Delivery Manager - Compliance, Policy and Reporting - Hawthorn East

We've been trusted to serve Aussie communities since 1914 and grown to become a top 30-listed on the ASX with 120,000 team members and a portfolio of iconic brands. At Coles Group, you'll not only get to make a difference to millions of Aussie lives—you'll also get to see your impact.

About the team

Technology is the backbone of our business. Every day, our teams solve complex problems, the solutions help thousands of our fellow team members succeed and makes millions of customers’ lives easier.

About the role

A permanent opportunity of a Delivery Manager - Compliance, Policy and Reporting is now available at the Coles Group. 

Reporting into the Head of Security Governance, this role will primarily be responsible end-to-end management of reporting from Cyber Security out to all levels of the organisation (as detailed in the day-to-day responsibilities); 

• Management and maintenance of the Cyber Security Policy & Standards Framework and practices.
• Cyber Risk and Compliance Management, including risk and control frameworks.
• Cyber Awareness, including mandatory cyber training across the Coles Group.
• Uplift and embed cyber maturity into the business.
• Government, Regulatory and Sector engagement.
• Management of communications and embedding of Cyber frameworks, controls, and policy obligations across the Coles Group.

Candidate would be considered a “T-Shaped” individual, having broad knowledge but deep drill down expertise in Cyber Risk and Compliance Management, communications management, business writing skills and report management, policy and framework management, with previous experience in security consulting and or delivery transformation. 

Key responsibilities will include

Execution Delivery

• You will work closely with the Head of Cyber Governance to agree the overarching strategic approach for delivery themes within your remit.
• Whereas the Head of Cyber Governance will be accountable to set the go forward strategy, you will take ownership and carriage of the delivery model for reporting and maintenance of the Cyber Policy & Standards, Cyber Risk and Control framework, Cyber Risk and Compliance Management across Coles Group, Cyber reporting to Executive leadership and Board, delivering Cyber Awareness across the Group, and managing external engagements (including Government, regulator and sector).
• You may also be required to oversight delivery of project outcomes related to your domain (including managing peer relationships, vendor scopes of work where work is delivered through an augmented resource arrangement) and providing leadership to the team.
• You will support the management and execution of related key security initiatives/projects and provide a point of contact to business and technology teams on Cyber Security Services requirements and will also need to interface to other areas within the larger Cyber Governance team.
• You will also work closely with the General Manager for Cyber Security to address their reporting and communication requirements.
• You will play an active role in ensuring accountabilities and obligations emanating from the Cyber Security Framework & Controls library and general IT Security risk management processes are well articulated, understood and landed across Tec.

Management Reporting

• Preparation of high quality, accurate and concise reporting to all levels of the organisation.
• Manage the preparation of reports to the Board, Executive, Technology Leadership, Lines of Business, Audit & Risk Committee, Group risk, Technology Portfolio Management.
• Manage the end-to-end process of sourcing inputs from multiple stakeholders that have a hand in contributing to reports.
• Manage reporting deadlines, allowing sufficient time to consolidate reporting inputs from multiple contributors, time for review and update and submission of reporting to various forums.
• Examples of reporting content: metrics (board, line of business, speed to value etc.), ad hoc financial reporting requests, monthly performance overviews, ad hoc reporting request such as updates on remediation programs, control performance and risk posturing, risk appetite, key risk indicators.

Stakeholder and communication management

• You will function as a key point of contact within Cyber Governance for stakeholder engagement across the business, technology, and external vendors, while demonstrating a strong ability to independently engage and develop stakeholder relationships.
• You will need to collaborate with leaders and principles within Information Security, Technology and in other functions like Procurement and or Group Risk; to manage the outcomes of this role.
• Lead the embedding of the Cyber Governance Operating Model 

Policy and Standards Framework

• Advise on implementation of Cyber policy and standards requirements and work with technical teams to ensure the appropriateness of documented requirements (appropriate to the size, nature, and complexity of Coles environment)
• Ensure Policy & Standards are maintained and published within their annual cycle, reviewed in advance of the refresh deadlines, and tabled at the relevant committees for approval.
• Communicate changes and impacts out to Coles team members, in an easily digestible and understood manner.

