Manager, Technology Controls & Governance

The Opportunity:

AIA Australia is undergoing a large-scale technology transformation together with a number of major technology initiatives to address the dynamics of the market. As part of the transformation, a number of key initiatives are in progress to ensure the technology controls framework can reasonably align with the changed risk profile throughout the transformation.

Therefore, the role of Manager of Technology Controls & Governance takes important responsibilities to drive the success of these key initiatives.

This role can be based in either Sydney or Melbourne. 

The successful candidate would be responsible for:

• Manages a portfolio technology controls uplift initiatives to ensure AIA Australia’s technology control environment is meeting the latest trends of technology and regulatory development.
• Acts as one of the subject matter experts on Technology Controls and Governance in providing advisory on the emerging risk concerns.
• Partner with other risk champions to advocate the risk culture.
• Conduct analysis of the technology risk data collected from different information sources, and provide constructure recommendations to stakeholders for timely actions.
• Leads Technology Controls and Governance engagements including audit support, customer assurance engagements, third party security assessment, risk incident management, regulatory engagements and etc.
• Development and manage reports and dashboards on the progress of technology control uplift initiatives including risk registration and action tracking
• Timely escalate the issues that causing the delay of the initiatives.
• Provide ad-hoc support to other technology control and governance team members in emerging situation.

To be successful in this position, you will have:

• Minimum of 8 years of experience in technology control and risk management, technology audit, technology compliance function
• Strong awareness of Australian regulatory requirements including APRA CPS 234, CPS 220, ACSC Essential Eight, SoCI Act, Privacy Act, ISM, and etc
• Thorough understanding of international best practices of information security controls framework / standards, such as ISO/IEC 27001, PCI-DSS, NIST CSP.
• Thorough understanding of end-to-end process on audit and regulatory engagements
• Possess at least one of the information security / technology audit certifications such as CISA, CIA, CISSP, ISO27001 Lead Auditor and etc. Holders of PMP or other project management related certification is beneficial.
• Understanding of controls over public / private / hybrid cloud is preferred.
• Good understanding of best practices on technology control and compliance while keeping practicability
• Detail mined with excellent analytical skills supported by qualitative and quantitative data
• Be able to demonstrate to build and maintain an efficient, effective and repeatable audit and regulatory engagement framework, including knowledge retention and record management
• Be able to work under pressure with tight deadlines while maintaining quality of deliverables.
• Adaptable, able to interact and build strong relationships with people from a diverse range of backgrounds through team working and collaboration.

Why choose AIA:

• At AIA, we’ve made a promise to help people live healthier, longer, better lives. And it starts with our own people
• AIA Australia is part of the larger regional Asia AIA Group, which is the largest public listed life insurance company in the Asia-Pacific region
• Access our training and development to build on your current skills
• Career development through internal mobility opportunities
• Work for a business helping millions of Australians and make a difference to someone’s life everyday
• Access additional leave days a year to recharge and refresh yourself
• Enjoy wonderful Health and Wellbeing initiatives that support you
• Work with supportive and inclusive working environment
• Flexible working arrangement

At AIA Australia, we’re proud to help guide, support and protect the wellbeing of over 3.5 million Australians. Through life and health insurance, financial wellbeing and our total wellbeing ecosystem that includes AIA Vitality – the world’s leading science-backed wellbeing programme – we’ve started a movement to make Australia the healthiest, best protected nation in the world.

As part of the AIA Group - the largest independent publicly listed pan-Asian life insurance group with a presence in 18 markets in Asia-Pacific – it is our ambition to engage one billion people to live Healthier, Longer, Better Lives by 2030.  Lots of companies like to say they’re different.

What makes us truly different at AIA, is the difference we make in people’s lives.

AIA is different. Are you?