We've been trusted to serve Aussie communities since 1914 and grown to become a top 30-listed on the ASX with 120,000 team members and a portfolio of iconic brands. At Coles Group, you'll not only get to make a difference to millions of Aussie lives-you'll also get to see your impact.About the team:If you're looking for a fresh start, you've come to the right place. We're a large and iconic portfolio of trusted Australian brands - which means there are always exciting challenges and career opportunities waiting for you.As the way we shop continues to evolve, our Technology team keeps us at the cutting edge. Driven by our innovative, inclusive, and forward-thinking culture, we're constantly looking at ways to reinvent the shopping experience for our customers and build the next generation of digital retailing.About the role:In this role, you will prepare and present reports to the Audit Risk Committee, Executive Leadership and Technology Leadership team. Collaborate with cross-functional teams to develop and maintain policies, procedures, and standards related to GRC/ technology risk management.Key responsibilities include:
- Manage the execution of Coles Technology strategic plan for Risk Management, including associated policies and procedures
- Implement the enterprise risk management framework within a complex environment and undertake other risk management related programs and projects.
- Manage compliance with relevant regulations (e.g. SOCI and the Australian Privacy Act) and standards.
- Uplift maturity of internal teams risk identification, assessment, mitigation and monitoring capability via training activities
- Manage and deliver a functional framework for managing corporate governance.
- Assess technology risks and controls, identifying areas for improvement and implementing effective mitigation strategies.
- Support 3rd line of defence (internal and external audit) activities
- Support functional areas with effective delivery of risk management and assurance activities in line with Coles policies and processes
- Protect and enhance Coles' reputation with customers, stakeholders, regulators, and media
- 5-8 years of experience in technology risk management or IT assurance/ audit, preferably with a large ASX listed company.
- External and/or internal audit background will be highly regarded.
- Demonstrated experience with audit/risk/compliance reporting and presentation with senior/executive stakeholders
- Design and document GRC policies, procedures, and controls
- Minimum Bachelor's degree or equivalent in Business, Commerce or Technology.
- Possessing the relevant certification: CA/CPA or CISA/CISSP/CRISC) is an advantage.
- Working Knowledge of industry standards (e.g. Essential 8, NIST, Australian Privacy Act, GDPR etc) will be highly regarded.
- Strong senior stakeholder engagement and interpersonal skills with well-developed communication and influencing abilities.
- Ability to deliver effective commercial and financial outcomes for business improvement initiatives.