Share this Job

Information and Technology Risk & Assurance Manager

Date: 14-Jun-2022

Location: Melbourne, VIC, AU, 3000

Company: Australian Unity

  • Support the delivery of an information and technology risk management program across Australian Unity.
  • Permanent full-time opportunity – join a collaborative and dynamic Group Governance function!
  • We’re for Real Wellbeing.


Join us and let’s make a bigger difference together.
It’s an exciting time to be joining Australian Unity – we have grown significantly over recent years and are transforming to capitalise on further growth opportunities to help our customers and employees thrive. We operate with commercial principles and with a strong social purpose to create community value. Australian Unity is proud to be an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
Established in 1840, we’re Australia’s first member-owned wellbeing company.  Today we have over $1 billion in revenue and provide smart solutions and services to more than 700,000 Australians.  We employ over 7000 people and our purpose is to Help People to Thrive.


Your New Role:
An exciting opportunity has become available within our Group Risk and Compliance team for an Information and Technology Risk and Assurance Manager to join our broader Group Governance function. This line 2 role will see you reporting directly to the Head of Information and Technology Risk.


Your New Role Looks Like This:
You will support the delivery of an information and technology risk management program across the Group through the provision of high quality, proactive and commercial risk and compliance services that support delivery of Australian Unity’s strategy and compliance with regulatory requirements. This will include the following key activities:

  • Manage a systematic program of key cyber security control assurance testing in accordance to the risk profile of the various information assets across the business and manage day-to-day relationship with external consultants to support delivery of the program.
  • Influence Technology Leadership Team to prioritise control remediation activities and support technology stakeholders within execution of the remediation activities from assurance testing, internal audits. external audits or other relevant assurance testing
  • Provide controls advisory to business stakeholders on information and security risks. Support business stakeholders in reviewing initial and ongoing due diligence for key IT service provider/vendor relationships, including cloud suppliers
  • Perform and manage the annual PCI-DSS certification process for relevant business units within the Group.

About You:

  • Relevant tertiary qualifications with a minimum of 10 years of experience in information security risk, cyber security risk, key controls design and assurance, technology, risk, compliance, or audit related discipline is required.
  • Relevant cyber security or controls assurance qualifications (CISA, CISSP, PCI-P, CRISC or CISM). A strong working knowledge of common security frameworks such as NIST 800-53, NIST CSF and the ISO security suite. Exposure in data privacy and governance including ethical usage considerations is desirable  
  • Demonstrated ability to influence others, drive cultural change and gain support for relevant control implementation and remediation initiatives.
  • Experience leading teams through change and working agilely in complex environments.
  • Exceptional stakeholder management, communication and problem-solving skills 


Your Benefits:
You will enjoy a range of great employee benefits and rewards including:

  • Competitive Remuneration and Incentive Program
  • A range of attractive product and service discounts from Australian Unity’s Retail and Wealth Management portfolio – including health insurance and banking products
  • Supported Learning and Career Development program
  • Flexible Working Arrangements including Work-From-Home days with a real work-life balance
  • Available access to LinkedIn Learning courses through our great Learning platform
  • Additional paid Wellbeing and Community Volunteer Days yearly


What Makes Us, Us
Putting people first is not just something we say, it's what we do. We care for our people so they can care for themselves and our customers. We stay true to our values (Bold, Warm, Honest), we work hard because it matters and we work well together – collaborating, encouraging and even managing to have some fun.
At Australian Unity we do the right thing and we expect the same from others. Being a member-owned company, means we're focused on our members and customers, not shareholder returns. Our purpose to Help People to Thrive, drives us to make a real difference, every day, big and small. We are passionate about improving the wellbeing of all Australians and about making a positive difference.
** All Australian Unity employees must be fully vaccinated for COVID 19.
Australian Unity is an Equal Opportunity employer and we encourage applications from all members of the community, including people of Aboriginal and Torres strait Islander descent, culturally and linguistically diverse backgrounds and, mature aged people.