Senior Technology Risk Specialist

  • Job Number: JR-10033096
  • Employment Type: Permanent Full Time
  • Location: VIC: Melbourne or NSW: Australia (Flexible)
  • Opening date: 09/06/2021 12:00 AM AEST
  • Closing date: 16/06/2021 11:59 PM AEST
  • Applications Closed

At Telstra, we believe the more connected people are, the more opportunities they have. That's why we help create a brilliant and connected future so everyone can thrive.

As a Senior Technology & Cyber Risk Specialist, you play a pivotal role in ensuring all business-related risks are known and managed effectively at Telstra.  You leverage your specialist risk management, audit and assurance knowledge and collaboration skills to effectively partner with the business to advise and provide support enabling strategic, operational, financial, and compliance objectives to be met. Your ability to effectively navigate a large and complex enterprise environment will see you thrive in this role, with a strong focus on cyber and technology risks.

In this role you’ll be part of Telstra’s Risk & Compliance Chapter; working most closely with the Technology Risk chapter as they deliver Technology Risk capabilities across all of Telstra’s Functions and Specialist areas.

Key Responsibilities include:

  • Oversee and maintain cybersecurity and technology risk maturity frameworks, processes, approaches, and guidance documents to help facilitate the effective communication to management of key cyber and technology risks and issues to help support robust decision making
  • Act as a change agent, and not only orchestrating the development and enhancement of our cybersecurity and technology risk posture, but driving the training, communication strategy and improvement of risk management across Telstra. You’ll need to bring all parts of the organisation on a journey of change and continuous improvement so collaborating with the business stakeholders is key to help the business be successful with their change journey
  • Understand our business, and support in identifying areas of weakness in the way we manage risk and where enhancements or improvements are needed. You’ll identify practical and achievable programs of work to help improve and enhance the effectiveness of risk management within those processes to ensure better outcomes for the business
  • Contribute to the monitoring of long-term cybersecurity and technology trends and assess the key resulting opportunities and threats to Telstra. This includes the assessment and tracking of new and emerging threats and approaches to counter them in the context of a rapidly evolving environment globally
  • Actively participating in the cross-Telstra Risk & Compliance Chapter and Community.

Additionally, in support of the broader Risk & Compliance Chapter this role will be required at times to undertake the following:

  • Serving as a trusted business partner and a key point of contact for cyber and technology risk matters. Establishing positive working relationships with key stakeholders in the business and helping to design strategies to enhance decision making, promote a positive culture and drive the effective management of risks within the business
  • Collaborate with the business to help distil complex challenges into simple and manageable actions that result in optimal business outcomes. The focus of these reviews may include more common areas such as key risks to the business or organisation, or more complex or ambiguous reviews or investigations that arise on an ad-hoc basis.

To be successful in the role, you’ll have:

  • Experience in working in cyber security and a technology driven, preferably agile, environment
  • Familiarity with emerging cyber security and technology risk challenges and approaches to counter or mitigate them
  • Ability to solve complex and ambiguous problems including proven experience in orchestrating and supporting cybersecurity decision-making in a complex and rapidly evolving business environment
  • Ability to have a point of view with regards to large scale risk environments and programs, combined with the technical expertise to substantiate that position
  • Experience in engaging and influencing stakeholders
  • Experience in strategy development
  • Experience in management of projects and leading key workstreams to meet deadlines
  • Ability to understand and expand on diverse and sometimes conflicting points of view
  • Adaptable – remain effective with changing tasks, responsibilities, environment and people

The following are desirable and will be looked upon favourably:

  • Qualifications in Technology Risk or Cyber Security (e.g. Certified Information Systems Auditor (CISA) / Certified Information Security Manager (CISM) / Certified Information System Security Professional (CISSP) / NIST Cybersecurity Framework (NCSF))
  • Practical Experience with Technology Risk or Cyber Security Frameworks, including:
  • Control Objectives for Information and Related Technology (COBIT)
  • National Institute of Standards and Technology (NIST)
  • Australian Signals Directorate (ASD) Essential 8
  • Strong consulting craft skills – hypothesis development, analysis, structured communication etc

We’re committed to building a diverse and inclusive workforce in all its forms. We encourage applicants from diverse gender, cultural and linguistic backgrounds and applicants who may be living with a disability. We also offer flexibility in all our roles, to ensure everyone can participate.

To learn more about how we support our people, including accessibility adjustments we can provide you through the recruitment process, visit tel.st/thrive
 

Apply Now
  • Job Number: JR-10033096
  • Employment Type: Permanent Full Time
  • Location: VIC: Melbourne or NSW: Australia (Flexible)
  • Opening date: 09/06/2021 12:00 AM AEST
  • Closing date: 16/06/2021 11:59 PM AEST
  • Applications Closed