Manager Victoria Police location Melbourne. VPSG-6 Salary $130,673 - $174,869 + superannuation.

About the role the Technology Risk Manager role is a critical role to strengthen and drive effective Technology Risk Management practice, executing effective end-to-end risk assurance process for Victoria Police's technology services.

In this role, you will be the subject matter expert and accountable for specialist risk advice to support the delivery of product and services and creating a more effective risk management culture.

This role will provide thought leadership, establish, deliver and embed a culture of continuous improvement to address compliance, operational technology risk identification and management, and ensure effective controls are in place to mitigate current and emerging risks. Victoria Police is a contemporary and agile workplace and supports flexible working arrangements.

Your duties will include establish and own the Technology Risk Management practice, framework, policies, processes and continuous improvement. Be the Subject Matter Expert in Technology Risk Management to support the business in the delivery of their outcomes within an effective risk culture.

Lead risk assessments, update the control library and maintain risk register and reporting dashboards. Plan, co-ordinate and deliver risk management workshops.

Ensure the effectiveness of controls through control design development and periodic control testing for compliance with the Victorian Protective Data Security Standards at an appropriate maturity level.

Provide risk support in BCP (Business Continuity Policies) and project risks. Deliver IT Assurance and Audit engagements in support of external and internal audits. Keep abreast of emerging trends and technologies to identify potential vulnerabilities and threats and provide thought leadership.

Work with VP partners, internal and external stakeholders and lead collaborative growth of the risk management practice.

Identify key risks, issues, and incidents and advise on remediation. Partner with internal and external teams, addressing compliance, operational technology risk, and assessing internal controls and frameworks to mitigate current and emerging risks on IT systems.

As the successful applicant, you will have experience in managing the Risk Register, Control Register, Incident & Breaches Register and Business Impact Analysis Register. Proficient experience in either IT Audit or Technology Risk with either GS007 / ISO27001 / CPS234 / SOC1/2/3, SOX or ASAE Audits.

Strong understanding of cyber security frameworks, such as ISO 27001, NIST, and ACSC Essential 8. Recent experience gained in Cyber Security and Cloud Risk management required. Knowledge of, and experience with, internal auditing, IT risk management strategies and techniques.

Practical and solution-oriented approach to assess new technology, and evaluate and advise on impact, risk and remediation. Highly adaptable, appetite to work in a growing and changing environment and ability to communicate with technical team leads required.

Superior communication and relationship skills. Build relationships and work across a diverse group of stakeholders. Have experience in a large and complex IT organisation. ISACA, CRISC or equivalent preferred.

Requirements and relevant information one (1) x full-time, ongoing position available. This position is located at Victoria Police Centre, 311 Spencer Street, Docklands. The successful applicant will be required to undergo National Security Vetting, achieve and maintain a security classification as determined by the Department Head. To achieve this, applicants must be an Australian Citizen.

The successful applicant will be required to undergo pre-employment checks which may include fingerprint checks and misconduct screening.