About Us

Role Location:  Melbourne
Role Type:  Permanent, Full-time

ANZ​ Internal Audit’s 2030 ambition is to be the leading audit function and the Bank’s trusted independent voice. We contribute to ANZ’s Group 2030 Strategy through providing the strength and perspective required for ANZ to lead the industry in trust, safety and risk management, adhering to the highest standards of non-financial risk management.

The General Manager Audit, Technology and Information Security is a critical leadership role responsible for leading Internal Audit’s assurance over the Group Technology division, and for providing enterprise-wide third line assurance over technology and information security risks and controls.

This key role is accountable for leading the centralised specialist Technology and Information Security risk Centres of Audit and Subject Matter Expertise in Data Management, including the planning and delivery of independent third line assurance over technology and information security risks across the Bank, and for providing clear, evidence-based perspectives on the effectiveness of the control environment within the Group Technology division and through integrated audits across customer and functional portfolios.

In an environment of rapid technological change, heightened cyber risk and increasing regulatory scrutiny, the role is accountable for defining and championing what good looks like in technology and information security control environments. A key expectation is the proactive translation of external best practice, regulatory developments and emerging risk insights into ANZ, ensuring the organisation remains ahead of the curve. Exercising sound professional judgement, identifying emerging risks early, and clearly articulating evidence-based perspectives to senior executives, the Board and regulators are critical to success.

This role combines deep Internal Audit or risk experience in large, complex organisations with strong expertise in technology, information security and data related risks, and experience operating within a federated risk and control environment.

As a member of the Internal Audit Leadership Team (IA LT), reporting directly to the Chief Internal Audit Executive (CAE), this role plays an important role in leading the function’s strategic priorities and supports the CAE, in their capacity as an Accountable Person under the Financial Accountability Regime (FAR), by undertaking specific functional responsibilities delegated to assist in meeting the accountabilities set out in the FAR Accountability Statement.

Your key accountabilities in this role will include:

• Lead the Centre of Audit (CoA) for Technology and Information Security, owning audit risk assessment, SME responsibilities and group‑wide audit planning for these domains and the primary centralised delivery of Technology and Information Security audit activity.
• Own SME accountability for Data Management, ensuring specialist leadership, appropriate coverage and enterprise‑wide risk insight.
• Lead high‑quality, consistent delivery of Technology, Information Security and Data Management audits, ensuring fit‑for‑purpose scope, capability and methodology across all delivery models.
• Provide Internal Audit’s authoritative view on technology, cyber and data‑risk control effectiveness, including monitoring emerging risks, regulatory developments and innovation in assurance approaches and translating external best practice and regulatory expectations into audit coverage and methodology.
• Lead risk‑based audit coverage across Group Technology and delivery of technology and information security risk coverage within integrated audits across business portfolios, ensuring technology and security risks are appropriately assessed end‑to‑end.
• Act as primary Internal Audit contact for senior Technology and Information Security leaders, influencing improvements in governance, control environments and risk management practices and providing clear, evidence‑based perspectives to senior executives, the Board and regulators.
• Lead and develop a high‑performing Technology & Information Security audit team, strengthening capability, professional development and readiness for evolving regulatory and assurance demands.
• Deliver the approved audit plan to required quality and timeliness standards, maintaining strong audit governance, issue management discipline and effective regulatory engagement.
• Discharge delegated FAR responsibilities and manage risks within Internal Audit, ensuring compliance with regulatory expectations, internal governance and documented accountabilities.
• Role model and promote ANZ values, shaping a high-performance culture, Create-Deliver-Together behaviours and leading the team to do the same.

About You

To grow and be successful in this role, you’ll ideally bring the following:

• Significant expertise in technology and information security risk management within large, complex and regulated organisations, including oversight of enterprise cyber and technology risk environments.
• Senior‑level assurance or risk leadership experience across enterprise technology environments such as core platforms, cloud, infrastructure and shared services.
• Strong experience assessing control effectiveness within federated or decentralised technology operating models, including core platforms, infrastructure, cloud and share technology service.
• Proven credibility with senior executives, with the ability to influence, challenge and provide trusted insight on technology, cyber and operational‑risk control outcomes.
• Demonstrated professional judgement in fast‑evolving, threat‑driven and highly regulated technology and cyber‑risk landscapes, forming clear and defensible control views.
• Experience working within Internal Audit or second‑line risk functions, with strong understanding of technology, cyber, operational resilience, outsourcing and third‑party regulatory expectations.
• Exposure to data governance, technology resilience and emerging technology risks, with the ability to link these to operational, customer and organisational impacts.
• Strong leadership capability, including coaching, driving high performance, building inclusive teams, and role‑modelling integrity, accountability, challenge and effective change leadership.

About ANZ

This is an exciting time to be a leader within one of Australia's biggest banks as we take advantage of the rapid change and disruption of traditional banking business models.

Our culture is critical to making this happen so that we can adapt, evolve, and to flourish over the long term. That’s why ask our people to focus on three key things: Creating Opportunities, Delivering What matters and Succeeding Together.

We support our leaders with tools, tips and online coaching so that they can help their teams focus on these things too, helping them to grow and succeed in their roles.

ANZ recognises the value of an inclusive and diverse work environment. We take pride in the diversity of our people and encourage applications from diverse candidates. If you are a candidate with a disability, let us know how we can provide you with additional support. Our recruitment decisions are based on the key inherent needs and requirements of each role, and candidates are selected based on their unique strengths and characteristics. We work flexibly at ANZ. Talk to us about how this role can be flexible for you.

To find out more about working at ANZ or to view other opportunities visit www.careers.anz.com. You may apply for this role by visiting ANZ Careers.

Job Posting End Date

26/04/2026 , 11.59pm, (Melbourne Australia)