We are seeking a Senior Analyst, Subsidiary Governance to support governance and oversight of security controls, gaps, and uplift initiatives across NAB subsidiaries (BNZ, UBank) and Innovation Centres. The role includes managing compliance with security frameworks, policies, and standards, providing associated reporting and proactive risk management, and contributing to the effective operation of the Security Governance model.
Key Responsibilities:
- Manage and monitor security controls across NAB Subsidiaries and Innovation Centres in India and Vietnam. Make sure any gaps or weaknesses are tracked and fixed.
- Oversee security tools like the Control Selector Tool (CST).
- Ensure policies match NAB Group standards across all Subsidiaries.
- Advise and guide teams on future security requirements and help embed them into daily operations.
- Investigate security incidents to find root causes and impacts.
- Review security assessments to confirm accuracy and proper evidence.
- Lead approval forums for security exemptions and make the process clear and consistent.
- Provide input on policy changes based on feedback and new threats.
- Track key security metrics to measure progress and maturity.
- Support governance meetings and risk forums.
- Prepare reports for executives and boards when needed.
YOUR SKILLS AND EXPERIENCE
- 5+ years of experience in security governance or a regulatory role.
- Background in the financial industry, ideally in a similar role, to understand security challenges in banking.
- Understanding of Industry Governance and Control Frameworks: Familiarity and exposure to governance frameworks such as NIST, COBIT, ITIL, and their application in managing security initiatives, and industry-standard security frameworks such as such as ISO 27001, NIST Cybersecurity Framework, and regulatory requirements applicable to financial institutions
- Metric Analysis: Ability to interpret security metric reports from subsidiaries, to assess the effectiveness of controls and overall security posture.
- Policy Compliance Knowledge: strong understanding of security policy and standard compliance requirements, and the ability to interpret, implement and monitor compliance.
- Communication and Stakeholder Management: Excellent communication skills (verbal and written) to articulate complex security concepts into clear and concise messages to non-technical stakeholders
- Skilled at working with business stakeholders and solving business issues.
- Experience in integrating complex processes and security solutions.
- Strong stakeholder engagement and relationship management skills.
- Proven ability to deliver consistent results in large, complex organizations.
- Experience influencing senior leaders on strategic and operational outcomes.
- Qualification Requirements: Relevant certifications and tertiary degree, industry certifications such as CISA or CRISC highly regarded.
THE BENEFITS AND PERKS
We appreciate and reward our colleagues who do great work every day - from excelling for our customers, to taking ownership of an issue to get it resolved. Here's how we support our people with a range of exclusive benefits.
1. Generous compensation and benefit package
- Attractive salary
- 20-day paid annual leave and 7-day paid sick leave
- 13th month salary and Annual Performance Bonus
- Premium healthcare for yourself and family members
- Monthly allowance for team activities
- Premium welcome kit and occasional gifts of appreciation
- Extra benefits on your work anniversary
2. Exciting career and development opportunities
- Large scale products with modern technologies in banking domain
- Clear roadmap for career advancement in both technical and leadership pathways
- Access to digital learning platform such as Udemy
- Consistent and high-quality leadership training through the Distinctive Leadership program (DLP)
- Specialist capabilities and accreditations in key skill areas such as Cloud Engineering, Digital, Data, Security and SREs (Site reliability engineers)
- Sponsored English course with native teachers
- Opportunity for training in Australia
3. Professional and engaging working environment
- Hybrid working model and excellent work-life balance
- State-of-the-art & modern Agile office
- Food and beverages in the office pantry
- Employee Assistance Program to improve your physical and mental health
- Annual team activities and company events
- A solid and talented team behind you - great people who love what they do
A DIVERSE AND INCLUSIVE WORKPLACE WORKS BETTER FOR EVERYONE
We know that our people make us who we are. That's why we have built a culture of respect - where everyone feels valued and appreciated for being their true authentic selves at NAB. With our focus on inclusion and diversity, and in partnership with our Employee Resource Groups, NAB is a place where First Nations colleagues, colleagues of all genders, sexualities and ages, carers and colleagues with disability, and colleagues from all cultures, races and religions have the opportunity to thrive, connect and grow.
We are intent on providing an environment where you can work your way. Ask about our many flexible work options and please let us know if we can provide any adjustments throughout the recruitment process.
CLOUD-FIRST
NAB is undergoing an exciting Cloud First technology transformation by taking advantage of the latest tools and techniques used by leading technology and digital companies globally. But it's not just about the Tech, we are also investing heavily in our people, so if you have an appetite to learn, grow and elevate others around you, this is the place for you!
If this excites you, let's have a chat over a cup of coffee!
