Technical Product Owner - Security Enablement, Education & Resilience

About the opportunity

At Bendigo Bank, we are committed to being Australia's bank of choice. We believe our success is driven by our people and our commitment to the communities we serve. A core part of that commitment is ensuring the security and resilience of our systems and the trust of our customers. We are seeking a passionate and innovative individual to lead our security enablement, education, and resilience efforts.

The Security Enablement, Education & Resilience Lead/Technical Product Owner is a critical role responsible for developing, implementing, and managing a comprehensive security awareness and training program across the bank. This position is pivotal in fostering a security-conscious culture, empowering our employees to be the first line of defence, and enhancing our overall organisational resilience against an evolving threat landscape.

You will be responsible for creating engaging and effective educational content, coordinating resilience exercises, and measuring the impact of our security initiatives. This role requires a blend of creativity, strategic thinking, and a deep understanding of cybersecurity principles within the context of the Australian financial services industry.

In this role you’ll get to…

• Develop and implement a bank-wide security education strategy that aligns with risk and compliance requirements, using key metrics to measure its success.
• Create and manage engaging training materials like e-learning and simulated phishing campaigns, tailoring content for all audiences and promoting best practices through creative channels.
• Plan and run security drills to improve incident response, help teams embed security into their daily workflows, and translate complex threats into clear, actionable guidance for the business.
• Partner with key departments like Risk, Compliance, and HR to build a unified security culture, and foster a network of security champions to spread awareness.

What you’ll bring to the role

To be successful in the role you will have:

• Proven experience in a cybersecurity awareness, training, or communications role, preferably within the financial services or another highly regulated industry in Australia.
• Excellent understanding of cybersecurity principles, common attack vectors, and risk management frameworks.
• Familiarity with Australian regulatory requirements, such as those from APRA and ASIC.
• Excellent communication, presentation, and interpersonal skills, with the ability to engage and influence a wide range of audiences.
• Experience in developing and delivering creative and impactful educational content.
• Demonstrated ability to manage projects, measure outcomes, and drive continuous improvement.
• Relevant industry certifications (e.g., CISM, CRISC, or similar) are highly regarded but not essential.

We offer flexible work options that put our people first, working in a hybrid model with a minimum local Head Office attendance requirement determined by your Leader, to find a rhythm that works best for you and your team. We believe that coming into the office some of the time is the best way to learn, stay connected and collaborate effectively, especially for key activities like team days, 1:1s, and town halls.

We believe a diverse workforce supported by an inclusive culture is central to our success and we actively encourage applications from those who bring diversity of thought to our business. We support candidate requests for adjustment to accommodate an illness, injury, or disability to equitably participate in the selection process.

If this sounds like an opportunity for you check out the attached Position Description and apply.  TECHNI~1.PDF

Please note, all internal candidates are required to notify their immediate leader when applying for a new career opportunity and you will be asked to acknowledge they have done so upon submission of your application.

Please contact the Hiring Leader – Ian Waters (Head of Security Strategy, Enablement & Engineering) or Kate Weston (Senior Talent Acquisition Advisor) for a confidential discussion if there are any concerns meeting this requirement during the application process, or if you would like to discuss the position further.

For more information, check out the Application Process for Internal Candidates page. 

Still in two minds?

Research suggests 60% of women and underrepresented groups might stop here, even after getting as far as drafting an application. We believe that diversity makes every team stronger, so even if you don’t tick every box we still want to see your application!

Please note shortlisting and interviews may take place prior to the advertised close date, so don't delay apply now!