Line 1 Risk Senior Manager - Technology

About the role:

The Line 1 Risk Senior Manager – Technology division is responsible for leading the team identifying, managing, and mitigating risks associated with the Avant’s technology infrastructure, information security, operations within the IT division. 

This role ensures that effective risk management practices are integrated into technology strategy and operations, while aligning with the Avant’s overall risk management framework.

The Line 1 Risk Senior Manager – Technology plays a key role in collaborating with technology and business stakeholders across the Avant Group, to mitigate risks, improve Technology controls, and ensure compliance with relevant regulatory standards.

Key requirements:

• Develop and coach team members in relation to the Avant Group Risk Management Framework and IT Risk Management Framework.
• Demonstrate sound understanding of APRA regulations and standards in the Risk Management prudential framework, including CPS234, CPS230, CPS231.
• Work collaboratively across IT Senior Leadership, IT Operations, and within the Line 1 IT risk team, to embed risk management practices into everyday practices, promote a culture of innovation in risk management, embed controls, and monitor/report on issues.
• Prepare and present regular risk reports, dashboards, and updates to senior management and risk committees. 
• Work closely with the Avant Group Line 2 team, to ensure consistently effective risk management outcomes, and contributing to the ongoing enhancement of Risk Management practices and outcomes within the Avant Mutual Group.
• Relevant industry / Tertiary qualifications

Key accountabilities:

• Controls enhancement and automation: Develop a program to simplify and automate the design and operating effectiveness of technology risks and controls, and their compliance with group standards
• Leadership: Leading and developing the team of Line 1 risk and compliance professionals in embedding operational risk policies and processes within the IT Division
• Risk Frameworks: Contribute to developing and implementing the Information Technology Risk Management Framework across the business
• Manage operational risks within the business on a daily basis, including defining risk appetite and tolerances across non-financial risks, develop and maintain technology risk registers
• Provide comprehensive reporting to Senior Leadership, Executives, boards, and Line 2 risk on the management of Line 1 risks within the technology division
• Facilitate the Technology Risk committee, stakeholder training and knowledge sharing 

To be successful you will have:

• Significant (6+) years of experience in IT risk and control management, technology audit, or related fields.
• Proven experience leading, and guiding a team of risk professionals
• In depth knowledge of risk and technology frameworks and methodologies (e.g., ISO 31000, NIST, COBIT, ITIL etc).
• Proven experience working in a highly regulated industry such as financial services, insurance, or healthcare, with an understanding how to deliver to APRA regulatory requirements CPS230, CPS231, CPS234 etc.
• Strong understanding of IT systems, networks, information security principles, and cloud technologies.
• Excellent communication skills with the ability to engage and influence technology and business stakeholders at all levels.
• Analytical and problem-solving mindset with a focus on detail and accuracy.
• Proficiency in report writing and presenting risk findings to both technical and non-technical audiences.