ASX: Powering Australia's financial markets

Why join the ASX?

When you join ASX, you’re joining a company with a strong purpose – to power a stronger economic future by enabling a fair and dynamic marketplace for all.

In your new role, you’ll be part of a leading global securities exchange with a strong brand. We are known for being a trusted market operator and an exciting data hub. 

Want to know why we are a great place to work, click on the link to learn more.

www.asx.com.au/about/careers/a-great-place-to-work

We are more than a securities exchange!

The ASX team brings together talented people from a diverse range of disciplines. 

We run critical market infrastructure, with 1 in 3 people employed within technology.  Yet we have a unique complexity of roles across a range of disciplines such as operations, program delivery, financial products, investor engagement, risk and compliance.

We’re proud to foster a workplace where diversity is celebrated and inclusion is part of our everyday culture. Our employee-led networks champion LGBTIQ+ inclusion, promote gender equality, accessibility and wellbeing, inspire giving and volunteering, and celebrate cultural and religious events, creating a sense of belonging for all. As an AWEI Bronze employer and member of the Champions of Change Coalition for gender equality, we’re committed to a fair and inclusive workplace where everyone can thrive.

About the team:

The Data Privacy Specialist role provides data privacy and information governance expertise, strengthening ASX’s ability to identify, assess and manage privacy risk and to comply with evolving privacy, data protection and regulatory requirements impacting ASX.

The role supports the ongoing uplift and embedment of ASX’s privacy framework, controls and capabilities across the personal information lifecycle.

Regulatory Operations is a function within EC&O, supporting regulatory compliance through innovation, automation and cross-functional collaboration.  The team partners closely with business areas to uplift regulatory capability, embed effective controls and support consistent, high‑quality regulatory outcomes.

What you will be doing:

How we do things at ASX is just as important as what we do. This means, if you're a people leader, you will be responsible for both the core duties outlined below, and providing leadership to your team to ensure we foster a collaborative, inclusive team environment, where people feel empowered, accountable, and deeply connected (as outlined in our Leadership Principles).

• Provide specialist expertise and input on all data privacy matters throughout the privacy lifecycle for the ASX group

• Support the development, implementation and embedment of ASX’s privacy policies, procedures and operating model within the ASX Enterprise Risk Management Framework

• Assist with the embedment of privacy‑by‑design principles into business‑as‑usual processes, projects, technology initiatives and data use cases, including proving data privacy SME input on proposed AI use cases

• Support the conduct and quality assurance of Privacy Impact Assessments (PIAs), including risk identification, mitigation tracking and stakeholder engagement

• Lead privacy incident and data breach response activities, including triage, assessment, documentation and remediation actions

• Contribute to the uplift and maintenance of privacy obligations, risks and controls, including ERICA alignment, evidence artefacts and assurance readiness

• Analyse privacy issues, incidents and control gaps, and support remediation, uplift and continuous improvement initiatives

• Educate business units and build enterprise awareness on privacy obligations and regulatory requirements in a practical and risk‑based manner

• Support internal reporting, regulatory engagement and executive‑level updates relating to data privacy risk

What you will bring:

Must have

• Significant experience in data privacy gained via private practice and/or in-house privacy focused roles

• Strong working knowledge of the Australian Privacy Act and GDPR privacy regimes

• Experience executing privacy risk assessments, impact assessments and/or data incident response processes

• Ability to translate complex legal, regulatory and policy requirements into practical, business‑ready guidance

• Tertiary qualification in law, data governance, risk, compliance, information management or a related discipline (or equivalent experience)

Nice to have:        

• Experience supporting regulatory engagement, audits or executive‑level reporting relating to privacy or data risk

• Experience working in or alongside Legal, Risk, Data Governance and/or Compliance functions

• Exposure to enterprise risk management frameworks, control environments or assurance processes

• Experience supporting technology, data or AI‑related initiatives from a privacy‑by‑design perspective

We make hiring decisions based on your skills, capabilities and experience, and how you’ll help us to live our values. We encourage you to apply even if you don’t meet all the criteria of this role.

If you need any adjustments during the application or interview process to help you present your best self, please let us know at careers@asx.com.au.

At ASX Group, our diverse workforce is essential to build and maintain a fair and dynamic marketplace. We support flexible working and offer hybrid working options. Even if our roles are advertised as full-time, we encourage you to apply if you are interested in part-time or other flexible working arrangements.

We will arrange for successful candidates to have background checks, including reference and police checks, completed as part of the on-boarding process.

To be considered for this position, candidates must be legally authorised to work in Australia on a permanent basis without any restrictions.