Senior IT Governance Analyst

The role

The Senior IT Governance Analyst is responsible for ensuring the effective implementation, monitoring, and continuous improvement of IT governance processes and controls across the organisation. This role will provide expertise in the ITIL framework, with a specific focus on Configuration Management (CMDB) and IT Change Management, while also ensuring compliance with the Risk frameworks.

The role will work closely with cross-functional teams to ensure that IT processes are well-governed, secure, and aligned with the organisation's business objectives. Key stakeholders include but not limited to;

IT Governance Team

Technology Leadership

Risk Leadership

Audit Leadership

Industry associations and other external stakeholders

The team

The role is a member of the APRA Technology & Data division (T&D) reporting to the IT Governance Manager. The Technology and Data Division supports APRA with frameworks, technology and systems that support APRA’s data and technology operations and its mandate to help protect the Australian community through data enabled decision making.

Key responsibilities

ITIL Framework Expertise:

Provide in-depth expertise in the application of the ITIL framework, particularly in Configuration Management and IT Change Management processes;

Develop, maintain, and manage the Configuration Management Database (CMDB), ensuring the accuracy and integrity of asset and configuration data;

Lead and coordinate IT Change Management (Secondary) processes, ensuring the proper documentation, risk assessment, approval, and implementation of changes to IT systems and infrastructure; and

Facilitate the Change Advisory Board (CAB) meetings and ensure timely communication regarding changes.

Risk Framework & IT Controls:

Establish and implement IT controls based on the Risk Framework (ISM, ITIL, COBIT, NIST etc) and ensure they are aligned with organizational security policies and regulatory requirements;

Collaborate with internal stakeholders to assess, monitor, and improve IT control effectiveness and ensure compliance with established standards;

Perform regular reviews, audits, and assessments to ensure IT governance practices meet relevant standards; and

Work with risk and compliance teams to ensure that identified gaps in controls are addressed and mitigated.

Monitoring and Reporting:

Continuously monitor the effectiveness of governance processes, IT controls, and compliance activities, including tracking key performance indicators (KPIs) and risk metrics;

Generate reports on the health of Configuration and IT Change Management processes, control compliance, and audit findings for management; and

Proactively identify areas for improvement in IT governance and controls and recommend corrective actions.

Collaboration and Communication:

Liaise with cross-functional teams, including IT, Security, and Risk, Audit & Compliance, to ensure that IT governance and control processes are integrated across the organization; and

Educate and train stakeholders on IT governance processes, the importance of Configuration and IT Change Management, and Risk framework requirements.

About you

Expertise in Information Technology, Computer Science, or a related field;

Demonstrated experience in IT governance, risk management, or IT operations with a focus on ITIL-based processes (Configuration and IT Change Management);

ITIL Foundation certification;

Strong expertise in Configuration Management Database (CMDB) design, implementation, and maintenance;

Proven experience in managing IT Change Management processes, including coordination with Change Advisory Boards (CAB);

Experience with Risk Framework (ISM, ITIL, COBIT, NIST etc.), and ability to establish and monitor IT controls based on governance guidelines;

Strong analytical skills and the ability to generate insights from metrics and reporting; and

Excellent communication and interpersonal skills with the ability to collaborate effectively across different teams and departments.

To work with us, you need to be an Australian citizen with eligibility to gain a Baseline Security clearance.

About APRA

The Australian Prudential Regulation Authority (APRA) places you at the heart of Australia’s financial services industry. APRA serves the Australian community by helping ensure financial institutions deliver on the financial commitments they make, within a stable, efficient and competitive financial system.

At APRA we’re committed to providing an inclusive workplace where everyone belongs, feels valued and respected. We aspire to attract and foster diversity of background, thought, and experience, recognising that a broad range of perspectives, approaches and ideas makes us stronger, and better enables us to meet our obligation to protect the financial wellbeing of the Australian community. When applying, please inform us of any adjustments you may need during the interview process.

Travel: