Manager, Technology Controls – Governance

AIA

Manager of Technology Controls & Governance responsible for technology control uplift initiatives at AIA Australia. Focused on ensuring compliance with regulatory requirements and best practices.

Posted 6/15/2026full-timeMelbourne • 🇦🇺 AustraliaSeniorLeadWebsite

Tech Stack

Tools & technologies

CloudPMP

About the role

Key responsibilities & impact

Manages a portfolio technology controls uplift initiatives to ensure AIA Australia’s technology control environment is meeting the latest trends of technology and regulatory development.
Acts as one of the subject matter experts on Technology Controls and Governance in providing advisory on the emerging risk concerns.
Partner with other risk champions to advocate the risk culture.
Conduct analysis of the technology risk data collected from different information sources, and provide constructive recommendations to stakeholders for timely actions.
Leads Technology Controls and Governance engagements including audit support, customer assurance engagements, third party security assessment, risk incident management, regulatory engagements, etc.
Development and manage reports and dashboards on the progress of technology control uplift initiatives including risk registration and action tracking.
Timely escalate the issues that are causing the delay of the initiatives.
Provide ad-hoc support to other technology control and governance team members in emerging situation.

Requirements

What you’ll need

Minimum of 8 years of experience in technology control and risk management, technology audit, technology compliance function
Strong awareness of Australian regulatory requirements including APRA CPS 234, CPS 220, ACSC Essential Eight, SoCI Act, Privacy Act, ISM, etc.
Thorough understanding of international best practices of information security controls framework / standards, such as ISO/IEC 27001, PCI-DSS, NIST CSP.
Thorough understanding of end-to-end process on audit and regulatory engagements
Possess at least one of the information security / technology audit certifications such as CISA, CIA, CISSP, ISO27001 Lead Auditor, etc.
Holders of PMP or other project management related certification is beneficial.
Understanding of controls over public / private / hybrid cloud is preferred.
Good understanding of best practices on technology control and compliance while keeping practicability
Detail mined with excellent analytical skills supported by qualitative and quantitative data
Be able to demonstrate to build and maintain an efficient, effective and repeatable audit and regulatory engagement framework, including knowledge retention and record management
Be able to work under pressure with tight deadlines while maintaining quality of deliverables.
Adaptable, able to interact and build strong relationships with people from a diverse range of backgrounds through team working and collaboration.

Benefits

Comp & perks

Access our training and development to build on your current skills
Career development through internal mobility opportunities
Work for a business helping millions of Australians and make a difference to someone’s life everyday
Access additional leave days a year to recharge and refresh yourself
Enjoy wonderful Health and Wellbeing initiatives that support you
Work with supportive and inclusive working environment
Flexible working arrangement

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

technology controlsrisk managementtechnology audittechnology complianceinformation security controlsaudit engagementsregulatory engagementsdata analysisreportingdashboard management

Soft Skills

analytical skillsattention to detailrelationship buildingteam collaborationadaptabilitycommunicationproblem-solvingtime managementpressure managementstakeholder engagement

Certifications

CISACIACISSPISO27001 Lead AuditorPMP