Cyber Security Analyst
- 25 Nov 2021
- Sydney
- Permanent
- ISO/IEC 27001, IEC62443 and NIST800-82 framework exp
- Sydney location
- Permanent -$150k inc super
Australian success story who are a major player in the financial services industry has a new opportunity for a Cyber Security Analyst to come on board and join their technology team.
The company has a start up atmosphere to it and innovation and entrepreneurial ideas are fostered and developed.
In this role you will be responsible for the the following:
The company has a start up atmosphere to it and innovation and entrepreneurial ideas are fostered and developed.
In this role you will be responsible for the the following:
- Manage Information Security Management System in line with the ISO 27001 standard.
- Conduct regular activities and audits in line with security calendar.
- Implement security policies in-line with business need, and risk appetite
- Manage information security risks and incidents.
- Regularly communicate vital information, security needs and priorities to stakeholders.
- Review current system security measures and continuously recommend and implementing enhancements for customer.
- Identify potential security design gaps in existing and proposed architectures and recommend changes or enhancements.
- Perform vulnerability testing, penetration testings and security assessments.
- Enhance and maintain ongoing vulnerability monitoring and alerting (e.g., application logs, access logs, event logs, network equipment, system patches, infrastructure).
- Work closely with software engineering and DevOps team to design solutions in line with best security practices.
- Tertiary Education in Engineering, Science or IT background is essential.
- Experience with AWS and/or Azure
- Skilled in vulnerability assessment and security assessments
- Ability to identify critical infrastructure systems and information security assets
- Understanding about information security management frameworks, such as ISO/IEC 27001, IEC62443 and NIST800-82 highly regarded
- Expert knowledge of multiple IT disciplines including Cloud, Cloud Native Development, API, Digital Experience, Artificial Intelligence, Process Automation, Cyber Security, Large-Scale Data Processing, OWASP
- