Security Assurance Analyst - Permanent, Fulltime
Are you passionate about ensuring security and risk management is in place in the digital world? Do you have a passion to do Certification and Accreditation (C&A) the right way? Want to take the next step in your risk assurance career?
We're looking for a skilled Information Security Assurance Analyst to join our Security Team in Information Services. This newly created role has been established to lead our Certification & Accreditation (C&A) assurance work and drive security excellence across the organisation.
About the role
As an Information Security Assurance Analyst, you will play a crucial role in maintaining the security and compliance posture across NZQA's IT environment. You will take ownership of the Certification and Accreditation (C&A) work, ensuring that our systems and processes meet regulatory, industry, and internal security standards. You'll work with cross-functional teams to identify and mitigate security risks, implement controls, and maintain compliance with frameworks such as NZISM, ISO 27001, and NIST. This role is essential in strengthening our cybersecurity posture and you'll be pivotal in creating a culture of security awareness through the programme of work.
Key responsibilities
Maintain the organisation's C&A assurance program, aligning with security and compliance frameworks.
Implement security controls and document C&A processes to meet regulatory and industry standards.
Identify, analyse, and assess security risks associated with organisational IT systems and processes.
Recommend, implement, and monitor security controls to mitigate these risks effectively.
Conduct regular audits and reviews to ensure compliance with internal policies and industry standards.
Who we are looking for
Expertise in information security best practices, risk management, and compliance.
Experience with frameworks such as NZISM, ISO 27001, and NIST.
Certifications such as CISSP, CISM, or CISA preferred.
A collaborative approach, excellent communication skills, and a passion for cybersecurity.
Confidence in managing multiple stakeholders, both internal and external.
Drive and confidence to take ownership of problems.
About us
NZQA is a te reo Maori learning organisation and is committed to equity and lifelong learning. We welcome candidates from diverse backgrounds that will enrich our understanding of the education system. We prioritise the importance of understanding tikanga in building a culturally responsive workplace. NZQA is dedicated to providing a welcoming environment to Maori and Pacific staff and has active Maori and Pacific staff networks which contribute to NZQA's strategic action plans - Te Kokiritanga and Takiala Pasifika.
What we can offer:
A supportive team.
A role with lots of variety.
Development and career progression opportunities.
Applications close at 5.00 pm on 3 December 2024.
#J-18808-Ljbffr