Be a part of it. Join the #AccelFamily

Technology Risk Assurance Advisor



Wellington, New Zealand
Posted on Thursday, June 20, 2024
In this role you will report to the GM Assurance, to support and assist in the delivery of the Assurance plan to ensure Xero is appropriately positioned through its next exciting stage of growth. The purpose of the role is to provide the Audit and Risk Management Committee of the Board and the Executive team with assurance on the adequacy and effectiveness of controls, with a particular focus on our IT and security controls, to ensure risks are managed appropriately. You’ll help Xero protect and create value and provide beautiful insights to drive actions and change to improve the business.

What you'll do...

  • Assist in the delivery of the ISO27001 assurance plan which is a requirement under the ISO27001 standard to ensure Xero has best practice security management processes in place.
  • Assist in the delivery of the risk-based Assurance Work Plan which is approved by the Audit and Risk Committee, and is designed to effectively gauge the efficiency and effectiveness of Xero’s systems and controls.
  • Identify and make recommendations on systems and business process re-engineering opportunities.
  • Identify and report on areas of weaknesses in internal controls and processes, including recommendation of remediatory action for streamlining and/or improvement.
  • Lead and assist in the follow up of recommendations to ensure the business are making improvements and/or remediating control deficiencies.
  • Assist in the delivery of requests from the business for specialised audits/reviews.
  • Encourage an understanding of the role of Risk and Assurance within the organisation.
  • Proactively understand and manage risks as they relate to your role

What you'll bring with you...

  • Tertiary qualifications with at least 3-5 years experience performing Audit related activities.
  • Experience working in big-4 CA firms and/or a large corporate environment.
  • Experience and understanding of IT processes including operations, security, configuration, change, incident, problem and disaster recovery management.
  • Experience in planning and conducting audits in accordance with compliance requirements and risk and control framework, particularly ISO 27001.
If this opportunity excites you, we would love hear from you! Please add a cover letter telling us a little more about yourself along with your CV.
In return we will provide an awesome place to work, where people care about each other, great benefits and a truly flexible working arrangement. Applications close 5th July.