**Company Description**
Supporting millions of Aussies since 1988 with low fees and competitive long-term performance. Profits back to members, not shareholders
**Closing date: 3rd February 2025**
Please note Rest does not accept speculative resumes from recruitment agencies
The Technology Supplier Compliance Manager ensures that Rest's technology vendors adhere to our policies, standards, and regulatory obligations. This role focuses on governance, risk, and compliance, setting clear expectations and enforcing compliance to protect Rest's data and technology infrastructure.
**Key Responsibilities**:
- Establish and monitor vendor technology-related risk management controls and compliance.
- Conduct due diligence and risk assessments on technology vendors to ensure compliance with company policies and regulatory standards.
- Collaborate with Risk Management, Procurement, Legal, and IT departments to enforce standardized vendor compliance processes.
- Coordinate risk management activities with vendors and respond to audit findings.
- Develop and update company-wide vendor management policies and procedures.
- Ensure vendor governance forums address risk and compliance management adequately.
- Provide training on vendor compliance requirements and best practices.
- Stay informed about relevant laws, regulations, and industry best practices, updating internal policies accordingly.
- Prepare reports for senior management on vendor compliance status and risk management efforts.
- Participate in contract negotiations to ensure compliance measures are included in agreements.
**Qualifications**
- Bachelor's degree in Business, Information Technology, Cybersecurity, or a related field.
- Relevant certifications such as CISM, CRISC, CISSP, or CISA are highly desirable.
**Required experience, understanding or credentials including**:
- Minimum of 5 years of experience in vendor management, IT Risk & compliance, or a similar role within a technology environment.
- Strong understanding of information security principles, data protection laws, and industry and regulatory standards such as ISO 27001, SOC 2, CPS 234, CPS 230, GDPR, and HIPAA.
- Experience with vendor risk management platforms and tools.
- Proficient in performing security risk assessments and audits.
- Excellent communication and negotiation skills, with the ability to engage effectively with both technical staff and vendors.
- Detail-oriented with strong analytical and problem-solving abilities.
- Ability to work independently as well as part of a team.
**Additional Information** Benefits**
Our benefits have been designed so you can tailor your experience with us and include:
- Personal and professional development opportunities
- ** Flexible, hybrid working - work to suit your lifestyle (must be based in Australia)**:
- Purchase leave scheme and gender neutral 16 weeks paid parental leave
- Super Contribution Continuation for 12 Months of parental leave
- Meeting free breaks (Rest Stops)
- Income Protection Insurance
- Rest Excellence awards (peer recognition awards based on Rest's values and behaviours)
- Rest is committed to creating a flexible work environment and culture that embraces diversity, equity, and inclusion - where people feel welcome, safe to be themselves and inspired to do their best. _
**Please note only people with the right to work in Australia will be considered.**
- _Funds under management as at 30 June 2023. Rest is recognised as a _Responsible Investment Leader_ by the Responsible Investment Association Australia (RIAA) in its Responsible Investment Benchmark Report 2022._