Compliance Business Oversight Manager managing compliance risk at TD Bank. Overseeing Affiliate Transactions Data Review and providing insights on regulatory compliance.
About the role
- Manager for Data & Technology Compliance at Medibank overseeing compliance obligations and regulatory standards management. Leading the Compliance and Certification team to enhance security and mitigate regulatory risks.
Responsibilities
- Ensure effective management of regulatory obligations.
- Manage compliance assurance activities, including periodic assessments against regulatory and industry standards.
- Manage ISO 27001, PCI DSS, SOC 2 and other relevant certification audits, coordinating with internal teams and external auditors.
- Conduct gap analyses and develop remediation plans to address compliance shortfalls.
- Manage the management attestation and declaration processes Implement a continuous controls monitoring regime.
- Ensure the ISMS and ISPF policies, procedures, and controls align with applicable regulations and standards.
- Review and update compliance documentation to reflect evolving requirements.
- Identify compliance risks and recommend corrective actions to mitigate them.
- Track and report compliance issues, ensuring timely resolution.
- Assist the Data and Technology Leadership Team in the management of compliance obligations.
- Work closely with IT, Security, Privacy, and Group Risk teams to embed compliance obligations into operational practices.
- Liaise with auditors and certification bodies to facilitate compliance audits and assessments.
- Drive enhancements to compliance frameworks, monitoring tools, and reporting mechanisms.
- Stay abreast of regulatory changes and best practices, advising leadership accordingly.
- Manage the security exemptions process and risk acceptance processes.
- Manage the Compliance and Certification team.
- Be an active member of the ITSRCA leadership team.
- Lead and coach direct reports to ensure high levels of collaborative engagement with key stakeholders within Medibank that produce quality outcomes.
- Support and mentor the team with career development, workload management and operational delivery and continue to build capability through mentoring, training, and development.
- Promote a culture of empowerment, accountability, and inclusiveness.
Requirements
- 5+ years in compliance, audit, or certification roles focused on data and technology environments.
- Proven experience managing ISO 27001 and other regulatory certification programs.
- Strong knowledge of APRA CPS 220/ 230/234, NIST CSF, ISO 27001/27005, FAR, ACSC Essential Eight, and Privacy Act compliance.
- Experience coordinating with external auditors and regulators.
- Familiarity with GRC platforms and compliance tracking tools.
- Any experience in health insurance or critical infrastructure sectors would be beneficial.
- Certification in data privacy or cybersecurity compliance (e.g., CIPP, CISSP).
- Knowledge of risk analytics and reporting tools such as Power BI or Tableau.
Benefits
- Health insurance
- Flexible working arrangements
- Professional development opportunities
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Regulatory Affairs Professional creating clinical evaluation documents for medical devices in a fast - growing biotech company. Collaborating with stakeholders and ensuring compliance with regulations.
Manager overseeing regulatory affairs for a German implant company in facial and trauma products. Ensuring compliance with regulations, preparing submissions, and advising on medical affairs.
Compliance Manager reviewing broker - dealer and registered investment adviser communications for regulatory compliance. Working collaboratively with diverse business partners in a hybrid work environment.
Compliance Officer providing regulatory compliance support within the asset services business line. Managing compliance frameworks and guiding risk owners on regulatory obligations.
EMEA Regulatory Specialist providing regulatory support at Univar Solutions. Alongside a global team to handle customer inquiries and compliance in the chemical sector.
Regulatory Affairs Coordinator maintaining regulatory documents for research projects at Geneva. Overseeing IRB application processes and supporting research staff with documentation and compliance.
Trade Compliance, Customs and Sanctions Manager role providing compliance advisory on trade controls and customs at Vodafone. Key responsibilities include risk management and stakeholder collaboration on global trade activities.
Regulatory Associate at Reckitt ensuring compliance with global regulatory requirements for new product developments. Collaborating to create comprehensive product registration dossiers and navigate regulatory landscapes.
Lead compliance programs for IESO ensuring adherence to regulations while supporting business and stakeholder engagement in electricity sector.