Risk Manager Third Party Security

Apply now
Job Number:
Work type:
Permanent Full Time
Melbourne - Docklands
Information Technology

Our Organisation

We love water and love life. What we do makes a vital contribution to Melbourne’s famous lifestyle. We achieve this by supplying high quality drinking water, providing outstanding sewerage services, integrating drainage systems, building resilience to flooding and by enhancing our waterway and land for greater community use. It’s a pride we share in helping to make greater Melbourne a fantastic place to live.

Reporting to the Service Manager, Technology Risk and Compliance  you’ll have the opportunity to make a difference and add to our work environment, within a place where you can learn and perform to your fullest potential.

The Role

As the Risk Manager, Third Party Security your primary purpose is to provide leadership, governance and oversight of Third Party Technology and Cybersecurity risks across all aspects of digital technology across the business (including IT and OT).  You will be:

  • Primarily responsible and accountable for providing assurance that the Technology and Cybersecurity risks for Melbourne Water third and related parties are clearly understood and appropriate risk treatment plans are in place to address them including meeting regulatory compliance requirements in this domain.
  • Accountable for the development, maintenance and execution of Melbourne Water’s enterprise-wide Third Party Technology Risk and Compliance strategy and roadmap and establishment of this strategic capability.
  • Act as an advocate and champion for Cyber Security across the organization and with our relationships with third parties.  This will include providing leadership, influencing key stakeholders, driving appropriate behaviour and culture changes, building awareness through effective communication, and leading the strengthening of cybersecurity knowledge and capability across the workforce.

Make an Impact

Become part of a talented and passionate team dedicated to enhancing life and liveability in Melbourne and beyond. Doing truly meaningful work in a supportive and inclusive culture that encourages you to make the most of your talents.

We provide a range of employee benefits that will make your experience working at Melbourne Water both professionally and personally rewarding.


Melbourne Water is committed to flexible working. We offer a variety of flexible arrangements to suit our employees varied needs and the business, including purchased leave, varied start and finish times, working from alternative locations, part time work and 9-day fortnights. We understand that Melbourne Water and our customers benefit from enabling our employees to achieve balance in work and life.

Growth & Development

We’re a curious bunch at Melbourne Water and relish any opportunity to learn something new. We are in the business of enhancing life and liveability, which lends itself to re-imagining what’s possible and challenging the status quo. We offer a variety of learning opportunities; from formal development programs, digital learning content and lunch & learns; to visiting our sites and getting to see our initiatives and projects first hand. We believe that learning happens every day, so we support our people to continuously learn and experiment in the flow of their work, designing their own development path.


Our people are passionate, welcoming and inclusive. We welcome applications from everyone, including people with disability, mature age and young job seekers, members of the LGBTI+ community, and people from culturally diverse backgrounds. Melbourne Water welcomes and encourages applications from Aboriginal and Torres Strait Islander peoples.

Your Skills and Experience

  • Extensive demonstrated experience and subject matter expertise in Technology Risk and Compliance.
  • Extensive demonstrated experience and subject matter expertise in Security Risk and Compliance.
  • Extensive demonstrated experience and subject matter expertise in Third Party Risk and Compliance.
  • Significant experience in business partnering or consulting, utilizing a services design orientation and a strong demonstrable customer focus.
  • Strong commercial acumen to drive fit-for-purpose and value-for-money outcomes.
  • Security qualifications, accreditations and current certification in SABSA, CISSP, CISM, CISA, ISO27001 LA and/or CRISC.
  • Demonstrated practical experience (implementation and risk assessment of security standards and framework) in one or more of the following: VPDSF, NIST 800-53, ISO 27001, ISO 27002, ISO 31000, PCI DSS and COBIT 5.0.

Your ability to establish and maintain collaborative working relationships with internal and external stakeholders is required together with a Tertiary degree and evidence of post-graduate (or equivalent) follow-up in an IT security discipline.

For more information, please see the attached Position Description

How to apply

Click on the "apply" button and complete the online application form.

Closing date: Thursday 18th August 2022 at 11:55pm AEST

Please note a Police Check / Health Assessment is required for this position.

Please note Melbourne Water employees, contractors/service providers who have worked with Melbourne Water for more than 12 months can apply for internal roles.

AUS Eastern Standard Time
AUS Eastern Standard Time

Apply now Back