Security Analyst

Location: Melbourne | Eastern Metropolitan

Job type: Full time

Organisation: Monash Health

**Salary**: Salary not specified

Occupation: Analyst, IT and Telecommunications

Reference: 59592

**About Monash Health**

**About The Digital Health Division**

The Digital Health Division (DHD) is a division at Monash Health under one executive sponsor (Executive Director of Digital Health) that combines the following departments:
Technology Business Services - provides support for the use and development of Information and Communications Technology across Monash Health.

Program Management Office (PMO) - the objective of the DHD PMO is to achieve consistently successful project execution that is efficient and well-managed. The DHD PMO serves as a centralised project management service for all projects related to Monash Health's division of Information Development.

Advancing Care Program - the department responsible for the management of the organisation-wide EMR, which will allow clinicians to be able to access a patient's clinical information in one place easily; and

Training and Adoption - Training provided for EMR and other digital platforms and support for EMR compliance activities.

Cybersecurity Office - the department responsible for maintaining the Confidentiality, Integrity, and Availability of data and associated systems.

This structure ensures a cohesive delivery of an Information System goal of moving towards a paperless healthcare environment while simultaneously supporting the priorities and needs of the health service. Designed well, ICT combined with the Electronic Medical Record (EMR) will streamline clinical workflow and processes, improving quality and efficiency with a high user experience and patient care.

**Job Summary**

**Purpose**

The dependency on Information and Communications Technology (ICT) across Monash Health is growing rapidly. Therefore, protecting our technology assets and information (data) is one of our highest priorities.

The purpose of the ICT Security Analyst role is to protect Information Technology Systems, including network, and infrastructure, securing information assets, patient data, financial information and other critical electronic information. The ICT Security Analyst will primarily aid the Information Chief Information Security Officer in managing security operations and implementing best practice solutions to improve the ICT security capability across the organisation. In addition, the ICT Security Analyst will conduct day-to-day activities to reduce overall IT systems risk by proactively identifying and resolving security risks and issues.

Under the direction and guidance of the CISO, the Security Analyst will engage with the Hospital to help uplift the current security posture.

**Job description**

Under the direction of the Chief Information Security Officer, the Security Analyst will carry out tasks to ensure that ICT security aligns with business risks and security policy and that appropriate security controls are in place. These activities will include but are not limited to the following:

- Support with Cyber security incidence response and focus on recovery and restoration
- Proactive management of information security assets in conjunction with MSS
- Conduct risk identification and assessment of the current infrastructure
- Work with the infrastructure team to ensure best practices with patch management and monitoring
- Work with the infrastructure team to perform and follow up on vulnerability assessment
- Create & deliver user awareness sessions to improve cyber security posture
- Configure and manage dashboards and reports to improve security controls
- Perform regular internal and external audits to highlight gaps in the security posture and work on remediating them
- Monitor industry threats and trends

The role is responsible for maintaining the highest standards regarding confidentiality, integrity and availability of all data and systems.

Please review the position description for Key Result areas and technical skill requirements.

**What we offer**:

- Salary packaging
- On-site fitness centre
- On-site subsidised car parking
- Monthly ADO's (available for full-time employees)
- Free lifestyle management seminars (superannuation, retirement, etc.)
- Access to salary packaging, private health insurance and industry banking at competitive rates.

**How to Apply**

Monash Health recognises the value of equal employment opportunity and is committed to patient safety and promoting fairness, equity, and diversity in the workplace. At Monash Health we are relentless in our pursuit of excellence and work to our six guiding principles.

Offers of employment can only be made once all required probity checks have been completed. These include:

- reference checks;
- a clear Police Check conducted within the last three months;
- a current Victorian Employee Working with Children's Check (or proof of payment for same);and
- proof of immunis