Manager - Technology Controls Assurance

How will you make an impact?

The Manager – Technology Controls Assurance sits within the second line of defence (“2LOD") and is responsible for providing second-line oversight and assurance over technology and cyber risk management practices at Hostplus. The role ensures that Hostplus complies with APRA prudential standards and has a robust control environment that enables resilience, compliance, and operational continuity. The role involves working closely with the business to ensure that the fund's technology and cyber controls assurance are tested, designed, operating effectively to manage and mitigate risk exposure and ensure compliance. This is a 6-month maximum-term contract, available in Melbourne or Adelaide.

The opportunity

• Manage and conduct assurance over the effectiveness of the design and operation of internal technology business controls (including cyber security controls), and other business controls, in line with defined processes and timelines and in line with the Hostplus Risk Management Framework and Control Assurance Framework. 
• Provide recommendations, specialist guidance to support controls owners, and agree tangible management actions to uplift processes and strengthen control environments arising from assurance outcomes 
• Work with the 1st Line of Defence, Risk, Compliance, Legal and Governance teams, and the 3rd Line of Defence collaboratively. 
• Lead and report on assurance reviews assessing the design and operating effectiveness of controls, including vulnerability management, incident response, identity and access management, and third-party service provider oversight. 
• Support the Head of Risk and Compliance Frameworks and Assurance in preparing submissions to be presented to the Hostplus Audit Committee, Risk & Compliance Committee and the Board, as needed. 
• Assist the Risk, Compliance, Legal and Governance team in the analyses of matters impacting the Fund, as needed. 
• Provide people leadership support and guidance to the Risk & Compliance Frameworks & Assurance team members, including review of reports and other activities 
• Contribute to the uplift of Hostplus' overall risk maturity, culture, and control environment 
• Any other reasonable duties as requested by the Chief Risk Officer and / or the Head of Risk & Compliance Frameworks & Assurance 

About you

• Tertiary qualification in information technology and / or equivalent years of relevant experience in technology and cyber security roles. 
• 3 to 5 years of experience in technology and cyber risk advisory, technology and cyber controls assurance, technology risk reviews and / or risk assurance 
• Superannuation and / or financial services experience is beneficial. 
• Advanced knowledge of investigative techniques and root cause analysis, with experience in systems analysis and testing, CPS 234 and General Information Technology Controls (GITC) assurance.  
• Strong technical knowledge of the financial services industry, in particular the Australian superannuation industry regulatory environment and emerging practice and concepts including a working knowledge of the Corporations Act, SIS Act and other applicable legislation, specifically technology and cyber standards 
• Strong communication skills with the ability to build relationships 
• Excellent written (including report writing) and oral communication skills 

What can we offer you?

Our employees are passionate about what we do and are proud to be part of an organisation which helps everyday Australians achieve a brighter future. We value diversity of thought and have an open and flexible workplace. Some industry leading benefits we offer include:

• Hybrid and flexible work environment
• 15% superannuation
• Additional paid leave over Christmas and New Year
• Additional 5 days paid “flex leave”, so that you can take time out when you need it
• 18 weeks paid parental leave
• Total Wellness Program, including benefits such as free flu shots, comprehensive EAP support, access to medical experts and wellness related events throughout the year
• 3 days community service leave
• 4 weeks paid gender affirmation leave
• Access to long service leave at 5 years
• Access to subsidised financial advice
• Dedicated per person development budget to support your growth

Just to name a few!

About us

At Hostplus, we passionately provide around 1.8 million members with the best possible service; constantly looking for new ways to deliver better value while helping members get the most out of their super. We are inspired to help our members achieve greater security for their future and ensure they retire with dignity.

Your role at Hostplus will make a difference, whether you're in marketing, financial advice, operations or any of our other divisions - you'll be contributing to ensuring our members retire with the best possible outcomes, and what better feeling is there than knowing your role helps someone to retire with dignity and security?

Our commitment to diversity and inclusion

We are dedicated to creating an inclusive workplace where everyone feels valued and appreciated for being their authentic selves. We celebrate diversity and believe that different backgrounds and experiences enrich our relationships and bring meaningful benefits to our people, our members, and the communities we serve.

We welcome applications from everyone and if you require any adjustments made during the recruitment process, we encourage you to reach out to us at talent@hostplus.com.au and to let us know how we can support.

How do I apply?

If you are interested in this opportunity, please follow the prompts to make an application.

We have an important duty to our members, all appointments are made subject to a satisfactory National Police, Bankruptcy and Insolvency Check. Applicants must have current and unrestricted work rights in Australia (sponsorship is not available for this role).