Posted 16 July, 2026
Senior Security Specialist
Serko
Auckland, AUK, NZ
Full Time
Reference: 10d0eeb7b2152b1e
Job Description
About Serko Serko is a cutting-edge tech platform in global business travel & expense technology. When you join Serko, you become part of a team of passionate travellers and technologists bringing people together, using the world's leading business travel marketplace. We are proud to be an equal opportunity employer, we embrace the richness of diversity, showing up authentically to create a positive impact. There's an exciting road ahead of us, where travel needs real, impactful change. With offices in New Zealand, Australia, North America, and China, we are thrilled to be expanding our global footprint, landing our new hub in Bengaluru, India. We’re hiring people from different backgrounds, experiences, abilities, and perspectives to help us build a world‑class team and product. Location and Recruitment This is an Auckland based hybrid role . Recruitment commences post 15th April. Job Summary Reporting to the CISO, your contribution will make a real difference in a critical area for the organisation as we enter a period of transformation for the security team to enable acceleration of the delivery of our business strategy. You’ll be working collaboratively with several cross‑functional delivery teams and leading technical professionals. Responsibilities Building relationships and working collaboratively with other teams across the organisation as a trusted advisor for security. Conducting business‑focused security risk assessments. Enabling other teams to deliver at pace through empowering them with the security knowledge they need to operate within acceptable levels of security risk. Working with the CISO and the rest of the security team to help define and implement the Security Strategy. Staying up to date with the security threat landscape as it pertains to Serko and the latest security countermeasures that could be used to mitigate those threats. Being tenacious and proactively seeking out opportunities to enable and improve Serko’s business goals through enhanced levels of security. Overseeing DevSecOps, security operations management, incident response and threat intelligence, security awareness and training, security risk management. Applying emerging technologies and innovations to strengthen security posture. Providing team leadership and collaboration. Qualifications Considerable experience in a role focussed on DevSecOps and security risk management. Working knowledge of security attack and defence methods. Clear and concise verbal and written communication skills. Proven track record of conducting security risk management to a high standard within fast‑paced environments. Experience managing Microsoft security products and services, including Azure Security Center, Azure Active Directory, and Sentinel. Strong background in implementing DevSecOps practices and integrating security into the software development lifecycle. In‑depth knowledge of risk management frameworks, industry standards (e.g., NIST, ISO 27001), and regulatory requirements (e.g., GDPR, HIPAA). Experience in incident response, threat intelligence, and conducting security assessments. Familiarity with security automation and orchestration tools, vulnerability scanning tools, and secure coding practices. Excellent problem‑solving and analytical skills, with the ability to assess complex security issues and provide practical solutions. Strong communication and interpersonal skills, with the ability to effectively collaborate with cross‑functional teams and communicate security concepts to non‑technical stakeholders. Relevant certifications such as CISSP, CISM, CCSP, Azure Security Engineer Associate, or equivalent certifications are highly desirable. Confidence to push back or challenge when security is at risk in a safe and inclusive environment. Working knowledge of cloud infrastructure services security, particularly Azure. Security compliance experience (e.g. PCI‑DSS) is preferred but not required. Benefits A competitive base pay. Medical benefits. Discretionary incentive plan based on individual and company performance. Focus on development: access to a learning & development platform and opportunity to own your career pathways. Flexible work policy. #J-18808-Ljbffr