The work we do at Inland Revenue is really important to the economic and social wellbeing of New Zealanders. It's so much more than the old stereotype of just 'gathering tax' - we do all sorts, including collect ing 80% of the Crown's revenue and distributing social support payments. To do this effectively and efficiently, it's essential we hold data and information for every NZ resident and business. And this is available to them though a greatly expanded digital presence. But, ensuring the security and integrity of this data is vital, so we're focused on making sure we identify and minimise the risk and impacts of this information and data being exposed either accidently or maliciously.

With that in mind, now is an exciting time to join us in one of these pivotal roles. We're rolling out a large business transformation programme - part of which will allow you to have a hand in setting the strategic direction for information security across the organization and our wider partners. Not only that, you'll also enjoy excellent scope to shape the culture and identity of our CISO team.

Mō mātou | About us

This is an exciting time to join IR as we embed the benefits and value of a large business transformation programme and can set the strategic direction for information security across the organization and our wider partners.

The CISO Office is a newly formed team and in these roles, you will have the opportunity to shape the team culture and identity.

We are a flexible by default employer and as such we encourage conversations about flexibility in locations and working patterns.

CISO team description of responsibilities and goals

• Sets strategic direction for information security

• Facilitates communication across the enterprise to ensure alignment of business and security objectives

• Certifies that systems meet and maintains the standards of the NZ Information Security Manual (GCSB)

Mō te tūnga | About the role

This is a career-defining chance to join us in one of two newly created senior leadership roles. Both offer immense potential in terms of the ability to promote, develop and support the strategic direction encompassing compliance, risk frameworks, partner/vendor relationships and enabling security programmes for the team and wider business, with a focus on key internal or external partners.

Domain Lead (Internal)

Look forward to the opportunity to influence, establish and manage relationships across the enterprise, including Integrity and Assurance, Information Management & Architecture, SIDMs and Digital Channels teams. As part of this, main areas of focus will include:

• Managing and maintaining IR's classification system

• Maintaining oversite of Certificate Management, Compliance, Exemptions, and Internal Controls

• Assuring that IR's Physical Information, Special Files and Secure Rooms have appropriate security frameworks in place

Domain Lead (External)

If you are highly confident and capable in stakeholder management you'll be in your element in this role, managing relationships across Procurement, Security Architecture, Privacy Officer, All of Government and the Cloud teams. You'll have key accountabilities covering but not limited to:

• Developing and implementing Cloud Security and Threat Mitigation initiatives

• Overseeing and conducting Environmental Scans and Prioritisation of remedial actives

• Ensuring our security posture for our Data and Information Exchanges, e-mail and new vendor/partners is implemented and maintained

Mōu | About you

We're excited to hear from proven people leaders with a natural flair for relationship building. To complement this talent, we're also looking to be impressed by:

• Experience successfully leading teams and initiatives that enable the enterprise

• A natural agility and curiosity and the ability to challenge the status quo

• Excellent understanding of Cyber Security and its place in New Zealand's Public Sector

• Confidence working with ambiguity and connecting the dots

• A relevant qualification or significant work experience