Risk Analyst (Operations & Technology)

Worker Type:

Here at BNZ, it's about more than just banking. We work together in an agile, energising environment to create innovative solutions through our promise "If you can imagine a better future, let's find a way."

We support wellbeing, flexible working and have a generous leave offering. There is the opportunity for growth, learning and career development. No two days are the same.

BlinkPay is an entity of the BNZ Group

About BlinkPay

Looking for an exciting opportunity to join a fast-growing team that is dedicated to making a difference in the payment industry? BlinkPay is seeking top-notch talent to join our team of payments experts as we continue to innovate and develop cutting-edge payment solutions for our clients. With our customer-centric approach and state-of-the-art technology, BlinkPay is committed to providing secure, reliable, and efficient payment services to our customers.

Position Overview

As a Risk Analyst at BlinkPay, you will report to both the internal CTO and CRO, and be responsible for helping manage risk across the organisation whilst maintaining our security posture. This is a hands-on role where you will proactively identify and assess risks across product development and operations processes as we scale, design and implement controls, coordinate security operations, lead audit engagements, maintain our ISO 27001 certification and complete regular risk reporting for risk committees.

The ideal candidate is proactive and eager to learn in a dynamic environment, who can navigate the compliance requirements of a regulated banking environment, and brings practical experience in risk management, control implementation, and information security operations.

Role Responsibilities

Risk Management and Control Implementation

• Identify, assess, and manage product, technology and operational risks across the organisation
• Design and implement new controls to address risk gaps, execute control remediation plans, and perform periodic control testing
• Maintain the enterprise risk register and track control improvements, providing evidence for audit and risk action closure
• Work with business owners across operations, sales and product to embed effective risk management practices
• Complete regular risk reporting for internal risk meetings and board forums

Information Security Operations

• Own and maintain BlinkPay's ISO 27001 certification, manage the ISMS, and serve as primary contact during external audits
• Conduct security risk assessments for systems, integrations, new initiatives, and third-party vendors
• Coordinate vulnerability scans and penetration testing, interpret findings, and drive remediation
• Oversee incident response activities and ensure appropriate security measures are in place

Compliance and Reporting

• Prepare and deliver risk dashboards, key risk indicators, and compliance reporting to internal and external stakeholders
• Maintain governance documentation and ensure all evidence is audit-ready
• Work cross-functionally with technology, product, and business teams to embed effective security and risk practices

Required Experience

• 5+ years in risk management, information security, or technology risk roles within financial services or fintech
• Ideal but not required, hands-on experience with ISO 27001 implementation and maintenance
• Awareness of or desire to learn risk management methodologies, IT general controls, and operational risk frameworks (ISO 27001, NIST CSF, or similar)
• Ability to interpret technical security findings and excellent communication skills for cross-functional stakeholder engagement

Qualifications That Would Strengthen Your Application

• ISO 27001 Lead Auditor or Lead Implementer certification
• Experience with CPS 234 or PCI DSS compliance, particularly in payments or fintech environments
• Experience with GRC or ISMS automation platforms
• Relevant degree in information security, risk management, computer science, or related field
• CISSP, CISM, CISA, or CRISC certification is a plus

What We Offer

• Competitive compensation package with benefits
• Professional development opportunities
• 100% work from home role
• Health insurance coverage
• Regular team events and activities

Important Note

BlinkPay values genuine lived experience and reserves the right to decline applications suspected of being AI-generated. All applications should reflect genuine experience and qualifications.

BlinkPay is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

This is an exciting opportunity to join us!  We're bold thinkers who are taking brave steps to create a company that people want to work for, and customers want to bank with. If you're ready to join a fun organisation where we are proud of our culture and how we are helping New Zealander's to 'Find their way', then show your interest by submitting your application - we can't wait to read it. 

Ehara taku toa i te toa takitahi, engari he toa takitini" - Success is not the work of an individual, but the work of many.”

Applications will be reviewed regularly across the advertising period, but we do reserve the right to close applications early.