Risk Analyst (Operations & Technology)
Worker Type:
Permanent
Here at BNZ, it's about more than just banking. We work together in an agile, energising environment to create innovative solutions through our promise "If you can imagine a better future, let's find a way."
We support wellbeing, flexible working and have a generous leave offering. There is the opportunity for growth, learning and career development. No two days are the same.
BlinkPay is an entity of the BNZ Group
About BlinkPay
Looking for an exciting opportunity to join a fast-growing team that is dedicated to making a difference in the payment industry? BlinkPay is seeking top-notch talent to join our team of payments experts as we continue to innovate and develop cutting-edge payment solutions for our clients. With our customer-centric approach and state-of-the-art technology, BlinkPay is committed to providing secure, reliable, and efficient payment services to our customers.
Position Overview
As a Risk Analyst at BlinkPay, you will report to both the internal CTO and CRO, and be responsible for helping manage risk across the organisation whilst maintaining our security posture. This is a hands-on role where you will proactively identify and assess risks across product development and operations processes as we scale, design and implement controls, coordinate security operations, lead audit engagements, maintain our ISO 27001 certification and complete regular risk reporting for risk committees.
The ideal candidate is proactive and eager to learn in a dynamic environment, who can navigate the compliance requirements of a regulated banking environment, and brings practical experience in risk management, control implementation, and information security operations.
Role Responsibilities
Risk Management and Control Implementation
Identify, assess, and manage product, technology and operational risks across the organisation
Design and implement new controls to address risk gaps, execute control remediation plans, and perform periodic control testing
Maintain the enterprise risk register and track control improvements, providing evidence for audit and risk action closure
Work with business owners across operations, sales and product to embed effective risk management practices
Complete regular risk reporting for internal risk meetings and board forums
Information Security Operations
Own and maintain BlinkPay's ISO 27001 certification, manage the ISMS, and serve as primary contact during external audits
Conduct security risk assessments for systems, integrations, new initiatives, and third-party vendors
Coordinate vulnerability scans and penetration testing, interpret findings, and drive remediation
Oversee incident response activities and ensure appropriate security measures are in place
Compliance and Reporting
Prepare and deliver risk dashboards, key risk indicators, and compliance reporting to internal and external stakeholders
Maintain governance documentation and ensure all evidence is audit-ready
Work cross-functionally with technology, product, and business teams to embed effective security and risk practices
Required Experience
5+ years in risk management, information security, or technology risk roles within financial services or fintech
Ideal but not required, hands-on experience with ISO 27001 implementation and maintenance
Awareness of or desire to learn risk management methodologies, IT general controls, and operational risk frameworks (ISO 27001, NIST CSF, or similar)
Ability to interpret technical security findings and excellent communication skills for cross-functional stakeholder engagement
Qualifications That Would Strengthen Your Application
ISO 27001 Lead Auditor or Lead Implementer certification
Experience with CPS 234 or PCI DSS compliance, particularly in payments or fintech environments
Experience with GRC or ISMS automation platforms
Relevant degree in information security, risk management, computer science, or related field
CISSP, CISM, CISA, or CRISC certification is a plus
What We Offer
Competitive compensation package with benefits
Professional development opportunities
100% work from home role
Health insurance coverage
Regular team events and activities
Important Note
BlinkPay values genuine lived experience and reserves the right to decline applications suspected of being AI-generated. All applications should reflect genuine experience and qualifications.
BlinkPay is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.
This is an exciting opportunity to join us! We're bold thinkers who are taking brave steps to create a company that people want to work for, and customers want to bank with. If you're ready to join a fun organisation where we are proud of our culture and how we are helping New Zealander's to 'Find their way', then show your interest by submitting your application - we can't wait to read it.
Ehara taku toa i te toa takitahi, engari he toa takitini" - Success is not the work of an individual, but the work of many.”
Closing Date: 31 May 2026Applications will be reviewed regularly across the advertising period, but we do reserve the right to close applications early.
Apply To This Job