Job Description

Third Party Risk Advisory Manager

  • 15/01/2026
  • Brisbane
  • Permanent / Full Time
This is a leadership role with an existing team and framework in place. The focus is on uplifting, streamlining and simplifying third-party risk practices (not building from scratch).
 
 
Key benefits include:
  • Flexible ways of working, focus on outcomes, not location
  • Health & wellbeing support, including access to digital health services and wellbeing programs
  • Subsidised private health insurance (for eligible employees)
  • Additional leave options, including wellbeing days and family-focused leave
  • Community & giving programs, including paid volunteering time
  • Salary packaging options, including super and novated leasing
 
 
What you'll be doing
  • Lead and evolve a Third Party Risk Management (TPRM) framework aligned to APRA CPS 220 / CPS 230
  • Perform and oversee third-party risk assessments, including:
  • SOC 2 reviews vs control testing
  • Onsite and remote testing at Managed Service Providers (MSPs)
  • Assess third-party security controls (cyber-focused, not just paper-based)
  • Drive practical framework uplift, applying the spirit of regulation, not just ticking sections
  • Lead and coach a team of 3 risk professionals
  • Partner closely with the CISO, security leaders, procurement, legal and compliance
  • Support incident response planning and regulatory engagement where required
 
 
What they're looking for
  • Proven experience delivering TPRM framework uplift or implementation in an APRA-regulated environment
  • Strong understanding of CPS 220 / CPS 230 and third-party / fourth-party risk
  • Hands-on experience with control testing, vendor assurance and MSP oversight
  • Big bank experience highly valued (e.g. Westpac, CBA or similar)
  • Confident engaging senior stakeholders and simplifying complex risk environments
 
 
Why this role?
  • Established team, real mandate to improve
  • High-impact role with strong executive visibility
  • Focus on practical risk outcomes, not bureaucracy
  • Flexible ways of working, focus on outcomes, not location
  • Health & wellbeing support, including access to digital health services and wellbeing programs
  • Subsidised private health insurance (for eligible employees)
  • Additional leave options, including wellbeing days and family-focused leave
  • Community & giving programs, including paid volunteering time
  • Salary packaging options, including super and novated leasing
 
To apply or learn more, reach out directly for a confidential discussion.
Kris ☎️ 0452 564 644 �� kris@decipherbureau.com
BACK APPLY