Do you hold or working towards CISSP, CISA or CISM?
Join an organisation that supports and develops your career
ACC’s vision is to create a unique partnership with every New Zealander, improving their quality of life by minimising the incidence and impact of injury.
Here at ACC we’re constantly increasing our Cybersecurity capability and posture and are looking for an Information Security Analyst to come on board and help support us on our journey!
The Information Security Analyst role is the ideal opportunity for a forward thinking, ambitious and experienced professional to join ACC.
The role is responsible for the integrity of ACC systems through the development and maintenance of ICT Security standards and promotes an understanding of security risks and management requirements.
Working closely with and providing assistance to Business Managers, the Information Security Analyst is involved in the training of staff in information security policies and their responsibilities in relation to these.
As well as monitoring compliance by ACC users and outsourced IT.
To be successful in this role you will
Hold or be working towards, qualification as a Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA) or Certified Information Security Manager (CISM)
Demonstrated knowledge of IT best practices and exposure to and / or qualifications in IT best practice methodologies e.g. ITIL and ISO 27000
Strong understanding of solution architecture and ICT security policies and standards and Strong analytical skills
An understanding of Business Continuity and Disaster Recovery Frameworks
Ability to drive innovation and adopt new ways of working
Demonstrate ability to work in a team environment and contribute to team performance
Strong customer focus and interpersonal skills with the ability to work effectively with a variety of stakeholders
Excellent written and verbal communication skills
Security Engineering : Developing scripts to integrate security systems and threat intelligence Liaising with Developers and DevOps Engineers to ensure solutions and CI / CD pipelines are built securely Reviewing solution designs, and assisting solution architects in designing solutions with defence in depth Help structure ACC’s secure implementation and deployment of Cloud technologies
Security Operations : Develop and review SIEM rules to detect and respond to security anomalies Develop and review Network Forensic rules to detect and respond to security anomalies Threat hunting
Risk Assessments : Review Penetration test reports, and assisting developers with mitigating / resolving security bugs Re-testing / validating reported security bugs Analysing the environment for misconfigurations which could lead to lateral movement or privilege escalation
Desired Experience / Skills : Development : Python, PowerShell, C# and Java DevOps : Azure DevOps, Ansible, Terraform & SAST / DAST / SCA tooling Cloud : Azure & AWS SIEM or Data Analytics Penetration Testing But most importantly, passion and enthusiasm for security and information technology!
Working at ACC :
We know that a diverse and inclusive team helps us meet the needs of our customers, and we welcome applications from people of every ethnicity, national origin, gender orientation, gender identity, gender expression, age, and / or status as an individual with a disability.
It’s important to us that people bring their whole selves to work. To support an inclusive workplace we have
Employee networks : Pride ACC Ability ACC Women’s Network Cross-Cultural Network
ACC’s Māori Strategy, Whāia te Tika
Development opportunities in te reo Māori me ngā tikanga
Advocates in the disability sector
Diversity and Inclusion Approach