Cyber Security Analyst

Cyber Security Analyst **The Opportunity** Due to internal movement, a position is available to join our IT Risk and Security team on a full time 12-month contract. In this role, you'll serve as a technical advisor to management on the latest techniques and methods for identifying, protecting, detecting, responding to, and recovering from evolving cybersecurity threats. Working closely with our Cloud Engineering and Service Desk teams, you'll contribute to proactive and reactive activities across technical and non-technical controls within QIC's corporate and operational technology environments. Your efforts will focus on uncovering vulnerabilities and exposing potential threats, while ensuring robust contingency plans and response strategies are in place. **Key Accountabilities** - **Vulnerability Management** - Monitor and report on QIC's corporate and operational technology assets and ensure all vulnerabilities are identified, assessed and remediated in accordance with QIC's risk appetite. Provide advice on zero-day vulnerabilities to ensure QIC remains protected. - **Cybersecurity Roadmap** - Involved in the implementation of a strategic cybersecurity roadmap to uplift the cybersecurity posture across QIC's operational technology. - **SIEM Management** - Optimise QIC's early detection and response capabilities through the management of log ingestion, creation of automated reports and alerts. Work alongside QIC's 24x7 SOC to manage relationship and develop security use cases. - **Incident Management** - Execute incident management procedures including the monitoring and management of all local security breaches, initial incident triage, cause analysis and impact, taking appropriate action to prevent recurrence wherever possible. Ensure all incidents are logged, reported and appropriately documented as per a defined security incident procedure. **About You** - Recognised qualification or experience in Information Technology. - Minimum 3 years experience in cyber security. - Strong report writing and communication skills. - Solid understanding of cybersecurity or information security management. - Familiarity with incident management and response planning. - Interest in threat detection, assessment, and mitigation. - A proactive, responsive, and professional approach with a "can-do" attitude. **About Us** **About QIC**: As one of Australia's leading institutional investment managers with more than A$100billion in assets under management, we have a presence across four continents, seven offices and assets across global markets. At QIC, we believe in shared value - where delivering strong investment returns can go hand in hand with doing good for our clients, people and communities. If we invest well, we will all do better together. **Life at QIC**: We know that our people perform at their best when they feel a sense of belonging and are encouraged to bring their authentic selves to work every day. We provide a supportive work environment where everyone can thrive and feel valued for their meaningful contribution in delivering for the prosperity of our clients, people and communities. Joining QIC, you can contribute to our employee led networks that champion our diversity, equity and inclusion strategy, which consists of five key pillars: Gender Equality, LGBTQ+, Accessibility, Cultural & Linguistic Diversity, and First Nations People. Other reasons to join us: - Flexibility and hybrid options encouraged - certified Family Inclusive Workplace - Recharge leave - additional 3 days leave per year - Annual fitness/home office reimbursement - Ability to swap public holidays for those of personal, cultural or religious significance - 26 weeks gender-neutral paid parental leave - Financial study assistance and study leave - Community leave for supporting the causes you love - Development opportunities to extend, expand and enhance your growth Job ID 300000476028295