Technology and Information Security Governance - London, United Kingdom - ANZ Banking Group

ANZ Banking Group

Verified Company

London, United Kingdom

2 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

Req ID: 58546

Department:
Tech Institutional Digital Banking Operations Doma

Division:
Technology

Location:
London

About the role

At ANZ our purpose is to shape a world where people and communities thrive. We're making this happen by improving the financial wellbeing and sustainability of our customers so they can achieve incredible things
- whether they're buying a home, building a business or saving for things big or small.

You will lead the Technology and Information Security Governance (TISG) 1st line assurance team for America, United Kingdom, France and Germany.

In this role, you will manage technology risk, information security and technology compliance matters, working closely with risk owners and the three lines of defense.

A trusted advisor and expert to technology and business stakeholders, you will bring with you specialist experience on technology and information security assurance, deep understanding of technology as well as specialist experience across current and emerging technologies such as cloud, third party technology vendor risks, machine learning, API, Open Banking and AI

Your role will report to the Head of Technology - Europe and America (based in London), in line with local regulations and accountability dictated by the Senior Managers and Certification Regime (SMCR).

You will have a matrix reporting line to the functional Head of Technology and Information Security Governance - DBO and International (based in Hong Kong).

This role is accountable for:

As a TISG Lead (Line 1 Risk) in our Digital Banking Operations Technology team, you will drive technology operational risk excellence using the ANZ Risk Management Framework.

You will be supporting Country Technology teams to ensure their key risks are understood and well managed. In addition, you will drive continued information security maturity uplift and support technology regulatory compliance for the respective jurisdiction(s).

As part of this role, you will face into internal audit and external regulatory engagements for the assigned portfolios to support positive outcomes and execution of associated treatment plans.

Perform, lead and/or provide input into risk assessments as well as assessments against country technology regulatory requirements and develop strong relationships with business stakeholders.

You will have strong communication and presentation skills that support your ability to translate deep technical matters into business and operational risk consequences.

You will lead activities to sustain and improve compliance with internal information security policies and external regulatory requirements, determine technical and business impacts from technology risks or security controls such as penetration testing, independent security assessments etc., building staff and customer security awareness through delivery of communication and training programs, and providing business support and leadership on information security matters.

You will manage a team member in America who will support you in executing to your role accountabilities.

Role Location:
ANZ London

Role Type:
Permanent

What will you bring?

To grow and be successful in the role, you will ideally bring the following:
A track record in a technology risk, assurance, information security audit or compliance-based roles
Proven experience providing risk and assurance expertise, ideally to Technology based business units and Institutional Banking exposure.
A strategic thinker who is able to understand business and customer impacts arising from technology risk and build strategies to uplift information security / technology assurance maturity within their portfolio
Specialist in technology concepts, including cloud and third party technology vendors risks
Strong understanding of technology regulatory and business operating risk environment, monitoring legislative change and regulator sentiment to identify emerging risks and actions to ensure compliance, responding when needed (with experience across the financial regulatory landscape of United Kingdom, America, France and Germany)
Experience in leading and driving highly engaged teams - you will have a direct report managing ANZ America (New York)
Strong controls framework understanding and experience
Experience and understanding of key technology concepts as well as cloud security control environments and risks
Technical architecture and security design experience is preferred
Ability to drive and manage own workload and operate within defined deadlines

Ability to tailor your communication to your audience level of understanding and communicate in a simple manner which is easily understood by non-risk practitioners.

Information security and risk industry qualification desired - CISSP and/or CISA qualification or equivalent qualifications

At ANZ a growth mindset is at the heart of our culture, so if you have most of these things in your toolbox, we'd love to hear from you