* Hybrid work environment
* Permanent Opportunity
* Drive the bank's cyber security strategy
This is an excellent opportunity for a strategic and experienced cybersecurity leader to join the RBA and oversee and lead the govern and protect pillars of the Bank's cybersecurity function. In this senior leadership role, you will drive the development and execution of the Bank's cyber strategy, oversee security architecture and designing and oversee secure-by-design architecture practice, ensure cyber risk and compliance with regulatory and industry frameworks, lead the Bank's cyber vulnerability posture and assurance program and foster a strong cyber-aware culture across the organisation.
About the role
Provide strategic leadership in the development and implementation of the Bank's cybersecurity strategy, ensuring compliance with relevant frameworks, policies, and guidelines. This includes embedding cybersecurity architectural principles during design to proactively reduce risk, assessing the current security posture for vulnerabilities and control weaknesses, and providing assurance. You will coordinate efforts across security functions to elevate cyber risk governance and ensure cyber risks are effectively identified, managed, and communicated.
* Build and lead a high-performing teams of cyber professionals, fostering capability uplift and accountability across the various govern and protect functions.
* Collaborate with various business and IT stakeholders internal and external industry and vendor partners to align cybersecurity strategy with enterprise objectives.
* Provide mentoring, guidance and direction to cyber professionals and coaching on providing expert advice on emerging threats and cyber resilience to support business objectives and collaboration.
* Lead the development and execution of the Bank's cyber strategy and cyber defence portfolio, including business case development, prioritisation, and investment reporting.
* Develop papers, reports, metrics and other reporting mechanisms to communicate cyber posture to senior leadership, key business stakeholders and management and board committees.
* Define and evolve enterprise-wide security architecture standards and patterns, embedding Secure-by-Design and Zero Trust principles, while ensuring consistent review and assurance across projects, platforms, and third-party providers
* Develop, monitor and report on key risk indicators, controls and policies to ensure cyber risk is managed within the Bank's risk appetite.
* Coordinate and communicate the cyber risk assessment and profile to business and technical stakeholders by ensuring cyber risk assessments are consistently maintained and reported regularly for input into decision making.
* Implement and maintain risk and compliance frameworks aligned to NIST CSF, ACSC Essential Eight and ISM, ISO 27001, APRA CPS 234 and other relevant standards.
* Define, manage and maintain cyber operational resilience planning and ongoing testing of cyber incident response capabilities Oversee and enhance cyber supply chain risk management by conducting proactive assessments of third-party and vendor risks.
* Lead the vulnerability and posture management program, including continuous controls monitoring to measure and report on exposure and control effectiveness as well as risk escalation for timely remediation where required. Provide actionable insights to senior stakeholders to proactively manage cyber risk.
* Champion a strong cyber security culture across the organisation by leading enterprise-wide awareness and education initiatives, embedding secure behaviours into daily operations, and fostering a shared sense of accountability for cyber risk at all levels
About You
* Proven ability to act as a trusted advisor, with strong communication and influencing skills to engage peers and business stakeholders.
* Demonstrated ability to engage effectively with senior leadership and executive levels, translating complex cyber security concepts into clear, actionable insights that support strategic, risk-informed decision-making..
* Strong business acumen with proven ability to align cyber strategy to business needs including experience with project and portfolio management as well as developing and presenting business cases.
* Minimum ten years' experience in technology, cyber risk and architecture or related domains providing leadership in planning, design and delivery of complex solutions and capabilities.
* Deep understanding of risk and compliance frameworks (e.g. NIST CSF, ISO 27001, COBIT, CIS) and Zero Trust models.
* Strong understanding of cyber risk assessment and management methodologies and integrating with enterprise risk management and 3LoA risk framework.
* Solid experience in architectural disciplines across a range of complex projects and technologies with ability to resolve solution design and architecture contentions.
* Strong awareness of building cyber security culture and promoting secure behaviours across the organisation.
* Tertiary qualifications in a relevant field, such as a Master's degree or MBA.
* Professional certifications such as CISSP, SABSA, TOGAF, and GIAC certifications (e.g. GSTRT, GSLC, GCIL etc).
Be More
Working for an organisation that truly makes a difference to the people of Australia, we can offer development and career opportunities in a collaborative environment that supports your growth, wellbeing and promotes flexibility. Your individual growth and success drives the RBA forward as an organisation. Be more means you can do more, for yourself and for Australia.
Why RBA?
The RBA makes an important contribution to the Australian economy through the pursuit of national economic policy objectives and associated activities in financial markets and banking. We also issue Australia's banknotes and operate infrastructure critical to the payments system, all of which contribute to the welfare of the Australian people. Made up of specialists across a wide range of fields, our people, values, and culture play a critical role in achieving our objectives. Striving to be Open & Dynamic, we consider and incorporate different perspectives, work across teams and are transparent with each other, whilst delivering quality together effectively and focusing on outcomes by prioritising, testing, learning, and refining as we go. Our people conduct themselves with a high degree of integrity, while striving for excellence in the work they perform and the outcomes they achieve. We encourage intelligent inquiry and we treat one another with respect while promoting the public interest through our efforts. We know it is the growth and success of our people that drives the RBA forward. Come and make a bigger contribution while you build and develop your own skills too, because being more means you can do more, for yourself and for Australia.
The Reserve Bank of Australia is committed to equity, diversity and inclusion through key initiatives. We welcome and encourage applicants from diverse backgrounds to apply, including Aboriginal and Torres Strait Islander peoples, culturally and linguistically diverse background, those living with a disability and from the LGBTQ+ community. We are committed to making the recruitment process fair and equitable for all our candidates.
Application Close :
December 14, 2025
.