Overview
We are seeking a highly experienced and resilient Senior Manager - Cybersecurity Risk to join our team. This critical second‐line‐of‐defence role is pivotal in providing independent advice and assurance on Auto & General's cybersecurity risk management framework.
Brief Description
You will be instrumental in ensuring our cybersecurity posture is robust, aligned with industry best practices, and fully compliant with regulatory requirements. This role demands a strong ability to provide independent oversight, effectively challenge our first‐line cybersecurity team, and ensure practices align with our risk appetite and regulatory expectations. Given recent self‐reported cybersecurity gaps, your expertise will be key in driving significant improvements and proactive risk identification.
You'll partner closely with data owners, technology teams, and governance functions to enhance enterprise‐wide practices, strengthening technology risk governance and regulatory compliance across our operations.
Key Responsibilities
* Provide independent Line 2 advice and assurance over the implementation of A&G's cybersecurity risk management approach, including policies, procedures, and controls.
* Conduct regular reviews of the effectiveness of cybersecurity controls and identify areas for improvement.
* Monitor and report on key cybersecurity risks, controls, issues, incidents, and risk‐in‐change.
* Develop and implement robust cybersecurity risk management frameworks and methodologies.
* Work closely with the first line of defence, senior management, and the third line of defence (Internal Audit) to ensure effective risk identification, assessment, and mitigation.
* Build and maintain strong relationships with key stakeholders, including regulators (e.g., APRA), industry partners, and cybersecurity experts.
* Develop and implement strategies for enhancing A&G's cybersecurity risk management capabilities.
* Stay abreast of emerging cybersecurity threats and trends, advising on the implementation of new technologies and processes.
* Contribute to the development of cybersecurity awareness training and incident response.
QualificationsEssential
* Minimum 7‐10 years of professional experience in cybersecurity risk management, ideally gained from a large IT/Security professional services firm or a Big 4 consulting organisation.
* Possession of at least one recognised cybersecurity certification (e.g., CISSP, CISM, CISA).
* Proven ability to negotiate with, challenge and communicate effectively with technical security teams, demonstrating deep technical acumen in cybersecurity concepts.
* Strong understanding and proven experience in developing and implementing cybersecurity risk management frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework).
* Experience with a range of cybersecurity technologies, including firewalls, intrusion detection systems, endpoint security solutions, and data loss prevention tools.
* Excellent communication, interpersonal, and presentation skills, with strong analytical and problem‐solving abilities.
* Ability to work independently, manage multiple projects, and demonstrate a passion for cybersecurity and continuous learning.
Highly Desirable
* Experience in the insurance or broader financial services industry.
* Experience with cloud security and data privacy regulations.
* Experience with incident response and breach notification processes.
BenefitsOur Perks
* Location – Toowong, close to public transport, excellent parking, bike storage, showers, outdoor spaces and modern collaborative areas. Conveniently based at Toowong Village tower with views of the mountains and the Brisbane River, only 4 km from the city.
The Benefits Of Working At A&G
* High performance bonuses and other perks.
* Work flexibility with options to work from home two days per week.
* Volunteer days, an additional paid 'ME' day, paid parental leave and optional purchase of additional leave.
* Learning and professional development opportunities.
* Give‐back programme with volunteering, fundraising and donation opportunities.
* Well‐being support including healthy mind and body hub, mental‐health support and fitness discounts.
* On‐site events, family fun days and annual celebrations.
* Discounts on insurance products, retailers and hospitality providers across Australia.
About Us
Auto & General (A&G) is the fastest‐growing major motor and home insurer in Australia, providing insurance products and solutions to safeguard a brighter future for our customers and community. Our range of general insurance products including car, motorcycle, home, contents, pet and travel products are delivered through our multi‐award‐winning brand Budget Direct and partnerships with leading brands – ING, Qantas, Virgin Money and Coles Insurance.
We're excited about the future and we're always on the lookout for talented, passionate individuals who can help us achieve our goal of being Australia's best insurer! If this sounds like you, apply today.
Inclusive Culture
Auto & General values individual differences and believes in fostering an inclusive culture that creates a great place to work for all.
Recruitment Agency Notice
A note from Auto & General to recruitment agencies: We politely ask that you avoid making any approaches or sending any unsolicited resumes to our Recruitment Team or Hiring Leaders across our business. Auto & General is not responsible for any fees related to unsolicited resumes.
#J-18808-Ljbffr