Source: International Atomic Energy Agency – IAEA
Zvirawa was introduced to the world of information security when she moved to a software company specializing in security solutions. Her role involved working with large companies where cyber security attacks could have significant financial implications, and she was able to hone her problem solving and communication skills. “That’s where I fell in love with cyber security,” she says.
A significant turning point in Zvirawa’s career was when she joined the United Nations Population Fund (UNFPA) in New York as an infrastructure security analyst. This position allowed her to combine her expertise in computer networking with her passion for information security, and she found it exciting to work in such an international environment. “Working with over 60 countries at UNFPA opened my eyes to how IT policies and regulations vary around the world,” she says. “You have to be creative, especially when facing challenges like dealing with embargoed countries or restricted access to software in some jurisdictions.” During this time, Zvirawa also completed a Master of Science degree in information security and assurance, which was supported and partly funded by her employer.
In 2018, Zvirawa joined the IAEA as an IT security engineer. In this role, she focused on detecting and analysing cyber security threats and led several cyber security initiatives to strengthen the security of the Agency’s data and systems. “The global growth in access to technology is a double-edged sword,” she explains. “While it opens up incredible opportunities, it also increases risks, which makes security a top priority.”
Zvirawa’s next position at the IAEA was as an information security officer, where her focus shifted from the operational aspects of information security to governance, risk management and compliance. One of her notable achievements in this role was coordinating the organization’s efforts to obtain ISO certification in information security, ensuring it meets international industry standards.
In her current role, Zvirawa oversees how the IAEA controls access to its digital data and systems by managing user identities. “As an Agency, robust digital identity and access management are crucial for building trust, as poorly managed identities can lead to data breaches and privacy issues,” she explains. “We need to ensure the right people have access to the right resources for the right reasons.” Reflecting on her transition to this role, Zvirawa notes, “One of the advantages of working in IT is that it’s so dynamic. It’s always changing, and this keeps the work exciting and full of opportunities to keep growing.”