See yourself in our team

The Group Strategy team supports the Board and ELT in developing the Group’s strategy, assessing changes in our external and internal environment to identify risks and opportunities that are of strategic significance to the Group and its businesses.

The Group Strategy (GS) Risk & Control team is responsible for supporting GS and Office of the CEO (OCEO) in ensuring effective oversight, governance and management of risks, compliance obligations and controls. The team work closely with senior stakeholders to embed strong risk and control practices that support informed decision-making and enable the business to operate within risk appetite.

This role will report to the GS Chief Control Officer.

Key Responsibilities:

• Responsible for the design and implementation/ support the business to design and implement controls to enable better risk and compliance outcomes.

• Manage the Control Assurance Program, including ongoing assurance, testing and monitoring of controls and compliance.

• Ensure risks are appropriately identified, profiled, and maintained in the Risk Profile and update when risk trigger events occur.

• Manage root cause analysis of issues and incidents, identifying and implementing control improvements.

• Responsible for the effective design of controls for all new and changing processes and operations, and support the business through the implementation.

• Identify, lead and manage continuous improvement of the business control environment by using data to generate insights.

• Responsible for reporting on operational risk and control profiles, issues, incidents and other matters.

We’re interested in Hearing From People Who Have:

• Knowledge of Operational and Compliance Risk frameworks including control design and management, issues and incidents management, RCSA, Compliance Self-Assessment (CSA).

• Ability to think critically and analytically and use insights to problem solve.

• A proactive, self-starter mindset.

• Strong attention to detail.

• Facilitation skills.

• Stakeholder management experience.

• 3-5 years experience in banking/ financial services/ other relevant experience, and/ or minimum 3 years’ experience in Operational Risk Management roles.

• Strong written and verbal communication skills.

At CommBank, we support our people with the flexibility to balance where work is done with at least half their time each month connecting in office. We also have many other flexible working options available including changing start and finish times, part-time arrangements and job share to name a few. Talk to us about how these arrangements might work in the role you’re interested in.

Advertising End Date: 02/02/2026