Overview Join to apply for the Head of Cyber, Technology & Data Risk role at NGM Group . This is a high-profile second line of defence role reporting to the Chief Risk Officer, with direct exposure to the Board and Executive. This role is more than a compliance position – it’s an opportunity to shape the organisation’s risk culture, influence major transformation projects, and provide strategic oversight of cyber, technology, and data risk. You will partner with senior leaders, offer challenge and support, and translate complex issues into clear, actionable insights. Key responsibilities Providing expert advice and support in designing policies, frameworks and interpreting legislation and regulations. Assist the Chief Risk Officer and responsible committees in implementing frameworks related to information security, technology governance, and data governance aligned with the organisation's risk appetite. Keep up to date with industry best practices and translate complex technical issues into clear, business-focused insights for the CRO, Board, and Executive Committees. Offer guidance on regulatory engagement and foster a strong risk management culture. Develop and embed a mature risk culture – encourage open discussion of risks, run awareness initiatives, and model positive behaviours. Provide independent oversight of cyber resilience exercises and regulatory testing. Build credibility across the business with technical expertise to challenge and influence senior stakeholders. What are we looking for? In-depth knowledge of cyber risk frameworks, regulatory requirements, and standards (e.g., SOX, PCI DSS, ISO 27000, APRA CPS 234). Experience in Cyber Risk and/or Information Security Management or related functions. Experience in governance and control frameworks. Diversity of thought and experience to drive organisational progress while upholding values. Demonstrated ability to influence at Board and Executive level, with experience presenting to senior audiences. Excellent stakeholder management skills, particularly in building and maintaining relationships with cross-functional teams. Information Security qualifications such as CISSP, SABSA, or CISM. Outcome-focused with the ability to drive oneself and others to achieve results efficiently. Benefits and role highlights Play a critical role in shaping risk culture at an evolving, values-driven organisation. Provide Board-level input on cyber, technology, and data risk strategy. Influence major technology programs underpinning the organisation’s future. Join a collaborative, people-focused culture where your voice is heard and impact is visible. Work flexibly in a supportive environment that values professional excellence and personal balance. About us As one of Australia’s largest customer-owned banks, we operate under the trusted brands Greater Bank and Newcastle Permanent. With over 200 years of combined experience, we help Australians achieve home ownership while strengthening communities. Our core values are: Lead with heart – we care about better outcomes for customers and communities. Own the action – we build trust by doing things the right way, with honesty and transparency. Embrace opportunity – we challenge the status quo with foresight and expertise. Thrive together – we work as one to create the best possible future for customers and communities. NGM Group is committed to delivering trusted banking and ethical standards. All applicants undergo a skills assessment, comprehensive background checks, Bankruptcy Check, and National Police Check. Requirements and checks Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology and Consulting Industries: Financial Services, Information Services, and Banking Accessibility and inclusion We’re committed to an inclusive, diverse, and supportive workplace. If you require adjustments during the recruitment process, your Talent Acquisition Partner will discuss this confidentially. Note: We do not accept unsolicited CVs from recruitment agencies. J-18808-Ljbffr
