<aside>
📍 Wellington, New Zealand
</aside>
<aside>
⏰ Permanent, full time
</aside>
At Hnry, we look after some of the most sensitive data our customers have: their income, their tax, their identity, and their money. Protecting that data to a bank-grade standard, while still moving at the pace of a fast-growing startup, is one of the most important jobs in the company.
We are looking for a Cyber Security Engineer to help us do exactly that. This is a deliberately broad role, involving a mix of hands-on actioning system and process improvements across our environment, supporting compliance efforts, triaging vulnerability reports and managing security systems. You will work across data protection, security automation, and compliance, helping to keep our people and our data safe.
If you like the idea of Cyber Security at a company where it genuinely matters, we would love to hear from you 🫶🏽.
🚀 Responsibilities
- Plan and manage security testing, from regular automated scans through to annual and ad-hoc tests with our security partners.
- Define, maintain and evolve playbooks and automations for essential security workflows.
- Administer our internal IT security platforms.
- Protect customer data by scaling our existing approaches to data masking, governance, retention, and privacy requests.
- Support our compliance and audit programme, including ISO 27001, PCI DSS, and our regulator and financial audits.
- Review proposals and features against our security requirements, helping every team ship secure software by default.
- Help our AI team with defining and implementing secure guard rails and systems for our AI agents and AI-powered tooling.
- Sharing your knowledge and ensure that standards are maintained.
- Collaborate with and support other members of the wider Hnry team.
.png)
)_(1).png)
<aside>
🤩
Sam - IT & Security Manager
</aside>
💪 You will
- Have solid experience in cloud-first cyber security, ideally in a regulated or data-sensitive environment such as fintech.
- Be comfortable assessing vulnerability reports and making recommendations.
- Be able to write code and automation to make security scalable, rather than relying on manual gatekeeping.
- Understand at least one major compliance framework in practice (ISO 27001, PCI DSS, or SOC 2) and be willing to own the operational side of audits.
- Have a working understanding of data protection and privacy obligations such as GDPR.
- Be a strong communicator who can influence and enable other engineers, rather than police them.
- Take complex, ambiguous problems, break them down, and ship pragmatic solutions.
- Care about the end user and the business impact of security decisions.
- Have full working rights in NZ.
Bonus points for the following:
- Experience with compliance as code tooling such as Drata.
- Experience working in non-Microsoft environments.
- Experience securing AI agents, LLM tooling, or other emerging technology.
- Experience being self-employed (freelancing, contracting, etc.) in any industry.
🫵 How we work
- We follow agile practices, delivering improvements iteratively in small chunks. We track the impact of our work and measure ourselves on results, not the amount of code written.
- We are growing fast and are focused on building a well designed, scalable, and robust platform. In some areas, such as payment processing, there is very little margin for error.
- Our Key Security Tools include SentinelOne, Netskope, Drata and DataDog.
- We are ISO 27001:2022 Certified.
- We use AI tooling heavily and thoughtfully across Engineering, and security is a first-class part of how we adopt it.
- We work hard and finish on time, no crazy hours.
.png)
<aside>
💰 Salary banding: $110,000 - $130,000 per annum
</aside>
✨ At Hnry, we operate a policy of pay parity across our organisation to ensure that all Hnry staff are fairly and equally compensated based on their contributions and experience. The salary for this role will be determined based on the applicant’s experience✨
💜 How to apply
Complete the Hnry Job Application Form and we will be in touch!