Senior Analyst/Risk Specialist, Cyber Risk and Response

Job Description

Senior Analyst/Risk Specialist, Cyber Risk and Response APRA is seeking a Senior Analyst/Risk Specialist to assess cyber risk and response management practices within regulated entities, whilst providing advice concerning current and emerging cyber risk and response issues (e.g. cyber, AI and service provider / technology concentration risk) and commensurate sound risk management practices. In addition, this role will participate in the development of information security standards and guidance, with an opportunity to influence cross-industry practices and industry change initiatives. The team The Senior Analyst/Risk Specialist sits within the Non-Financial Risk division, which is part of the Cross-industry Risk division (CRD). CRD helps APRA protect the Australian community by providing cross-industry risk data and insights, specialist advice and forward-looking analysis to strengthen supervisory judgement, policy development and strategic decision-making. Key responsibilities Understand the key cyber risk and response issues within regulated entities (cross industry, wide variety of entity size and complexity) Successfully influence regulated entity decision makers, as part of APRA’s prudential activities, to implement improvements to cyber risk and response management practices Maintain information security and technology resilience prudential standards and guidance for Australian APRA regulated entities Keep pace with rapidly developing technologies / products / services, with an understanding of how this changes the risk profile Contribute to a high level of awareness across the Cyber Risk & Response team in relation to cyber risk analysis (including knowledge of risk profiles within regulated entities and within the Australian financial system) given the broad range of issues to consider Provide quality services from within the Cyber Risk & Response team, given the volume, variety and complexity of work Maintain effective working relationships with other APRA supervision areas, given diverse interests of the various areas Engage with Government and industry representatives with respect to a variety of industry change initiatives Provide internal APRA staff (typically with non-technical backgrounds) relevant education Align with APRA’s strategic plan in order to improve the cyber resilience of the financial system Lead the execution of cyber strategic initiatives About you Knowledge and understanding of the APRA mission, objectives, functions, processes and systems Expertise in assessing the management of cyber risk, incident response, and technology resilience by APRA regulated entities. Areas assessed include IT organisation & governance, risk management, strategic planning, information security (including cyber), IT operations and service management, service provider risk management, application development, data management, business continuity management and disaster recovery, outsourcing, and assurance Extensive experience in dealing with technical experts and ideally representatives of APRA regulated entities High level of organisation and negotiation skills High level written and verbal communication skills for advising internal staff and external entities Tertiary qualifications in a field relevant to Cyber / Technology Resilience Management. To work with us, you need to be an Australian citizen with eligibility to gain a Baseline Security clearance. About APRA The Australian Prudential Regulation Authority (APRA) places you at the heart of Australia’s financial services industry. APRA serves the Australian community by helping ensure financial institutions deliver on the financial commitments they make, within a stable, efficient and competitive financial system. At APRA we’re committed to providing an inclusive workplace where everyone belongs, feels valued and respected. We aspire to attract and foster diversity of background, thought, and experience, recognising that a broad range of perspectives, approaches and ideas makes us stronger, and better enables us to meet our obligation to protect the financial wellbeing of the Australian community. When applying, please inform us of any adjustments you may need during the interview process. APRA invests in contemporary technologies to enable our employees to achieve work life balance, via flexible working practices. We are dedicated to cultivating a diverse and inclusive workplace that fosters collaboration and continuous improvement. APRA provides ongoing studies support, structured training programs and excellent career progression opportunities all within a highly professional environment. #J-18808-Ljbffr