Grc - Avp

**Req ID**: 38606

**Department**: Tech Security Information Protection

**Division**: Technology

**Location**: Bengaluru
About the role

At ANZ our purpose is to shape a world where people and communities thrive. We’re making this happen by improving our customers’ financial wellbeing so they can achieve incredible things - be it buying their home, building a business or saving for things big or small.

**Role Location**: Bengaluru

**Role Type**: Permanent

**Shift Schedule**: 7:00 am to 4:00 pm (General)

The Security Domain is tasked with making ANZ a safe and more secure place to do business by ensuring our corporate and customer information is secured. The Governance, Risk and Compliance (GRC) Product Area is responsible for enterprise-wide Information Security standards, GRC advisory, guidance and tooling to ensure ANZ leadership has the information needed to make strategic risk-based decisions and maintain compliance with international regulations while enabling the achievement of ANZ business objectives globally.

About ANZ
- A minimum of 10 years’ experience as a GRC Senior Analyst having experience in information security principles and practices, general procedures and guidelines in complex and challenging business environment
- Champion in information security policies, standards, controls, and processes so that compliance requirements are addressed as part of business as usual operations
- Ability to evaluate and process exceptions to information security policies and standards
- Experience in complex internal risk assessments, identifying information security risks through analysis of threats and vulnerabilities, and reporting on those risks to ANZ business and technology owners
- Knowledge on risk assessments of critical third-party vendors and ensure the business objectives align with the type and volume of data used in maintaining a need to know/use mindset
- Ability to provide analysis and insights into data supporting the effectiveness of technical and process
- based security controls
- Deep understanding of risk assessment frameworks, IT risk assessments, enterprise risk assessments, and risk calculation, aggregation and reporting
- Experience in working with different regulatory authorities
- Detailed knowledge and experience of process mapping/analysis tools and techniques
- Excellent stakeholder management skills, with strong influencing and relationship building ability.
- Experience with and understanding of security, governance, risk and compliance concepts
- Exposure to Agile methodologies and experience with Agile tools such as Confluence and Jira
- Exposure to GRC tools like RSA Archer

Soft Skills

A team player - I know we only win if we all win. I recognise and value the different perspectives and skills my squad mates bring. It is not about being a hero but jumping in and contributing to the successful delivery of our mission

The customer’s biggest fan - I demonstrate a thirst for better understanding the customer and define the problem and develop solutions through their eyes

A collaboration champion - I work closely with my colleagues to ensure alignment and champion the sharing of learning across teams

Comfortable being uncomfortable - I am comfortable with uncertainty and have the ability to effectively manage myself through ambiguity by making meaning, building relationships and creating clarity with my peers

Continuous improvement junkie - I constructively challenge the status quo, I look for better ways of doing things and passionately advocate continuous improvement

A problem solver - I am energised by tackling complex problems. I use my critical thinking, network, skills, knowledge, and available data to drive better outcomes for our customers and the bank

Commercially and Tech curious - I have a wide-angled lens. I am curious about what’s happening in the external market and in emerging trends and innovations (technological and otherwise) and how we use this information to better inform our decisions and actions.

Risk savvy - I build sustainable solutions that protect stakeholders and customers and proactively address risks by role-modelling improvements in the bank’s overall risk and control environment.

Accessibility and Inclusion Champion - I am committed to ensuring that our products, services, workplace, and culture are accessible and inclusive for everyone, supporting participation, independence and dignity for our customers and colleagues. I will have regard to Principles of Universal Design in my own work, and when I work with colleagues and suppliers

You’re not expected to have 100% of these skills. At ANZ a growth mindset is at the heart of our culture, and we actively encourage people to try new things. So, if this role interests you and you feel you have most of these things in your toolbox, we’d love to hear from you

So, why join us?

There’s something special about being part of ANZ. From the moment you join us, you’r