Company Logo

Technology Resilience Risk Specialist

Australian Prudential Regulation Authority

Job Description

  • Contribute to APRA's role as prudential regulator of financial institutions
  • A dynamic and highly varied role working collaboratively with APRA's supervisory teams and engaging with industry
  • Opportunity for flexible working arrangements in a workplace that values diversity, inclusion and work/life balance

There has never been a better time to join APRA. We are building a stronger regulator and strengthening outcomes for the Australian community. A key focus is ensuring that regulated financial institutions are proactively undertaking continual actions to strengthen their cyber resilience and combat cyber-attacks through prevention, detection and response capabilities.

To help us deliver on this strategic priority, we are seeking experienced and passionate technology professionals to join the Technology Resilience team as part of the Operational Resilience unit. The role is focused on assessing and influencing the maintenance of technology resilience (including management of IT risk) by APRA regulated entities (including banks, insurance companies and superannuation) and executing various streams of work to improve cyber resilience of the industry.

In this role you will gain a unique industry-wide perspective and be responsible for providing advice concerning current and emerging technology trends (e.g. cyber, fintech, cloud and AI/ML) and commensurate risk management practices. Participation in the development of prudential standards and guidance also provides an opportunity to influence cross-industry practices.

Key challenges and opportunities:

  • Understanding the key IT risks within regulated entities (cross industry, wide variety of entity size and complexity)
  • Successfully influencing regulated entity decision makers to implement improvements to IT risk management practices
  • Maintaining prudential standards and guidance for regulated entities
  • Keeping pace with rapidly developing technologies / products / services, with an understanding of how this changes the risk profile
  • Contributing to a high level of awareness across the Technology Resilience team in relation to IT risk analysis (including knowledge of risk profiles within regulated entities and within the Australian financial system) given the broad range of issues to consider
  • Providing quality services from within the Technology Resilience team given the volume, variety and complexity of work
  • Maintaining effective working relationships with APRA supervision areas
  • Engaging with Government and industry representatives on industry change initiatives
  • Providing APRA employees training and development with respect to technology resilience

Desired knowledge and experience:

Demonstrated experience in assessing the management of technology resilience, in an area such as IT organisation & governance, risk management, strategic planning, information security (including cyber), IT operations and service management, project management & application development, data management, business continuity management and disaster recovery, outsourcing, and/or assurance.

Ability to write insightful observations based on the content of qualitative and quantitative information on technology resilience (including cyber) for the consumption of non-specialists is key to success in this role. In addition, high level analysis and problem solving with excellent written and verbal communication skills for advising internal APRA stakeholders and external entities is important. Tertiary qualifications in a field relevant to the role are required.