Senior Cybersecurity Engineer

Kia ora!

Air New Zealand is on an accelerated journey to become the world’s leading digital airline. As a Senior Cybersecurity Engineer, you will play a hands-on role in engineering, monitoring, analysing and improving our cybersecurity posture, while partnering with teams across the business to embed best practice and manage risk effectively. This is your opportunity to bring your security expertise to an iconic brand, influencing cloud environments, strengthening controls, and lifting our security maturity across the enterprise.

How you’ll make an impact

• Strengthen our cloud security posture by implementing and enhancing controls that reduce risk and improve resilience
• Support security incident response, coordinating with internal and external teams to resolve incidents quickly and minimise business impact
• Engineer new detections logic for various tools including SIEM, EDR, WAF, etc and handover monitoring of the detection with appropriate documentation.
• Analyse security metrics and contribute to regular health reporting, enabling informed decision making and measurable risk reduction
• Identify vulnerabilities and partner with stakeholders to prioritise remediation, reducing exposure across hybrid environments
• Monitor, review and optimise WAF rules and performance to protect customer-facing platforms from evolving threats
• Maintain high quality documentation, standards and procedures to ensure consistent, compliant security practices

What you’ll bring

• At least 3-4 years of experience in cybersecurity roles, with practical exposure to operational security environments
• Strong understanding of security principles such as defence in depth, least privilege, confidentiality, integrity and availability
• Experience and proficient in all aspects of Vulnerability Management including mitigation
• Knowledge of security incident response processes, governance practices and security control frameworks
• Familiarity with SIEM tools and security monitoring, with the ability to interpret alerts and translate data into insights
• Experience working with WAF and cloud technologies, ideally within hybrid cloud environments
• Experience with DDoS protection, API security, threat and vulnerability analysis, and risk assessment methodologies
• Exposure to penetration testing concepts and emerging security risks, trends and architecture patterns is an advantage
• A qualification in business, computer science, engineering or equivalent experience, along with a genuine passion for cybersecurity
• Security or cloud certifications such as AWS or CISSP are beneficial, but not essential
• Experience with Infrastructure as Code (IaC) and scripting/automation using Python to support secure cloud operations, configuration management, and security process automation.

If you meet the majority of the criteria and are excited by the opportunity, we’d love to hear from you.

This role is classified as safety sensitive. The successful candidate will be required to complete additional vetting checks and must meet and maintain the standards required for operational safety and regulatory compliance throughout their employment.

Take flight and apply now! Applications close on Tuesday 7 July 2026. 

 

 

At Air New Zealand, we are proudly committed to diversity, equity and inclusion and believe in creating a truly inclusive workplace where everyone can be themselves and thrive. Our people are our greatest asset – because while everything else we do in our operation can be replicated by our competitors, it is our people that truly set us apart. We are firm believers in celebrating the differences and diversity of thought our people bring to their roles.

Whāia te pae tawhiti kia tata. Ko te pae tata whakamaua, kia tina.

"Seek to bring distant horizons closer. Once near, seize them and make them your reality."