EndPoint Analyst

2 days ago

Sydney, New South Wales, Australia XPT Software Australia Full time

Be among the first 25 applicants. Get AI-powered advice on this job and more exclusive features.

Key Responsibilities
  • Capture the most restrictive configurations for web browsers, office productivity suites, and PDF software based on ASD and vendor hardening guidance.
  • Review the current implementation status of web browsers, office productivity suites, and PDF software.
  • Confirm and identify the use of Internet Explorer 11.
  • Document the current state process of PowerShell module logging, script block logging, and transcription events.
  • Perform a current state analysis of new controls.
  • Ensure command line process creation events are centrally logged.
  • Protect event logs from unauthorized modification and deletion.
  • Analyze event logs from internet-facing servers in a timely manner to detect cybersecurity events.
  • Identify and document all gaps in controls, policies, and configurations.
  • Assess potential risks associated with non-compliance and prioritize remediation efforts.
  • Review exceptions for use cases where the most restrictive controls are not implemented and validate if compensating controls are adequate.
  • Assess and implement MS recommended Blocklist (MRB) across workstations.
  • Conduct a Business Impact Assessment on workstations to assess the operational impact of blocking MRB-listed applications.
  • Validate the coverage of current 'LOLBAS' blocking against the MRB to ensure that applications already blocked in the environment are aligned with the MRB blocklist.
  • Identify and implement compensating controls for applications that cannot be blocked due to operational dependencies, ensuring security is maintained in such cases.
  • Ensure changes made to implement MRB are fully documented, and that the implementation aligns with updated Essential Eight ML2 requirements, ready for audit purposes.
  • Extract application usage data from Microsoft Defender to determine whether applications/executables on the recommended block list.
  • Implement continuous monitoring of MRB compliance and update it regularly to address new vulnerabilities, ensuring it remains effective.
  • Ensure that MRB blocking rules apply correctly to both privileged and standard user groups, considering role-based access control (RBAC) for different user types and their specific needs.
Required Skills And Experience
  • Proven experience in system hardening, security auditing, or compliance.
  • Familiarity with ASD Essential Eight and Microsoft security baselines.
  • Strong understanding of Windows event logging and PowerShell security features.
  • Experience with Intune, Group Policy, or other configuration management tools.
  • Excellent documentation and analytical skills.
  • Familiarity with ITIL framework and processes, particularly in change and incident management.
  • Excellent verbal and written communication skills.
Seniorilty level
  • Mid-Senior level
Employment type
  • Full-time
Job function
  • Business Development and Sales
Industries
  • IT Services and IT Consulting

#J-18808-Ljbffr

  • Endpoint Analyst

    3 weeks ago

    Sydney, New South Wales, Australia Ayan Infotech Full time

    AYAN Info Tech is looking for Endpoint Analyst / End User Application Architect to join an exciting project based in Sydney.The role offers you the opportunity to contribute towards an extremely well structured and mature environment, working on sophisticated enhancement projects.Role: Endpoint Analyst / End User Application Architect Location: Sydney...

  • Endpoint Analyst

    2 weeks ago

    Sydney, New South Wales, Australia Ayan Infotech Full time

    AYAN InfoTech is looking for Endpoint Analyst / End User Application Architect to join an exciting project based in Sydney. The role offers you the opportunity to contribute towards an extremely well structured and mature environment, working on sophisticated enhancement projects.Role: Endpoint Analyst / End User Application ArchitectLocation: SydneyContract...

  • Endpoint Analyst

    3 weeks ago

    Sydney, New South Wales, Australia Ayan Infotech Full time

    AYAN InfoTech is looking for Endpoint Analyst / End User Application Architect to join an exciting project based in Sydney. The role offers you the opportunity to contribute towards an extremely well structured and mature environment, working on sophisticated enhancement projects.Role: Endpoint Analyst / End User Application ArchitectLocation: SydneyContract...

  • Senior Endpoint Security Specialist

    2 days ago

    Sydney, New South Wales, Australia beBeeEndpointSecurity Full time $120,000 - $140,000

    Job RoleSeeking a seasoned Cybersecurity Analyst to spearhead endpoint security and compliance initiatives. The successful candidate will be responsible for ensuring the robustness and integrity of our systems and infrastructure.Capture and enforce the most restrictive configurations for web browsers, office productivity suites, and PDF software based on ASD...

  • IT Support Analyst

    3 days ago

    Sydney, New South Wales, Australia The Onset Full time

    OverviewTechnical Support Analyst – Sydney (Global Consultancy). A global consultancy is seeking a Technical Support Analyst to join its Sydney office. In this stand-alone role, you'll support around 60 local users while being part of a global IT team serving over 700 staff worldwide. The position offers autonomy in managing local IT operations, plus the...

  • Endpoint Analyst

    3 days ago

    Sydney, New South Wales, Australia Buscojobs Full time

    Job DescriptionKey ResponsibilitiesCapture the most restrictive configurations for web browsers, office productivity suites, and PDF software based on ASD and vendor hardening guidance.Review the current implementation status of web browsers, office productivity suites, and PDF software.Confirm and identify the use of Internet Explorer 11.Document the...

  • EndPoint Analyst

    3 days ago

    Sydney, New South Wales, Australia XPT Software Australia Full time

    Be among the first 25 applicants. Get AI-powered advice on this job and more exclusive features.Key ResponsibilitiesCapture the most restrictive configurations for web browsers, office productivity suites, and PDF software based on ASD and vendor hardening guidance.Review the current implementation status of web browsers, office productivity suites, and PDF...

  • Endpoint Analyst

    1 hour ago

    Sydney, New South Wales, Australia Buscojobs Full time

    Job Description Key Responsibilities Capture the most restrictive configurations for web browsers, office productivity suites, and PDF software based on ASD and vendor hardening guidance.Review the current implementation status of web browsers, office productivity suites, and PDF software.Confirm and identify the use of Internet Explorer 11.Document the...

  • IT Support Analyst

    2 days ago

    Sydney, New South Wales, Australia The Onset Full time

    Overview Technical Support Analyst – Sydney (Global Consultancy). A global consultancy is seeking a Technical Support Analyst to join its Sydney office. In this stand-alone role, you'll support around 60 local users while being part of a global IT team serving over 700 staff worldwide. The position offers autonomy in managing local IT operations, plus...

  • End User Computing Analyst

    3 weeks ago

    Sydney, New South Wales, Australia MedHealth Full time

    Company Description The Med Health Group is a purpose-built collection of industry leading health, medical and employment brands.Our unique and diverse capabilities come together to get the best possible health and employment outcomes for you and the people you support.We support whole populations to better outcomes, yet never lose sight of the individual we...