Senior Enterprise Risk & Assurance Lead (Williamstown)

Senior Risk Lead – GMCT Overview The Senior Risk Lead maintains and matures GMCT’s enterprise risk management framework and assurance processes. The role ensures consistent application of risk methodology, effective oversight of controls, and high‑quality reporting to the Executive and Board. Key Responsibilities
- Maintain the enterprise risk management framework, registers and methodologies in alignment with relevant standards and government frameworks.
- Facilitate risk identification and assessment processes across directorates, including determination of enterprise, strategic and operational risk exposures.
- Embed the approved risk appetite statements into business decision‑making and review alignment on an annual basis.
- Design, implement and maintain structured risk assessment and control evaluation tools, including cyclical control effectiveness reviews, risk self‑assessments and formal assurance mechanisms.
- Maintain oversight of risk treatment plans, tracking progress, verifying completion and escalating non‑compliance or delays to the GM, Strategy & Risk and relevant leaders.
- Facilitate effective administration of key risk reporting activities, including quarterly reporting to Audit and Risk Management Committee, monthly reporting to Board, and Enterprise Steering Group as required. Emergency Management and Business Continuity Governance
- Maintain the organisation’s emergency management and business continuity framework.
- Define the type, scope and frequency of emergency exercises and drills.
- Schedule and coordinate enterprise emergency drills.
- Ensure documentation of exercises and capture of lessons learned.
- Monitor implementation of improvement actions arising from exercises and reviews.
- Provide assurance to the GM and Executive regarding organisational preparedness. Incident, Claims and Compliance Oversight
- Oversee incident and claims management processes.
- Ensure accurate and timely recording and reporting of incidents and claims to relevant authority bodies such as VMIA.
- Liaise with insurers and regulators as required.
- Support compliance monitoring and assurance activities. Internal Audit Coordination
- Act as the primary organisational interface for Internal Audit, coordinating audit planning, information requests and management responses.
- Support development of the annual internal audit plan in consultation with the GM, Strategy & Risk and Executive team.
- Monitor implementation of agreed audit actions and report status to the GM, Strategy & Risk and Executive as required.
- Facilitate quarterly and ad hoc reporting to the Audit & Risk Management Committee. Qualifications and Experience
- Relevant tertiary qualification in risk, governance, law, business or related discipline, or equivalent experience.
- Demonstrated experience leading enterprise risk management and assurance in a complex organisation.
- Strong understanding of contemporary risk management frameworks and standards, including ISO 31000 and the Victorian Public Sector Risk Management Framework.
- Experience providing executive and Board‑level risk reporting.
- Experience coordinating emergency management or business continuity governance processes.
- Experience managing incidents, claims and regulatory liaison. Benefits
- Comprehensive induction program.
- One Planned Time Out per month.
- Free onsite car parking.
- Employee Assistance Program to support employees and their families’ overall wellbeing. GMCT is an Equal Prospect Employer. GMCT is a Supportive Employer of Australian Defence Force Reservists. #J-18808-Ljbffr Apply on Kit Job: kitjobau.com/job/3qttci