Security Portfolio Specialist, CORIE Program na Reserve Bank of Australia

• Unique and dynamic environment
• Exciting time of growth
• Sydney CBD location with consideration for remote work

Do work that makes a difference

The Reserve Bank of Australia is hiring for a Security Portfolio Specialist, CORIE to join a skilled team on a permanent basis. This is an outstanding chance to take an important role in a unique team. The job holder will provide a balance between technical and non-technical cyber resilience expertise. They will work within a team that is responsible for day-to-day operations of the Cyber Operational Resilience Intelligence-led Exercises (CORIE) program and framework.

The RBA's unique position as Australia's central bank means you will gain exposure to an exciting and fast-paced environment with opportunities to apply your security expertise to new and diverse problems affecting the entire country.

Your Team

Reporting to the Manager, CORIE Program & Industry you will join a small, cross-skilled team of cybersecurity program experts, part of a larger multi-disciplinary security services team, sitting across the full spectrum of cybersecurity roles. There is a strong culture for collaboration, innovation and celebrating personal successes. The team is constantly looking to improve and welcomes fresh perspectives and ideas.

While positioned within the RBA’s cybersecurity team, you will work closely with individuals from other agencies within the Council of Financial Regulators.

Key Responsibilities

• Lead cyber intelligence-led Red-Team exercises, providing the Council of Financial Regulators (CFR) with expertise and reporting on financial institutions' cyber resilience.
  • Oversee exercises and serve as the interface to participating companies involved.
  • Support participating companies throughout the entire duration of an exercise.
  • Support program leads / colleagues as required and jointly oversee the exercise.
• Contribute relevant technical subject matter experience in Red Teaming / Threat Led Penetration Testing.
• Contribute to the strategic control and management of the CORIE program and guiding framework.
• Participate in internal and external program management groups.
• Perform thematic analysis of cyber assessments and present results.
• Contribute to embed cyber resilience within the CFR's broader operational resilience approach and frameworks.
• Stay informed on the evolving regulatory landscape and emerging operational resilience challenges facing Australia’s financial sector, with a focus on cyber resilience.
• Contribute actively to the development of new cyber tools and practices to maintain their relevance for the CORIE program and framework.
• Contribute to the preparation, submission and presentation of reports related to the progress of cyber resilience assessments, as required.
• Draft papers for regulatory groups on cyber resilience trends and changes.
• Help to maintain effective working relationships with government agencies including APRA, ASIC, ACSC, and Home Affairs.
• Help to develop and maintain effective relationships with industry service providers, supporting the growth of resource availability and capability in country.
• Contribute to thought leadership on cyber matters including leading activities to upskill colleagues and peers and efforts of the Australian regulators to maintain and enhance the cyber supervisory approach.
• Help to develop and maintain effective working relationships with peers in overseas central banks and industry governing organisations.
• Represent the RBA/CFR in industry forums, working groups, and external engagements to share insights and contribute to the advancement of cyber resilience regulatory initiatives.

Your Background, Skills and Experience

We are looking for a candidate that is passionate about cybersecurity and technology and enjoys sharing that passion with others.

Essential Criteria

• Significant experience of delivering cyber risk and resilience reviews and assessments, including scenario-based testing in the context of intelligence-led Red-Teaming or penetration testing, threat modelling or simulation exercises.
• Knowledge of cyber threat landscape and technology trends.
• A broad understanding of general cybersecurity and information technology topics and principles relevant to a modern enterprise environment. 
• Knowledge of relevant cyber security standards, best practice, and guidelines.
• Excellent project management skills (planning, resource management, risk management) including delivery of complex projects.
• Demonstrated ability to collaborate on work to produce the best outcomes for stakeholders.
• Excellent analytical and problem-solving skills able to turn analysis into relevant output.
• Ability to provide subject matter expertise confidently using appropriate judgement.
• Excellent communication skills, both verbal and written, with the ability to draft and present briefings for senior stakeholders and to present clear conclusions and recommendations.
• Be a highly motivated and pragmatic thinker, capable to challenge confidently in new environments.

Desirable Criteria

• At least 2 years dedicated technical or non-technical experience in a Cyber Threat Intelligence, Red-Teaming or cyber regulatory role.
• Alternatively, 3 years experience in other IT Security functions, or project/program/risk management.
• Bachelor's degree in a relevant field, Certified Information Systems Security Professional (CISSP) or Certified Information Systems Manager (CISM), and/or equivalent practical experience.
• Operational knowledge of CORIE or another similar framework.
• Understanding and knowledge of cyber and/or information security related regulations, guidelines, and standards particularly in relation to the Australian financial industry (e.g. CORIE, CPS234) and the international regulatory landscape (e.g. TIBER-EU, EU DORA, CBEST).
• Experience with relevant service providers.

Travel may be required, as is occasional working irregular hours. The successful candidate will hold or be required to undertake a Negative Vetting Level 1 security clearance, and as a result we can only accept applications from Australian citizens.

What's on offer?

•   Work for an organisation that truly makes a difference to the Australian people.
•   Develop your career in a collaborative environment.
•   Access a wide-range of benefits including generous training opportunities.

Why RBA

The RBA makes an important contribution to the Australian economy through the pursuit of national economic policy objectives and associated activities in financial markets and banking. We also issue Australia's banknotes and operates infrastructure critical to the payments system, all of which contribute to the welfare of the Australian people.

Made up of specialists across a wide range of fields, our people have a critical role to play in achieving these objectives. Our people conduct themselves with a high degree of integrity, while striving for excellence in the work they perform and the outcomes they achieve. We encourage intelligent inquiry and we treat one another with respect while promoting the public interest through our efforts.

We know it is the growth and success of our people that drives the Bank forward. Come and make a bigger contribution while you build and develop your own skills too, because being more means you can do more, for yourself and for Australia.

The Reserve Bank of Australia is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and encourage applications from experienced candidates seeking workplace flexibility.

Application Close :

.