Sydney Office, Australia
Hybrid
When you join ASX, you’re joining a company with a strong purpose – to power a stronger economic future by enabling a fair and dynamic marketplace for all.
In your new role, you’ll be part of a leading global securities exchange with a strong brand. We are known for being a trusted market operator and an exciting data hub.
Want to know why we are a great place to work, click on the link to learn more.
www.asx.com.au/about/careers/a-great-place-to-work
The ASX team brings together talented people from a diverse range of disciplines.
We run critical market infrastructure, with 1 in 3 people employed within technology. Yet we have a unique complexity of roles across a range of disciplines such as operations, program delivery, financial products, investor engagement, risk and compliance.
We’re proud to foster a workplace where diversity is celebrated and inclusion is part of our everyday culture. Our employee-led networks champion LGBTIQ+ inclusion, promote gender equality, accessibility and wellbeing, inspire giving and volunteering, and celebrate cultural and religious events, creating a sense of belonging for all. As an AWEI Bronze employer and member of the Champions of Change Coalition for gender equality, we’re committed to a fair and inclusive workplace where everyone can thrive.
Your Team
The Technology Risk, Business Management & Strategy function supports the ASX Technology division across technology risk, governance, planning and operating‑rhythm activities. The function enables Technology leaders to manage risk, meet regulatory and assurance expectations, and maintain effective governance and performance disciplines.
Your responsibilities
Support the delivery of technology risk uplift initiatives, including the rollout of the IT General Controls library across the organisation.
Support governance, planning and execution tracking, including monitoring progress, dependencies, risks and key milestones across technology risk uplift initiatives.
Partner with technology stakeholders across key domains (e.g. Cyber Security, IT Service Management, Engineering) to support and advise on the design and uplift of controls, ensuring they are practical, implementable and aligned to requirements, driving improved control effectiveness.
Translate key concepts, plans and requirements into practical templates, guidance, education materials and artefacts, supporting consistent implementation and understanding across the division.
Support the uplift and ongoing maintenance of the technology policy framework, including working with policy owners to ensure control requirements and obligations are appropriately embedded within policies, standards and supporting artefacts, and aligned to the ASX Risk Taxonomy.
Support broader initiatives such as uplift to the IT Service Criticality methodology, contributing to design, artefact development, implementation approach and rollout support where required.
Your experience and qualifications
Must have
Demonstrated experience supporting technology risk, controls or transformation initiatives.
Experience with control uplift or implementation activities, with an understanding of how controls are designed and embedded in practice, particularly for technology and cyber domains (e.g. Identity & Access, Cloud, DevOps, Data Centre).
Strong understanding of how controls operate within technology environments, including the ability to work directly with technical stakeholders and translate requirements into practical implementation approaches.
Ability to operate within complex, evolving delivery environments, supporting governance, planning and execution tracking and delivery across multiple stakeholders and initiatives.
Ability to translate requirements and approaches into practical outputs, including templates, guides, and implementation approaches.
Strong stakeholder engagement and communication skills, with the ability to work collaboratively across technology teams to support adoption and uplift of controls.
Nice to have
Experience with risk transformation initiatives (e.g. design frameworks and approaches, support implementation and embedment, uplift risk maturity, etc.)
Experience using work tracking tools (e.g. JIRA) to manage, track and report on initiatives and work progression.
Exposure to technology policies and standards, including drafting frameworks and/or supporting their operationalisation.
Experience working within regulated environments.
Relevant risk or technology certification (CISA, CISSP, AWS) or equivalent professional experience.
Familiarity with recognised technology and risk frameworks such as NIST, ITIL, COBIT or COSO.
We make hiring decisions based on your skills, capabilities and experience, and how you’ll help us to live our values. We encourage you to apply even if you don’t meet all the criteria of this role.
If you need any adjustments during the application or interview process to help you present your best self, please let us know at careers@asx.com.au.
At ASX Group, our diverse workforce is essential to build and maintain a fair and dynamic marketplace. We support flexible working and offer hybrid working options. Even if our roles are advertised as full-time, we encourage you to apply if you are interested in part-time or other flexible working arrangements.
We will arrange for successful candidates to have background checks, including reference and police checks, completed as part of the on-boarding process.
To be considered for this position, candidates must be legally authorised to work in Australia on a permanent basis without any restrictions.