# Risk & Controls Analyst > Centrapay · New Zealand (Remote) · Full-time · Posted 2026-06-19 **Workplace:** remote **Department:** Risk ## Description At Centrapay, we're revolutionising how you spend money both in-store and online. We allow businesses to create digital assets and loyalty programmes so that you can spend and be rewarded anywhere. Some of our partners include Coca-Cola, BNZ, and Farmlands, and we process payments in New Zealand and Australia. Our payments platform is the heartbeat of what we do. On top of this, we're building our hero app, Payap ([www.payap.com](https://www.payap.com)), that brings all of our best capabilities to life. At Centrapay we're building a payments platform that businesses and consumers trust, and we want a sharp, curious risk professional to help us do it right. This is a hands-on role where your work will actually matter: you'll design controls, investigate anomalies, improve reporting, and influence how risk is managed across the whole business. **What you'll be doing** This isn’t a role where you’ll spend your day ticking boxes or following rigid processes. We’re looking for someone who can think critically, ask good questions, investigate issues and help us continuously improve how we manage risk in a proportionate way as the business grows. You’ll work closely with engineering, product, operations and leadership teams, translating technical and operational information into meaningful risk and control insights. You’ll report to the CRO, also working closely with the Senior Risk & Change Manager. **Controls & Assurance** - Support the ongoing development of Centrapay / Payap’s control framework - Design and test controls to close risk gaps - Build practical assurance approaches for a fast-moving fintech - Lead control remediation and periodic testing cycles - Maintain evidence and documentation for compliance activities **Reporting & Data** - Prepare risk, controls and compliance reporting - Investigate anomalies, trends and gaps in data - Support regulatory and governance reporting requirements - Drive automation across assurance and measurement **Compliance & Accreditation** - Support audits, accreditations and compliance programmes - Coordinate evidence collection across teams - Maintain compliance registers, databases and records **Infosec & Third-Party Risk** - Support security risk assessments for systems and vendors - Track vulnerability management and remediation - Facilitate risk workshops and maintain risk records **What Success Looks Like** - Established a repeatable controls testing approach the business actually use - Improved the quality and efficiency of risk and compliance reporting - Increased automation across assurance and testing activities - Built trusted relationships across engineering, product and operations - Become a go-to source of insight for the Risk function and leadership[](https://www.googleadservices.com/pagead/aclk?sa=L&ai=DChcSEwiOmKOrkfmKAxUDFYMDHSQhHqIYABAAGgJzZg&co=1&ase=2&gclid=Cj0KCQiA1p28BhCBARIsADP9HrN3VyCiCkgspAy5CIpcTJcrahvemznZLT7E0JatiRIavREU1BXBB1YaAkc-EALw_wcB&ohost=www.google.com&cid=CAESVeD2fO4AIjiUxxhTGLlbW9dJ3eJZAt7aGgiz1BrbmGqgKieKnTiW5P9opsY-l9dyI9_5HGbRT25wPEaiSDqwBaRGk1m2j2dGPP3mI88ko3XLblwyoR0&sig=AOD64_1o_R9wEKNwRlug7wNqG8reva2IMg&q&nis=4&adurl&ved=2ahUKEwjX7Z6rkfmKAxUNVWwGHa9XHcEQ0Qx6BAgLEAE) ## Requirements **Who We're Looking For** - 5+ years in risk management, information security, or technology risk - Experience in financial services or a regulated fintech environment - Ability to work across technical and non-technical teams, translating technical concepts into language others understand - Strong analytical and problem-solving skills - Ability to spot patterns and inconsistencies in data - Process improvement mindset - Excellent communication skills - Payments experience is not required — we'll help you learn **Nice To Have (not essential)** - Experience with ISO 27001, NIST CSF or similar risk frameworks - Exposure to GRC or ISMS platforms - Familiarity with PCI DSS, CPS 234 or open banking/CDR compliance environments - Relevant degree or certification in risk, audit, information security or a related field (e.g. CISA, CRISC) **🚀 Why Join Us?** - Be part of a fast-growing fintech shaping the future of payments - Work with a team that values innovation, collaboration and ambition - Competitive compensation, growth opportunities, and a chance to make a real impact ## Benefits We look after our people at Centrapay, a key focus is our culture and ensuring we create a positive and healthy work environment. We continuously look at ways to make improvements and regularly ask for employee feedback and input. **🏄 Your key benefits** - We offer flexible working - Awesome office location at City Works Depot (if you're in Auckland) - 6 weeks annual leave - A Macbook Pro - We have a down-to-earth, open culture that values inclusion - In-person and online social activities to keep you connected - Sick leave from day one - Free health insurance via Southern Cross - Free Life insurance - Additional parental leave entitlements For more information on Centrapay please visit [https://centrapay.com/](https://centrapay.com/) [BNZ](https://www.bnz.co.nz/business-banking/payments/payap) and [Centrapay](https://centrapay.com/) are partnering together to lead the charge in payment innovation and push the boundaries of what’s possible. ## Apply [Apply at Centrapay](https://apply.workable.com/centrapay/j/488EB2E716/apply) --- Powered by [Workable](https://www.workable.com)