Lead Architect - Cyber And Information Security

The Ministry acts in the world to build a safer, more prosperous and more sustainable future for New Zealanders.

Kia hangai ake e te Manatu he ao-haumaru, ao-tonui, ao-pumau, ki te oranga tonutanga mo Aotearoa whanui.

• Define and maintain the Ministry's cyber security domain architecture.
• Guide projects to ensure they align with the cyber security domain architecture
• Wellington based - permanent

This role provides strategic advice to MFAT on all aspects of cyber security and leads strategic relationships with national and international partners.

About the role - Korero mo te turanga

In a global environment characterised by accelerating strategic tension, climate and natural disasters, technological change, and cyber security risks, MFAT's business depends on performant, modern, efficient, resilient, secure information and communications technology (ICT) in New Zealand, across our post network, and wherever Ministry staff travel. In this role you will help design and build the future state cyber security environment for an internationally based organisation supporting New Zealand on the world stage.

This role, the Lead Architect - Cyber and Information Security will play a key role in providing strategic security advice and planning on all things information and cyber security. The role's primary focus areas are:

• Lead development and maintenance of the Ministry's cyber security domain architecture including:
  • Current and future state views
  • Domain strategy and roadmap
  • Principles, standards, guidelines, NFRs
  • Technical capability models
  • Reference models, design patterns
  • Architecture risk register
• Project guidance and oversight from initial go to market through to delivery to ensure they align to the cyber security domain architecture.
• Provide input into investment bids and funding cycles for ICT.

In addition you will:

• Provide input into the CIO-owned Cyber Security Strategy which the cyber security domain architecture needs to feed into and align.
• Assist with the reporting of strategic cyber security risk.
• Assist with the development of a strategic framework for the use and management of security vendors and partnerships.
• Develop and define specific cyber security strategies such as cloud, zero trust, identity and access management, alerting, monitoring, and response.
• Provide expert strategic information security (INFOSEC) policies, advice, analysis, and research on a range of issues for a variety of audiences.
• Participate in interagency projects.
• Liaise with and lead relationships and initiatives with internal and external stakeholders on strategic cyber security issues.
• Ensure that industry frameworks and standards including the PSR and NZISM are well integrated with the organisational cyber security strategy.

For more detail you can view a copy of the position description here.

We are a diverse team with a wide range of backgrounds, experiences, and perspectives. Our collective experiences and histories help to guide us as we adopt new technology and move to a more Cloud centric environment whilst ensuring we keep our organisation and the people in it safe.

The full salary range for this role is $144,934 to $196,087 total remuneration, inclusive of our 3% KiwiSaver employer contribution. We expect to appoint within this range depending on your level of experience.

Who are we looking for? - Ma wai te mahi nei?

To be considered for this role you will have at least 10 years' experience delivering customer oriented and proactive advice, service and support in Security, Risk and Assurance management at a strategic level. You will also have:

• A deep working knowledge and experience in NZISM.
• Experience in Certification and Accreditation of Government systems.
• Experience in Risk Threat management of Government Systems.
• The ability to gather appropriate information and data, produce reports, and identify trends which guide the future provision of user services.
• A recognised industry certification such as SABSA Certified Foundation (SCF), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP) and Microsoft or other Security certifications would be beneficial.
• Understanding of The Treaty of Waitangi/Te Tiriti, Te Reo Maori and Maori customs and protocols would be beneficial.

Why MFAT? - Nga hua o te mahi i te Manatu Aorere?

We are committed to a focus on leadership, talent, training and development, and flexible work options consistent with guidance from the Public Service Commission. Check out our benefits page to find out more about why we love working here.

MFAT is Rainbow Tick accredited. We value diversity and are committed to providing an inclusive culture where everyone feels supported, valued, and a sense of belonging. We welcome applications from people from a diverse range of backgrounds.

About us - Mo matou

Our people represent New Zealand on and offshore, and in doing so make New Zealanders safer and more prosperous. By building connections with and influencing other countries and international institutions, we advance New Zealand's interests and pursue New Zealand's values. We provide advice to the Government on the implications for New Zealand of what is happening in the world.

To Apply/Interested? - Me pehea te tuku tono

Apply today with your CV and cover letter. For any queries please email: recruitment@mfat.govt.nz

To be considered for this position you must be a New Zealand Citizen and able to obtain and maintain a NZ Government National Security clearance at Top Secret level. You must be able to obtain and maintain a Top Secret security clearance. Ordinarily, to obtain this level of clearance candidates must have sufficient checkable background in countries where meaningful and reliable checks can be undertaken. Where requisite checks are unable to be made, the candidate application may not be able to be progressed. Use this online tool to self-check your eligibility for a Top Secret clearance. Please note that this tool is not part of the formal security clearance process: http://www.protectivesecurity.govt.nz/eligibility-tool

Please let us know if you need any support or have any access requirements that will help you through the recruitment process.

Applications close at midnight on Sunday, 18 May 2025.

Please note: This is not a Foreign Policy/diplomatic role. This is a `Corporate' role (known here as a Specialist role) based in central Wellington, NZ.

While it is not usual for specialist staff to be `posted' outside of NZ, from time to time a specialist role overseas becomes available at one of our embassies, high commissions, missions, or consulates. To be considered for one of these positions you would need to apply and be considered via a competitive recruitment process.