Product Owner - Cloud Native Security Operations
- **You are** a problem solver with a background in product owner management within cloud security.
- **We are** one of the best and most advanced Cyber Security teams in Australia.
- **Together we can** contribute to protecting the group, its customers and community.
**Your business**:
The Technology division delivers the group's information technology and banking operation functions to ensure the highest levels of customer service through world-class process excellence and technology innovation. Cyber Security protects the bank and our customers from theft, loss and risk events, through effective and proactive management of cyber security, privacy and operational risk.
We support our people with the flexibility to balance where work is done with at least half your time each month connecting in office. We also have many other flexible working options available including changing start and finish times, part-time arrangements and job share to name a few. Talk to us about how these arrangements might work for you. We're hiring from across all of our technology hubs in Sydney, Melbourne and Perth. We really love working here, and we think you will too.
**Your new team**:
The Cloud Security Technology Crew is part of the group's wider cyber security landscape. This division ensures the delivery of complex security initiatives with a key focus on the group's native cloud security offerings across platforms and various systems.
Our mandate is to protect the business' platforms, systems, data, digital assets, and reputation that is interconnected with the organisation's cloud solutions. We also support the group in developing innovative and market-leading offerings, which are underpinned by security, privacy and trust.
**Your impact and contribution**:
You will lead a squad (systems engineers, security SMEs and analysts etc) working closely with our Cloud Incident Response teams, to drive and prioritise cloud security capability delivery, offer technical expertise across design, services and solutions, all while consulting on cloud service providers' native security services to key stakeholders across the group.
You will also:
- Create technology roadmap and product lifecycle for product / control adherence.
- Offering technical guidance across various product, design solutions and roadmaps.
- Be a technical lead Product Owner with a strong background in AWS and Azure Cloud Service Providers' native security products, services, and solutions.
- Govern the technical decision forum (e.g., product enhancements, connectors)
- Signs off on technology solutions.
- Manages / owns technology risk e.g., EOS, vulnerabilities etc.
- Own/writes the quarterly planning/technology crew memos and create/maintain/prioritise the technology team's backlog.
- Manage technology escalations.
- Participate in the audit process and work with service management to prioritise agreed findings into service management / technical product backlog.
- Renewals (licencing, contracts)
- Define & contribute evaluation criteria into the vendor selection process and provide feedback and recommendations to RFI/RFP Process
- Liaise with delivery & operations to understand run costs and challenges to identify improvements to incorporate into the product backlog.
- Own and lead evaluation of vendor software's new & upcoming offerings against tangible security benefits, conduct research into the product environment, industry standards and best practices.
**We are interested in people who**:
Have previously held the position of a Product Owner, technical security design or comparable role with a technical background in cyber security, specialising in cloud technology, platforms and services.
You will proficiency across a number of cyber domains with mature stakeholder management expertise. Have a proven ability to collaborate across the seams with Engineering and Product communities and practices, to embed cyber security, early into product lifecycles.
You will bring:
- **Background across cloud service providers' (AWS and Azure) native security products and services across are essential **this includes:
- **AWS**:AWS IAM, AWS Directory Services, Amazon GuardDuty, Amazon Inspector, AWS Security Hub, Amazon CloudWatch. AWS Inspector, AWS Config, AWS Shield Advanced etc.
- **Azure**:MS Defender for Cloud Azure Policy, Azure Private Link, Microsoft Entra ID, Azure DDoS Protection, Key Vault, Azure Information Protection, Network Security Groups etc
- Technical **security design and security strategy** expertise leading complex project road maps.
- Mature skills in **Architecture, Engineering** and/or Product Ownership.
- Background in delivering technical project initiatives across cloud technology, tools and services preferably AWS and/or Azure.
- Experience in a **technology focused leadership role**, including high levels of prioritisation and stakeholder management.
- Proficiency in managing an