Senior Information Security Specialist

About the Role:

We are seeking an experienced cyber security analyst to work within our Cyber Security Operations team who will identify, analyse and respond to cyber threats and other security risks to ensure the confidentiality, integrity and availability of our information systems.

In this role you’ll monitor, investigate and respond to cyber security incidents and events in a hybrid environment, develop and maintain cyber security documentation such as incident response playbooks, and administer our IT security infrastructure to mitigate risks appropriately. You will work with the IT Security function as a member of the Cyber Security Operations team.

Key Responsibilities:

• Monitor and respond to SIEM alerts for indications of potential cyber security events and incidents
• Perform cyber threat hunting in a modern Security Operations Centre (SOC) environment
• Perform in-depth analysis of cyber security events and incidents to determine the root cause, impact, and appropriate remediation actions
• Ensure appropriate controls are applied and current to protect identified sensitive or critical business assets
• Collaborate with cross-functional teams to implement and enhance strategies, tools and procedures to aid in threat detection and response capabilities
• Conduct incident response activities including containment, eradication, and recovery, to minimise the impact of cyber security incidents
• Identify and analyse the latest cyber security threats, vulnerabilities, and industry best practices to continually improve our cyber security posture
• Ensure that all operational aspects of information security align with our IT Security policies, standards, and business requirements
• Apply and maintain effective security controls as required by security policy and risk assessments
• Perform detection engineering and related SOC engineering activities such as automation
• Provide guidance and mentorship to members of the Cyber Security Operations team to foster skill development and knowledge sharing

Requirements:

• Operational knowledge of data loss prevention and forensics technologies
• Demonstrated expertise with endpoint detection and response technologies (Microsoft Defender for Endpoint is highly desirable)
• Understanding of threat hunting methodologies and demonstrated experience
• Extensive knowledge of securing operating systems including various Linux distributions and Windows versions
• Considerable technical expertise operating a SIEM (Sentinel preferred) and performing log analysis of various formats
• Expert knowledge of IT Security principles/practices across infrastructure & applications
• Worked at a senior level within a SOC environment
• Outstanding written, presentation and interpersonal communication skills
• Ability to present technical evidence clearly and in a manner for non-technical readership
• Considerable experience in responding to and investigating cyber security incidents and events
• Ability to lead small teams and coordinate incident response activities at scale
• Understanding of cloud security technologies and practices (Azure knowledge is highly desirable)
• Familiarity with a scripting language such as Python or PowerShell

About Us:

We make an important contribution to the Australian economy through the pursuit of national economic policy objectives and associated activities in financial markets and banking. We also issue Australia’s banknotes and operate infrastructure critical to the payments system, all of which contribute to the welfare of the Australian people.

Made up of specialists across a wide range of fields, our people, values and culture play a critical role in achieving our objectives. Striving to be open and dynamic, we consider and incorporate different perspectives, work across teams and are transparent with each other, whilst delivering quality together effectively and focusing on outcomes by prioritising, testing, learning and refining as we go.

We know it is the growth and success of our people that drives us forward. Come and make a bigger contribution while you build and develop your own skills too, because being more means you can do more, for yourself and for Australia.