Overview Join to apply for the Head of Cyber, Technology & Data Risk role at NGM Group .
This is a high-profile second line of defence role reporting to the Chief Risk Officer, with direct exposure to the Board and Executive.
This role is more than a compliance position – it's an opportunity to shape the organisation's risk culture, influence major transformation projects, and provide strategic oversight of cyber, technology, and data risk.
You will partner with senior leaders, offer challenge and support, and translate complex issues into clear, actionable insights.
Key responsibilities Providing expert advice and support in designing policies, frameworks and interpreting legislation and regulations.
Assist the Chief Risk Officer and responsible committees in implementing frameworks related to information security, technology governance, and data governance aligned with the organisation's risk appetite.
Keep up to date with industry best practices and translate complex technical issues into clear, business-focused insights for the CRO, Board, and Executive Committees.
Offer guidance on regulatory engagement and foster a strong risk management culture.
Develop and embed a mature risk culture – encourage open discussion of risks, run awareness initiatives, and model positive behaviours.
Provide independent oversight of cyber resilience exercises and regulatory testing.
Build credibility across the business with technical expertise to challenge and influence senior stakeholders.
What are we looking for?
In-depth knowledge of cyber risk frameworks, regulatory requirements, and standards (e.g., SOX, PCI DSS, ISO 27000, APRA CPS 234).
Experience in Cyber Risk and/or Information Security Management or related functions.
Experience in governance and control frameworks.
Diversity of thought and experience to drive organisational progress while upholding values.
Demonstrated ability to influence at Board and Executive level, with experience presenting to senior audiences.
Excellent stakeholder management skills, particularly in building and maintaining relationships with cross-functional teams.
Information Security qualifications such as CISSP, SABSA, or CISM.
Outcome-focused with the ability to drive oneself and others to achieve results efficiently.
Benefits and role highlights Play a critical role in shaping risk culture at an evolving, values-driven organisation.
Provide Board-level input on cyber, technology, and data risk strategy.
Influence major technology programs underpinning the organisation's future.
Join a collaborative, people-focused culture where your voice is heard and impact is visible.
Work flexibly in a supportive environment that values professional excellence and personal balance.
About us As one of Australia's largest customer-owned banks, we operate under the trusted brands Greater