Security Incident Response Manager

As a Security Incident Response Manager at CommBank, your primary focus will be to lead cyber security incident management activities to identify, coordinate, investigate, and resolve incidents as part of the Cyber Defence Operations function. You will play a crucial role in protecting the bank and our customers from theft, losses, and risk events through effective management of cyber security incidents, threats, privacy, and operational risks. Your responsibilities will include monitoring and analyzing key intelligence points to ensure timely management of bank-related incidents, preparing reports on Security Incident Response activities for team members, stakeholders, and leadership, improving current processes and tools to enhance the team's technical capabilities, and acting as a subject matter expert providing advice on controls, processes, or initiatives within your areas of responsibility. Additionally, you will work closely with business, risk management, and compliance stakeholders to ensure compliance with Group Policies, risk standards, and obligations. You will also be involved in building awareness of Cyber, educating business stakeholders, delivery teams, and others, defining policies, guidelines, and standards, and promoting a risk and control culture across the business. To excel in this role, you should have at least 12 years of experience in Cyber Security incident response within the financial services industry or a security consulting firm. A risk mindset is essential, as all CommBank employees are expected to proactively identify, understand, openly discuss, and act on current and future risks. Demonstrated willingness to engage in self-learning or security research outside of standard business hours is highly valued. Furthermore, you should possess the ability to capture and articulate intelligence clearly and concisely, consult with business and technical representatives to balance security and business requirements, navigate and optimize security technologies and operations, and be comfortable with ambiguity while challenging the status quo to create innovative solutions. Critical thinking skills, experience in driving productivity improvements, managing dependencies between complex environments, and industry certifications such as CISSP, SANS, or ISACA are also essential qualifications. A Bachelor's or Master's degree in Engineering in Computer Science/Information Technology is required for this position. If you are already part of the Commonwealth Bank Group, you will need to apply through Sidekick to submit a valid application. We are committed to supporting you in advancing your career and encourage you to embrace new ideas, change, and continuously seek innovative ways to perform activities.,