About you & your skills

• Extensive, proven years of experience in similar Cyber Security and Risk Management / Risk Reporting roles.
• As applicable to the core focus areas:
  • Practical hands-on experience working within Cyber Security
  • Experienced in interpreting Cyber Security framework requirements, industry & best practice standards into Policy & Standards
  • Experience analysis, identifying and implementing best of breed framework requirements
  • Extensive experience developing/establishing; as well as operating a reporting requirement at all levels of the organisation.
• Experience leading team members delivery, mentoring/management of team members
• Experience navigating and delivering within complex corporate environments at pace
• Demonstrable experience collaborating with stakeholders at all levels of the organisation, to influence outcomes, obtain buy-in and solicit commit to implement Information Security requirements
• Ability to think deeply and critically about the efficacy of information presented to stakeholders and whether the right messages are communicated from the presented materials
• A can-do attitude coupled with an ability to “roll up one’s sleeves” and directly contribute to delivery

Ability to translate and communicate complex, technical or Information Security concepts in a non-technical, simplified fashion. Making sure communication is fit for purpose, regardless of the readers skillset/knowledge.

Commercial Skills and Formal Qualifications

• Relevant tertiary qualification and or business experience with Technology/Cyber Security
• Relevant cyber security/technical certifications beneficial such as CISA, CISM, CISSP, SASA, ISO27K, CSIRC, Agile certifications, Project Management Institution certifications (PMP, PgMP), Architecture related qualifications such as TOGAF or other related.
• Excellent communication (written and verbal) and interpersonal /people skills
• Excellent presentation and facilitation skills, including the ability to tailor communication to the appropriate level of the organisation or size of stakeholder group
• Ability to influence others, gain buy-in and negotiate implementation and delivery outcomes

What’s in it for you? 

• Flexible working options: We know that work is only one part of your life, so we actively encourage a positive work-life balance and provide hybrid working options to help you achieve it.

• Office perks: Take advantage of our gym facility and fitness classes, free parking, BBQ area, mini-Coles supermarket, fooderie hub where you can sample new products before they hit the shelves, school holiday program and so much more when you come in.

• Discounts: Eligible team members receive 5% discount all year round on your Supermarket and Liquor online and in-store purchases. We also offer additional periods of double discount (10%) at various times throughout the year. As well as hot deals exclusive to team members that translate into additional savings.

• Reward through recognition: Give and receive recognition, linked to our Coles values, through our digital recognition platform ‘mythanks.’ You can accumulate points to redeem in the online shop for exciting gifts and electronic gift cards from an extensive range of retailers.

• Opportunities for learning and development: No matter where you start within our diverse business, you’ll have experiences, exposure, and education to satisfy you. Discover and explore a variety of career development programs and job-specific training.

• Paid parental leave: We understand how important your life outside work is and offer permanent team members paid parental leave to support you in balancing work and family.

• Investment in your future: Our annual team member share plan offer allows eligible team members to make regular pre-tax salary sacrifice deductions to purchase Coles Group shares.

Take your next step into something bigger, apply now!

With us it’s not about the discounts (although you do get those), it’s about joining a team where your wellbeing and professional development is invested in and celebrating your contributions is the norm. And because everyone leads unique lives, we offer flexible work including work from home, additional leave, and parental leave entitlements. 

We’re continuing to build a gender equitable team, and a culture that’s just as diverse, inclusive, and welcoming as the communities we serve. We encourage applications from people of all ages, cultures (including Aboriginal and Torres Strait Islander peoples), abilities, sexual orientation, and gender identities. 

We’re happy to adjust our recruitment process to support candidates with disability. For further information and additional contact details visit the ‘Our Recruitment Process' section of our careers site or email inclusionrecruitment@coles.com.au.

Job ID: 160782 

Employment Type: Full time