Information Security Analyst

Varied role that will suit an ambitious Security Operations Centre (SOC) junior Analyst looking for career growth and ongoing opportunity - This role covers SOC + vulnerability mgmt.
- Where security meets legal excellence - protect the future and secure the present in this value add role
- A key point of difference at KWM is our culture - Along with access to the latest cloud technology, you will join a firm that is collaborative, innovative, and supports and encourages learning and development.

Who are we?

A firm born in Asia, underpinned by world class capability.

With over 3000 lawyers in 26 global locations, we help our clients manage their risk and enable their growth. Our full-service offering combines un-matched top tier local capability complemented with an international platform.

We have deep roots in Australia spanning almost 200 years and acknowledge Aboriginal and Torres Strait Islander peoples as the traditional owners and custodians of these lands and waters.

Role Detail

In a top-tier law firm, your role as an Information Security Analyst goes beyond protecting networks—it's about ensuring the integrity and confidentiality of critical legal data. You will be joining a team that values precision, expertise, and the highest standards of security. Your expertise will be essential in maintaining the firm’s reputation as a leader in legal services with uncompromising security standards.

Reporting to the Information Security Manager, you will use your technical, people and process skills to further mature the firm’s security practices and support our suite of industry leading security platforms.

Based in our Sydney CBD office, with balanced approach to WFH, key responsibilities include:

- Assisting in the day-to-day operation of the core technologies used by the firm’s Information Security team.
- Assisting in the completion of information security audits and reviews, as required.
- Acting as the first line incident response expert for cyber security incidents identified by the firm’s security systems, external managed security service providers as well as the firm’s internal Technology Service Desk.
- Engineering and implementing integration solutions for our cyber security tools with existing systems to streamline security operations.
- Managing the continuous monitoring, detection and analysis of potential intrusions in real time and through historical trending on security-relevant data sources in the firm’s SIEM.
- Developing and fine-tuning security event monitoring policies and procedures to enhance detection capabilities.
- Managing our vulnerability management platform, including asset management, scanning optimisations, reporting enhancements, exceptions processes and helping facilitate remediation with responsible asset owners.
- Correlating incident data to identify specific vulnerabilities and make recommendations that enable expeditious remediation and security threats and risks.
- Collaborating with other technical teams on project and business as usual initiatives and provide technical guidance and support on cyber security matters.
- Writing knowledge based articles to guide other teams on security processes and tasks.
- Developing and maintaining documentation for security systems, procedures, and security diagrams.
- Supporting the maintenance and operation of our policies, procedures and standards, registers, guides and reporting.
- Staying current with the latest cyber security threats, trends, and technologies to continually improve our security posture.

About You

You will be joining a highly regarded team where your natural curiosity will fit nicely, and your collaborative approach will be celebrated. We look for proactive, process improvement seekers and reward team players who add value through their ability to put their passion into firm aligned deliverables. You will also bring:

- Lateral thinking with systematic approach to troubleshooting and analysis of cyber security incidents and threats.
- An understanding of networking protocols and infrastructure designs; including, firewall functionality, routing, encryption, host and network intrusion detection systems, load balancing, and other network protocols.
- An understanding of attacker tactics, techniques and procedures. Offensive Security experience would be valuable.
- Hands-on experience with security monitoring tools, SIEM solutions, and incident response.
- Hands-on experience with vulnerability scanning tools and vulnerability management processes.
- Excellent analysis and problem-solving skills.
- Experience working on multiple operating systems and platforms.
- A strong and clear communicator with a collaborative and flexible work style with stakeholders at various levels.
- Knowledge of the latest cyber security threats and trends, as well as an understanding of security best practices and frameworks.

Next Steps

Applications close COB Thursday 21st November 2024.

If you have any ques