Senior Manager, Security Incident Response

**Organization**:At CommBank, we never lose sight of the role we play in other people’s financial wellbeing. Our focus is to help people and businesses move forward to progress. To make the right financial decisions and achieve their dreams, targets, and aspirations. Regardless of where you work within our organisation, your initiative, talent, ideas, and energy all contribute to the impact that we can make with our work. Together we can achieve great things.

**Job Title**:Senior Manager, Security Incident Response
**Location**:Bangalore-Manyata Tech Park

**Business & Team**:Cyber Security protects the bank and our customers from theft, loss and risk events, through effective and proactive management of cyber security, privacy, fraud, physical security and operational risk.

The Security Incident Response team, protects the bank and our customers from theft, losses and risk events, through effective and proactive management of cyber security incidents, threats, privacy and operational risk. The team is passionate about identifying opportunities to leverage existing and new technologies to mitigate risks that span across cyber, fraud and protective security domains.

**Impact &contribution**:As a Manager you will be responsible for leading a team of analysts that monitor the Group’s computer systems for suspicious activity using enterprise-grade cyber tools and critical thought processes. Your team will triage and manage various incidents, events, and queries from the business to the relevant resolver group.

This role will also involve leading incident response efforts, implementing AI-driven initiatives, and collaborating with cross-functional teams across various departments to ensure the organisation's ability to prevent, detect, and respond to cyber security incidents is continuously improved.

**Roles & responsibilities**:

- Lead cyber security incident management activities to identify, coordinate, investigate and resolve incidents, as part of the Cyber Defence Operations function.
- Monitor and analyse key intelligence points to ensure timely management of bank related incidents.
- Analyse and prepare reports on Security Incident Response activities to team members, stakeholders and the leadership.
- Improve current processes and tools to maximise the efficiency and productivity of the team’s technical capabilities.
- Works with the business, risk management and compliance stakeholders to ensure compliance with Group Policies, risk standards and obligations.
- Builds awareness of Cyber, educating business stakeholders, delivery teams and others.
- Manages activities to define policies, guidelines and standards.
- Supports the embedding of a risk and control culture across our business stakeholders.
- Actively participate and raise initiatives to create new technologies and platforms to drive improvements in the operational response to security threats.
- Drive consultation within Cyber Defence Operations to identify and develop opportunities to improve the operational effectiveness of cyber incident teams and materially reduce security risk through technologies and data.
- Effectively manage relationships with the key stakeholders including security, business and technology partners, colleagues and other external teams
- Work within a team environment and across business units to complete associated tasks with exceptional results.
- Continual research into banking cyber security threats including malware, phishing, botnets, and other threat actor techniques and tactics.
- Adhere to the Code of Conduct. The Code of Conduct sets the standards of behaviour, actions and decisions we expect from our people.
- Encourage new ideas, embrace change, and continuously look for innovative ways of performing activities.
- Be confident and have the ability to work independently and to manage and execute tasks within set timeframes.

**Essential skills**:

- Experience: 10+ years of experience in cyber security, with a focus on incident response.
- Risk mindset - all CommBank employees are expected to proactively identify and understand, openly discuss and act on current and future risks.
- Demonstrated willingness to engage in self-learning or security research outside of standard business hours
- Ability to capture and articulate intelligence in a clear, concise manner, both verbally and written
- Ability to consult with business and technical representatives and to balance security and business requirements
- Have the ability to navigate and optimise security technologies and operations
- Be comfortable with ambiguity and challenging the status quo to create innovative solutions
- Experience in critical thinking and driving productivity improvements
- Have strong communication, engagement and stakeholder management skills.
- Have experience in managing dependencies between complex environments.
- Demonstrable experience in critical thinking and driving productivity improvements
- Demonstrate potential and int