Security Assurance Analyst – Permanent, FulltimeAre you passionate about ensuring security and risk management is place in the digital world? Do you have a passion to do Certification and Accreditation C&A the right way? Want to take the next step in you risk assurance career?We're looking for a skilled Information Security Assurance Analyst to join our Security Team in Information Services. This newly created role has been established to lead our Certification & Accreditation (C&A) assurance work and drive security excellence across the organisation.Whakatairangatia nga kete o te matauranga ki te ao marama! E te tai whakarunga, e te tai whakararo – nau piki mai, nau kake mai ki te Mana Tohu Matauranga o Aotearoa.May the baskets of knowledge (education) be brought into the world of light. We welcome one and all to join us at the New Zealand Qualifications Authority.About the roleAs an Information Security Assurance Analyst, you will lead a crucial role in maintaining the security and compliance posture across NZQA's IT environment.The Security Assurance Analyst role, will take ownership of the Certification and Accreditation (C&A) work, ensuring that our systems and processes meet regulatory, industry, and internal security standards. You'll work with cross-functional teams to identify and mitigate security risks, implement controls, and maintain compliance with frameworks such as NZISM, ISO 27001, and NIST. This role is essential in strengthening our cybersecurity posture and you'll be pivotal in creating a culture of security awareness through the programme of work.Key responsibilities (see attached Job Description for further information)Maintain the organisation's C&A assurance program, aligning with security and compliance frameworksImplement security controls and document C&A processes to meet regulatory and industry standardsIdentify, analyse, and assess security risks associated with organisational IT systems and processes.Recommend, implement, and monitor security controls to mitigate these risks effectively.Conduct regular audits and reviews to ensure compliance with internal policies and industry standardsWho we are looking forExpertise in information security best practices, risk management, and complianceExperience with frameworks such as NZISM, ISO 27001, and NISTCertifications such as CISSP, CISM, or CISA preferredA collaborative approach, excellent communication skills, and a passion for cybersecurityYou'll be confident managing multiple stakeholders, both internal and external.You'll have the drive and confidence to take ownership of problems.About usNZQA is a te reo Maori learning organisation and is committed to equity and lifelong learning. We welcome candidates from diverse backgrounds that will enrich our understanding of the education system. We prioritise the importance of understanding tikanga in building a culturally responsive workplace. NZQA is dedicated to providing a welcoming environment to Maori and Pacific staff and has active Maori and Pacific staff networks which contribute to NZQA's strategic action plans - Te Kokiritanga and Takiala Pasifika.What we can offer:A supportive teamA role with lots of varietyDevelopment and career progression opportunitiesTo find out more click here NZQA Staff BenefitsApply Now!For more information about this role and NZQA please refer to the job description, NZQA's Customer Charter and Organisational Values. If you are applying/viewing through Seek, please click 'apply now' to access these links.If you would like to discuss further, please call Andrew Wood on 04 463 4350.Applications close at 5.00 pm on 3 December 2024.
#J-18808-Ljbffr