Job Opening at Commonwealth Bank

Job description

The Commonwealth Bank Group is executing a plan to enter and disrupt the South African banking market. This will be achieved through a combination of innovative technology platforms, simple transparent and relevant customer offers, unique and differentiated partnerships and a distinctive focus on digital banking. Our strategy is one of financial inclusion – we are looking to breaking down the barriers to participation in the formal financial system. We will do this through a combination of this ultra-low cost innovative digital banking proposition together with an emphasis on financial literacy where we will deliver the knowledge and understanding that is a prerequisite to trust and participation.

The Purpose Of The Role

You will be actively involved in remediation activities for a large cyber security program and secure delivery of banking. You will also be directly responsible for enabling the implementation of security controls commensurate with the risk appetite of the business. This role engages directly with country risk teams, regional Cyber security and technology risk, country Heads of Technology, and other key business stakeholders

You Will

• Perform the following tasks in manner consistent with CBA’s values of Integrity, Accountability, Service, Excellence and Collaboration. People Capabilities will be at the forefront of what you do including Customer Focus, Team & Culture, Continuous Improvement, Effective Communication, Judgement and Drive Results.
• Support the management of security & technology risks within the Bank
• Provide input to planning and delivery of non-negotiable security controls to all business units and their run the bank processes
• Provide leadership and strategic direction for Cyber Security capability, ranging from planning and development, and the collaboration with all stakeholders in DPG
• Responsible for embedding security controls into the SDLC methodology
• Determine and develop process for collecting meaningful metrics and reporting to align with regulatory requirements and governance frameworks across the region
• Working with the Technology Risk APAC to develop a common and consistent measurement of threat and risk
• Work to identify treatments for control gaps and remedial actions related to cyber security incidents ensuring the adoption or development of relevant security services
• Representative for local security governance structures and processes
• Stay current with incident response, digital forensics methodology, the associated legal requirements and threats applicable to the South Africa, and participate in the development of these security capabilities across APAC
• Identify security controls required for new digital banking platforms, including blockchain technology, mobile banking, and associated SARB regulatory requirements
• Inspire, mentor and motivate country Technology staff to attain goals and pursue excellence in security capability
• Plan for and support the establishment of new security services in-line with changing threat profiles and organisational context

What will make you successful?

• Strong technical knowledge of systems, networks, and security controls
• Outstanding communication skills both written and oral
• Outstanding influencing skills and organisation skills
• Ability to drive and manage own workload and operate within defined deadlines
• Seasoned understanding of Technology risk management principles and knowledge of Operational Risk and Compliance frameworks
• Inquisitive approach/ attention to detail
• Strong analytical and problem solving skills to develop acceptable solutions for the business
• Tertiary qualification in a relevant discipline will be preferred
• CISSP and/or CISA qualification desired
• Strong communication and influencing skills

We offer you the opportunity to expand your career surrounded by a skilled and successful group of individuals. Our remuneration packages are highly competitive and you will have access to a range of exclusive and exciting benefits.

We are committed to building a respectful and inclusive workplace, appointing the best person for the role, supporting diversity. All information will be held in the strictest of confidence.