M mtou About us Tnui Ake Nei Thriving Aotearoa is our vision for a future where we work together so that all people and their communities can live the lives they value. The ACC Security team vision is that we are secure and resilient against cyber threats across our digital landscape. M te tranga mahi About the role Permanent, Wellington based opportunity.

The Information Security Analyst role is the ideal opportunity for a forward thinking, ambitious and experienced professional to join ACC. The role is responsible for the integrity of ACC systems through the development and maintenance of ICT Security standards and promotes an understanding of security risks and management requirements. Working closely with and providing assistance to Business Managers, the Information Security Analyst is involved in the training of staff in information security policies and their responsibilities in relation to these.

As well as monitoring compliance by ACC users and outsourced IT. Security engineering: Developing scripts to integrate security systems and threat intelligence Liaising with Developers and DevOps Engineers to ensure solutions and CI/CD pipelines are built securely Reviewing solution designs, and assisting solution architects with security by design Help structure ACC's secure implementation and deployment of Cloud technologies Security operations: Develop and review SIEM rules to detect and respond to security anomalies Develop and review Network Forensic rules to detect and respond to security anomalies Threat hunting Risk assessments: Review Penetration test reports, and assisting developers with mitigating/resolving security bugs Re-testing/validating reported security bugs Analysing the environment for misconfigurations which could lead to compromise Mu About you To be successful in this role you will: have a strong understanding of solution architecture and ICT security policies and standards have strong analytical skills have the ability to work effectively through influencing others and making managed trade-offs have an understanding of Business Continuity and Disaster Recovery Frameworks have the ability to drive innovation and adopt new ways of working demonstrate ability to work in a team environment and contribute to team performance bring a strong customer focus and interpersonal skills with the ability to work effectively with a variety of stakeholders have excellent written and verbal communication skills. Key skills: Good knowledge of Microsoft M365 and Azure security products and tools Experience with Identity and Access Management in Azure Active Directory Skilled in designing, creating and administering policies in Microsoft security toolsets Security Operations Centre (SOC) or related security monitoring or security incident response experience Understanding of solution architecture and ICT security policies and standards Proven experience in the infosec field around networks, ICT systems generally and a demonstrated knowledge.