Information Security Consultant – Governance, Risk & Compliance (GRC) at kiwibankpeople

Auckland, Auckland, New Zealand -

Full Time

Start Date

Immediate

Expiry Date

15 Mar, 26

Salary

0.0

Posted On

15 Dec, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Information Security, Technology Risk, Audit, Assurance, Compliance, Security Policies, Relationship Building, Continuous Improvement, CISSP, CISM, CISA, PCI-DSS, SWIFT, NIST, ISO27001, ISO31000

Industry

Banking

Description

Wellington/Auckland based opportunity Banking benefits, health insurance, flexible working options and more! Join our growing Digital & Technology Team! Please note: We’ll be advertising this role over the Christmas and New Year period. Our team will review applications from mid-January onwards, so you can expect to hear from us after that time. Thank you for your patience and hope you have a wonderful holiday break. Kō tātou tēnei. Hei kawe i ngā mahi kia tutuki | This is us. Where making an impact matters. We’re looking for an experienced Information Security Governance and Assurance Consultant to join our Information Security Team. This role is all about helping us strengthen our security posture and keep Kiwibank safe. As a Information Security Governance and Assurance Consultant, you’ll work with internal and external stakeholders to deliver our security governance, assurance, and staff training and awareness activities. You’ll use your expertise to make sure our frameworks, policies, and practices are robust and effective by: Developing and maintaining security policy, standards, and frameworks Leading security audits and assurance activities, including PCI-DSS, SWIFT, IT General Controls, and internal quality assurance Managing security risk reporting and tracking Driving our security risk management framework Conducting third-party vendor risk assessments Delivering security training and awareness programmes using contemporary methods Ko tātou tēnei. Kia hāpai i ō pūkenga | This is us. Where your expertise matters. Key skills and experience we’re looking for: Proven commercial experience in information security, technology risk, audit, or assurance roles (Financial Services experience preferred) Strong knowledge of industry frameworks such as NIST, PCI-DSS, NZISM, ISO27001, ISO31000 Proven ability to drive compliance and enforce security policies and standards Skilled at building and maintaining strong relationships at all levels Passionate about information security and continuous improvement Relevant certifications such as CISSP, CISM, CISA Clear understanding of PCI-DSS and SWIFT requirements Ko tātou tēnei - Hei hāpai i a koe, me tō whānau |This is us. Where you and your whānau matter. We want you to get the most out of work and life, so you will have the option to explore flexible working arrangements that suit both your needs and ours. We now also offer one wellbeing day a quarter to ensure our people are taken care of and can bring their best selves to work. Our great range of benefits include health and life cover, discounted banking, insurance products and an incredible package for new parents. We are proud to be a certified B Corporation, a Pride Pledge partner and we are the first bank in Aotearoa to get the Gender Tick. We are also an accredited Living Wage employer. Tono mai |Apply Now!– We will be reviewing applications throughout the advertising period, and we reserve the right to withdraw the ad at any time. Applications close Monday 12th January. Please note: Due to a high volume of applications, there may be a delay in our response. Thank you for your patience. Recruitment agencies: We're not seeking support at this stage. At Kiwibank we are all about making Kiwi better off For an idea about what life is like at Kiwibank and some of the benefits we offer make sure to check out the attached video.

Responsibilities

The role involves strengthening the security posture of Kiwibank by developing and maintaining security policies, leading audits, managing risk reporting, and conducting vendor assessments. Additionally, the consultant will deliver training and awareness programs to staff.