Security Assurance Analyst – Permanent, FulltimeAre you passionate about ensuring security and risk management is in place in the digital world? Do you have a passion to do Certification and Accreditation (C&A) the right way? Want to take the next step in your risk assurance career?We're looking for a skilled Information Security Assurance Analyst to join our Security Team in Information Services. This newly created role has been established to lead our Certification & Accreditation (C&A) assurance work and drive security excellence across the organisation.About the roleAs an Information Security Assurance Analyst, you will lead a crucial role in maintaining the security and compliance posture across NZQA's IT environment. The Security Assurance Analyst role will take ownership of the Certification and Accreditation (C&A) work, ensuring that our systems and processes meet regulatory, industry, and internal security standards. You'll work with cross-functional teams to identify and mitigate security risks, implement controls, and maintain compliance with frameworks such as NZISM, ISO 27001, and NIST. This role is essential in strengthening our cybersecurity posture and you'll be pivotal in creating a culture of security awareness through the programme of work.Key responsibilitiesMaintain the organisation's C&A assurance program, aligning with security and compliance frameworksImplement security controls and document C&A processes to meet regulatory and industry standardsIdentify, analyse, and assess security risks associated with organisational IT systems and processesRecommend, implement, and monitor security controls to mitigate these risks effectivelyConduct regular audits and reviews to ensure compliance with internal policies and industry standardsWho we are looking forExpertise in information security best practices, risk management, and complianceExperience with frameworks such as NZISM, ISO 27001, and NISTCertifications such as CISSP, CISM, or CISA preferredA collaborative approach, excellent communication skills, and a passion for cybersecurityConfidence in managing multiple stakeholders, both internal and externalDrive and confidence to take ownership of problemsAbout usNZQA is a te reo Maori learning organisation and is committed to equity and lifelong learning. We welcome candidates from diverse backgrounds that will enrich our understanding of the education system. We prioritise the importance of understanding tikanga in building a culturally responsive workplace. NZQA is dedicated to providing a welcoming environment to Maori and Pacific staff and has active Maori and Pacific staff networks which contribute to NZQA's strategic action plans - Te Kokiritanga and Takiala Pasifika.What we can offer:A supportive teamA role with lots of varietyDevelopment and career progression opportunitiesFor more information about this role and NZQA please refer to the job description, NZQA's Customer Charter, and Organisational Values. If you would like to discuss further, please call Andrew Wood on 04 463 4350.Applications close at 5.00 pm on 3 December 2024.
#J-18808-Ljbffr