating with ICT leadership and business technologists, you'll ensure risks are identified, prioritised, and mitigated, transforming ADF Careers' technology risk capabilities and ensuring compliance with regulatory standards.
You will: Be accountable for building and delivering the Technology Risk Practice and leading initiatives to implement ICT's risk management framework for management of technology risks at the DFR.Work with various risk owners to ensure the timely identification, improvement, and response to risks, including those from advances in technology.Manage and undertake proactive technology risk and controls assessment and mitigation, enhancing the end-to-end risk management process.Ensure that the relevant IT team records the threat, risk and control libraries on the GRC platform.Compose and present risk reports at governance forums, including the IT Policy, Risk and Assurance Committee (PRAC), while also serving as a subject matter expert on IT risk management.Develop and implement training and communications plans to support the rollout of new templates, reports, risk appetite statements, and 3 Lines of Defence model across DFR ICT.Collaborate with business technologists outside of DFR ICT to establish monitoring measures for distributed IT and put in place associated monitoring controls.Advise and coach the Technology team to help identify, monitor, measure and manage its risks and controls.Develop, drive and facilitate key Technology risk activities including Incident (Risk Event) Management, Issue Management, Risk and Control Assessment, and Risk Reporting.Promote the current Technology Risk community and appropriate Technology Risk Forum.Liaise directly with DFR's wider Risk community to ensure Technology alignment and adherence, building trusting and effective working relationships.Maintain Technology's Risk culture and Risk-related education of Technology colleagues.Lead Technology-related Audit activity.Candidate's Profile If you have worked in a similar position or just looking for your next opportunity that will make an impact, we want to speak with you.
Your background will demonstrate: Strong understanding of data principles and their relevance in technology.Expertise in cybersecurity risk management and effective tracking/reporting methods.Proven ability to build trust with stakeholders, motivate teams, and resolve conflicts under pressure.Exceptional written and verbal communication skills, with strong presentation abilities.Excellent problem-solving and critical-thinking skills, backed by a tertiary qualification in technology risk management.Strong leadership experience in mentoring stakeholders and influencing decision-making.Excellent interpersonal and negotiation skills for building effective relationships at all levels.Knowledge of government sector trends and challenges is desirable.Extensive knowledge of technology risk management practices, including incident management, risk assessments, and control design.Bachelor's degree or other relevant qualification.To apply for this position, you must be an Australian citizen and have the ability to maintain an Australian AGSVA security clearance.
How to apply If eligible, please submit your resume; applications are open to all qualified Australian citizens regardless of their background, identity, experiences and beliefs.
If you need assistance during our recruitment process, please email our friendly TA team at for a confidential conversation.
To apply for this position, please submit your application online through our designated platform.
The deadline for applications is 11:30 PM (AEST) on the 14th of November 2024.
It's important to note that applications will be reviewed and processed as they are received.
#J-18808-Ljbffr