Applications for the Head of Security role have now closed.

As the provider of New Zealand’s dedicated Research and Education Network REANNZ has a responsibility to not only ensure security of the REANNZ network but also to cater for the specific needs of the R+E community. We believe in a New Zealand where research, education and innovation flourish through real-time exchange of knowledge, ideas and information with the rest of the world.

REANNZ Head of Security is a security expert leading our security strategy, internal processes, participate in the global NREN security community on behalf and reports to the Chief Operating Officer.

Responsibilities

You will be responsible for both internally and externally focused initiatives and programs.

Building REANNZ’s internal security capabilities:

  • Conducting / commissioning security audits of REANNZ’s network and services, systems and processes.
  • Ensuring engineering/operational staff have the required skills in cybersecurity
  • Ensure that team is current in cybersecurity issues and technologies
  • Develop, maintain, publish and enforce corporate information security standards and guidelines
  • Develop and manage a system to report on REANNZ’s current security status and priorities
  • Develop policies and procedures to ensure the security of new solutions
  • Identify and assess the value of independent security related organisational certifications such as ISO 27001

Developing external relationships:

  • You will be required to establish and build relationships with other NREN’s and global CERTS focused on the operational aspects of security
  • You will work with our members and others in the Research and Education community to ensure that coordinated incident response processes are in place
  • Work with security researchers to further REANNZ’s involvement in security research activities where applicable
  • Engage with the global NREN community to take advantage and contribute to security best practices
  • There is a component of international travel with the role to ensure you can attend global security initiatives with your counter parts in other NREN’s

Developing Security related Products and Services:

  • You will work with REANNZ product management to define how REANNZ’s positions its security capabilities and services to the community
  • You will participate in a form of outreach program and engagement with members and customers

Desired Skills and Experience:

  • Minimum of 10 years of progressive experience in the network security and information security policy workforce. Ideally in the research and educational sector
  • Practical experience designing and implementing enterprise information technology security solutions
  • Strong technical expertise regarding a wide range of network and applications security detection and control technologies
  • Strong demonstrated knowledge of information technology and all IT Operations and how they affect/support the business and how cyber security relates to and impacts the overall IT and business environment
  • Experience with and understanding of Security related legislation and regulations relevant to New Zealand and global Research and Education communities
  • Project management skills; financial/budget management, scheduling and resource management
  • Demonstrated professional experience in preparing and presenting information effectively, clearly, and concisely, in written and spoken form to a wide-range of internal and external constituencies, including non-technical executives, officers, product or service vendors, and managers
  • Experience working in a risk based environment including mitigation, planning and implementation
  • Experience with vendor and technology evaluation and selection
  • Experience working with external customers
  • Ability to articulate complex security considerations to all levels of the business

Required Formal Qualifications:

  • Minimum Bachelor’s Degree in Computer Science, Information Systems, Business
  • Certified Information Systems Security Professional (CISSP) certification
  • Certified Information Security Manager (CISM) or other Information Security / IT audit certification (e.g. CISA)
  • Must hold or have the capability of receiving a New Zealand Government Security clearance