Manager - Risk and Control Enablement, Privacy Risk

Organization: At CommBank, we never lose sight of the role we play in other people’s financial wellbeing. Our focus is to help people and businesses move forward to progress. To make the right financial decisions and achieve their dreams, targets, and aspirations. Regardless of where you work within our organisation, your initiative, talent, ideas, and energy all contribute to the impact that we can make with our work. Together we can achieve great things.
Job Title: Manager - Risk and Control Enablement, Privacy Risk
Location: Bengaluru - Manyata Tech Park
Business & Team: Group CIO Technology delivers the Group’s information technology and banking operations functions to ensure the highest levels of customer service through world-class process excellence and technology innovation.
To do this, Technology has a strategy with two clear goals of delivering iconic customer and employee experiences and simplified and standardised technology and processes. Technology is the Group’s engine room committed to delivering available, reliable, consistent technology solutions for our internal and external customers.
Impact & Contribution: The Manager, Risk and Control Enablement Privacy Risk is part of the Technology CCO team for ensuring that privacy risks for any new and changing processes are assessed, awareness is raised, risk mitigations are in place, embedded and sustainable. They achieve this by assessing the effective design and implementation of controls to enable compliance and supporting the business through new and changing processes.
Roles & Responsibilities:

• Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions and decisions we expect from our people.
• Work closely with stakeholders in the Group Privacy Office, Cyber, Line 2 and delivery owners across Technology and the business to strengthen and drive effective technology and privacy risk management, and assist with uplifting controls and risk culture, and ensure practices are sustainable and embedded into BAU
• Responsible for data quality in/maintain various databases (including RiskInSite) and monthly management reporting
• Contribute to a proactive risk and control culture and collaborate with the business
• Provide support for Senior Manager, Risk and Control Enablement.
• Act with independence and must have the ability to influence stakeholders by actively building and maintaining valuable relationships with:
  • Privacy, Cyber and Technology SMEs
  • Service Owners
  • Chief Data and Analytics Office
  • Relevant Technology, Privacy and Cyber related programs
  • Line 2 Operational Risk and Compliance
  • Group Privacy Office
  • Peer BU/SU CCO teams

Essential Skills:

• 9-12 years’ experience in banking/financial services/other relevant experience and/or Minimum 6 years’ experience in Privacy, Technology, Cyber or Operational Risk practitioner roles
• Experience of risk and/or control advisory in banking/financial services/professional services other relevant sector
• Knowledge of Privacy and Compliance Risk frameworks would be advantageous
• Experience with project change risk (Risk in Change)
• Familiarity with APRA standards (not limited to CPS220, 231, 232, 234, 235) or Privacy regulations is favourable
• Good soft skills, including stakeholders management, critical thinking, ability to provide constructive challenge, report writing

Education Qualification:

• Bachelor’s degree/Master’s degree in any Financial / Banking streams.
• CISM, CISA, CRISC, CGEIT, CDPSE, COBIT, ITIL, CISSP or other IT risk related certifications (e.g. ISO200x, PCI/DSS) holder is favorable

Advertising End Date: 07/12/2024