Job details |
||||||||||||||||||||||||||
|
Job Opportunity: Information Security Analyst – Permanent & 12 month Fixed-Term opportunit:ACC_hainesJob description:Job Description» Two opportunities available – permanent and 12 month fixed-term, Wellington» Do you hold or working towards CISSP, CISA or CISM? » Generous 9% super contribution » Join an organisation that supports and develops your career With ACC, you’ll be supporting people in Aotearoa to stay safe by minimising the incidence and impact of injury, as well as helping them recover from injury if an accident does happen. Join us – an organisation that grew out of bold thinking and has an enduring commitment to care for others at work, home and play. The Information Security Analyst function is the ideal opportunity for a forward thinking, ambitious and practiced professional to join ACC. The function is responsible for the integrity of ACC systems through the development and maintenance of ICT Security standards and promotes an knowledge of security risks and management requirements. Working closely with and providing assistance to Business Managers, the Information Security Analyst is involved in the training of staff in information security policies and their responsibilities in relation to these. As well as monitoring compliance by ACC users and outsourced IT. To be prosperous in this function you will: » hold or be working towards, qualification as a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM) » demonstrate knowledge of Information technology best practices and exposure to and/or qualifications in Information technology best practice methodologies e.g. ITIL and ISO 27000 » have strong knowledge of solution architecture and ICT security policies and standards and strong analytical expertise » have an knowledge of Business Continuity and Disaster Recovery Frameworks » have the capability to drive innovation and adopt new ways of working » demonstrate capability to work in a team environment and contribute to team performance » have strong customer focus and interpersonal expertise with the capability to work effectively with a variety of stakeholders » have excellent written and verbal communication expertise » Security Engineering: » Developing scripts to integrate security systems and threat intelligence » Liaising with Developers and DevOps Engineers to ensure solutions and CI/CD pipelines are built securely » Reviewing solution designs, and assisting solution architects in designing solutions with defence in depth » Help structure ACC’s secure implementation and deployment of Cloud technologies » Security Operations: » Develop and review SIEM rules to detect and respond to security anomalies » Develop and review Network Forensic rules to detect and respond to security anomalies » Threat hunting » Risk Assessments:Desired practice/expertise: » Review Penetration test reports, and assisting developers with mitigating/resolving security bugs » Re-testing/validating reported security bugs » Analysing the environment for misconfigurations which could lead to lateral movement or privilege escalation » Development: Python, PowerShell, C# and Java » DevOps: Azure DevOps, Ansible, Terraform & SAST/DAST/SCA tooling » Cloud: Azure & AWS » SIEM or Data Analytics » Penetration Testing » But most importantly, passion and enthusiasm for security and information technology! Working at ACC We know that a diverse and inclusive team helps us meet the needs of our customers, and we welcome candidates from every ethnicity, national origin, gender identity, age, and those with a discapability or who have additional mental health needs. Information technology is important to us that people are free to be themselves at work. Here are some ways we encourage that: » Employee networks to support our colleagues from diverse backgrounds » The option to explore flexible working that suits your needs and ours » Development opportunities in te reo M?ori me ng? tikanga How to submit the application:For a detailed position description clickInformation Security Analyst_PD. Applications will run until an ideal candidate is found. Applications can only be accepted when submitted through our ACC career website.Skills:
|
||||||||||||||||||||||||||
|