IT Risk & Compliance Manager

Posted 30 June 2025
LocationAuckland
Job type Permanent
DisciplineInformation & Cyber Security
Reference955702

Job description

ABOUT THE COMPANY:
This extremely well known organisation is recognisable to all Kiwis. Their people and the fantastic work they do is what makes them so special.  They are values driven and you can bring your true self here, delivering exceptional work for their millions of customers across Aotearoa.

WHAT'S IN IT FOR YOU:
This is a fantastic role with a company that you are going to want on your CV.  They also offer the following benefits:
  • Work with great people doing epic mahi in Auckland or Wellington
  • Very flexible, hybrid working arrangements
  • Subsidised health insurance and other wellness benefits
  • Staff banking benefits - favourable rates, discounted fees etc.
  • Access to Employee Assistance Service
  • Other discounts with various consumer products and services
ABOUT THE ROLE:
This is a fantastic opportunity to have a dynamic role in the Cyber Security team, in which you will be developing and enforcing security processes and procedures across information assets to mitigate risks, while leading ongoing governance and assurance activities of their Information Security Framework, maturing the ISMS.

RESPONSIBILITIES:
The IT Risk & Security Manager is a key member of the Cyber Security team and will lead the team that is accountable for the risk management, compliance and assurance functions of the company's technology environments.

You will maintain strong security governance, management and assurance practices, working with the wider team to improve security standards and practices for the organisation.

Your knowledge of control frameworks and measuring maturity will help guide the generation of risk assessments across the technology environments, whilst supporting due diligence processes for supplier and customer requests.  Reporting to senior leaders, you'll influence change and establish risk appetite across key risk domains.

ABOUT YOU:
We are seeking an IT Risk expert with excellent communication, collaboration and prioritisation skills.  This will allow you to ensure the highest value pieces of work are clearly identified, championed and prioritised for remediation.

In order to be successfull you will need a minimum of 5 years experience working in an Enterprise Risk Management practice, with at least 3 years in a senior level Information Security role.  You'll be highly capable of reviewing contracts and managing a budget and will have a deep understanding of Risk Management principles and frameworks. 

WHAT'S NEXT?
Don't delay in applying for this awesome opportunity with one of New Zealand's best known organisations.  For more information, contact Lisa Cooley on 021 029 81422 or lcooley@brightspark.io