It Security Analyst

**_About Penske:_**

With over 1100 employees across Australia and New Zealand, Penske is an iconic brand in both the business and racing worlds and a Fortune 500 company with a global presence. Operating across some of the most dynamic on
- and off-highway markets in the country, including road transport, energy solutions, mining, rail, defence and commercial marine. Penske is a leading distributor of premium power systems solutions from MTU, Detroit and Allison and the distributor of Western Star, Dennis Eagle and MAN trucks and buses.

**_ Why choose Team Penske?_**

At Penske, we know that it is our people at the heart of our success and we want to make sure you have everything you need to do a great job. That is why as well as a great work environment, we offer the following benefits:

- Accredited Training & Development Programs
- Commitment to providing the highest levels of safety, technical and leadership training
- Competitive Remuneration
- Reward and Recognition Programs
- Employee Referral Program - generous employee referral fees
- Employee Assistance Program
- Family Friendly Benefits including Paid Parental Leave
- Access to Discounted travel, health insurance and motor vehicle benefits

**_Your New Opportunity _**

The IT Security Analyst role provides an opportunity to join the Penske IT team in a growing business in Australia and New Zealand. The IT Security Analyst will provide daily operational IT security support for the Penske IT Team. This role is critical to ensuring timely and efficient handling of incident response to alerts, emerging threats and other activities posing a threat to the Penske IT environment.

**_ Responsibilities will include:_**
- Daily monitoring and management of security tools.
- Daily backup and replication operational management and validation.
- Regular vulnerability scanning and remediation tasks, as well as assessing patching for all IT Infrastructure systems.
- Lead incident response initiatives.
- Monitor, distribute and analyse security alerts and information.
- Monitor and report on intrusion events.
- Identify and maintain security systems to identify and alert on malicious activity signatures and other key indicators of compromise.
- Responsible for facilitation and promoting of the Security Awareness Training program.
- Support and build upon a currently established vulnerability management program to assess and remediate risks on an ongoing basis.
- Handle daily security related tasks, as well as projects as they are assigned.
- Lost or stolen asset activities.
- Research new vulnerabilities, malicious software and emerging threats in order to provide risk analysis/guidance on their applicability to the Penske IT environment.
- Research new open source and other technologies/processes that will cost effectively reduce risk and optimize IT security efficiencies while aligning with business goals and objectives.
- Review and provide guidance on risks associated with new projects, architectures and system configurations.
- Assist with the development, maintenance and testing of disaster recovery plans.
- Assist in documenting, implementing and maintaining security policies, procedures and associated plans for the organization.
- Assist with periodic security risk assessments and IT security audits.

**_ About you:_**
- Minimum of 1 - 3 years of information security experience.
- Understanding of regulatory environment compliance including Sarbanes-Oxley (SOX) is desirable.
- Knowledge of Australian Signals Directorate (ASD) risk mitigation strategies and/or Australian Defence security principles is advantageous.
- Excellent written and communication skills.
- Excellent customer service skills.
- Ability to communicate with team members effectively and clearly.
- Excellent documentation skills.
- Ability to converse and work with vendors.
- Ability to work autonomously.
- Knowledge of business systems and processes.
- Knowledge and understanding of IT Infrastructure and Technology.

Conditions and remuneration will be discussed with the successful applicant.