Information Security Analyst - Standards and PoliciesAIA provides insurance solutions to both individuals and businesses. Find out more about our services and latest updates.BELIEVE IN BETTERDo you believe in shaping a better, healthier, more sustainable future through the power of digital?At AIA we've started an exciting movement to create a healthier, more sustainable future for everyone. It's finding new ways to better people's lives and the communities we live in. As pioneering innovators for over 100 years, we're now transforming our organisation to be faster, simpler, and more connected. Because we want to be even better equipped to develop digital solutions and experiences that help more people live Healthier, Longer, Better Lives.And to get there, we need people with tech/digital/analytics expertise and passion to help develop positive sustainable change through digitally enhanced experiences that will impact the lives of millions of people.The opportunity:As an Information Security Analyst - Standards and Policies, you will play a critical role in ensuring the security and integrity of AIA's information systems and cyber environment. This permanent position will allow you to make a real impact in safeguarding our organisation. Reporting to the Manager of Information Security Governance, you will support and drive our enterprise security program by providing governance and ensuring standards compliance.Key responsibilities include:Local NZ focal point of contact for information security standards, policies, and procedures.Regular review of AIA Group Information Security standards, policies, and procedures.Identify controls required for the standard and compare controls against existing controls in eGRC.Identify gaps in controls and implement measures to ensure compliance.Perform regular assessments and testing of effectiveness and efficiency of controls.Update security controls and provide support on security controls covering internal assessments.Document and report control failures and gaps to the information security management team.Provide remediation guidance and prepare management reports to track remediation activities.Perform other responsibilities and duties periodically assigned by information security team management.Regular interaction with NZ Technology Management, Security Team, project teams, Risk team(s), and Group Information Security.Ideally, you'll bring:Graduate with an IT Security related degree or two years of security & risk experience in IT, Project Management Office, or Cyber Security gained in a large Financial Services organisation.Experience in developing and maintaining information security plans, strategy, and policy.Good understanding of security best practices.Excellent technical skills across Microsoft, Linux, and Network technologies.Ability to work in a fast-paced dynamic environment.Knowledge of risk management processes.Knowledge of information technology supply chain security.Able to work independently and adapt quickly to change.Knowledge of common security threats and vulnerabilities.Excellent team working and collaborative skills.Adaptable, able to interact and build strong relationships with people from diverse backgrounds.Why choose AIA?Opportunities to grow within the business through internal mobility.Competitive employee benefits that include insurances and an extra day of leave each quarter.Membership to AIA Vitality, our science-backed health and wellbeing programme.A supportive and inclusive workplace.Flexible working arrangements.If you believe in developing a better tomorrow, apply now!Diversity, equity, and inclusion are at the heart of who we are and what we do. AIA NZ values diversity in the workforce. We encourage candidates from diverse backgrounds to apply for our roles.We are a 2024 Circle Back Initiative Employer – we commit to respond to every applicant.Recruitment Agencies: Our Talent team does not require any recruitment agency support.Interested Candidates: Apply using the 'Apply' button. No emailed applications accepted.You must provide all requested information, including Personal Data, to be considered for this career opportunity.
#J-18808-Ljbffr