Risk Control Manager

Responsibilities1) Support the broader team in the delivery of an effective Controls Assurance Program (CAP) across the Bank, utilising CBA's Operational Risk Management Framework (ORMF) to provide the business with an assessment and assurance over the effectiveness of the control environment. Your team will provide Line 1 assurance over the Bank's critical technology infrastructure and services. To do this you will need to work closely with the Risk Management & Engagement teams and the business to ensure optimisation of controls testing. You will oversee junior members of staff and execute complex and subjective controls assurance work yourself.2) Drive continuous improvement of the ES Control Environment through the provision of insights and reporting to enable the timely and effective remediation of controls.3) Drive continuous improvement of CAP through implementation of continuous control monitoring, automation and control rationalisation. 4) Perform testing of complex technology controls. Where weaknesses are found, you will help in root cause analysis, remediation strategies and reporting to key stakeholders.5) Develop and enhance the reporting of control effectiveness across ES to provide Control owners and Service Owners with the management information required to effectively manage services.6) Coach team members to perform IT general controls, Automated controls, key reports and Interface controls 7) Assist in the uplift and roll out the ES CAP Assurance methodology8) Collaborate and work across the Line 1 Risk Community delivering appropriate risk outcomes9) Support Senior Manager in effective validation of design & operating effectiveness of assigned technology control.Essential Skills:Risk Mindset -All CommBank employees are expected to proactively identify and understand, openly discuss and act on current and future risks.Assurance skillset - experience in performing and coaching others in the identification, planning, testing and reporting of the following controls types:controlsGeneral ControlsProcess controlsKey Control TestingQualifications:Assurance experience - 4-8 years in an assurance role with a focus on technology and automated controls. Experience in performing SOX and Third Party Assurance engagements (e.g. SOC, ISAE 3150, SSAE16 etc.) preferred.Ability to analyse/identify risks and opportunities and recommend appropriate actionsInfluencing and consulting skills, the ability to build relationships with stakeholders at all levelsStrong written and verbal communication skillsAbility to think critically and analytically and use data driven insights to solve problemsKnowledge of Operational and Compliance Risk frameworks would be advantageousFinancial services & Technology commercial aptitude & knowledge.The following qualifications would be looked upon favourably:CISACISMCRISCExperience in the following frameworks would be looked upon favourably:COBITITILNIST 800-53NIT Cyber Security Framework PRB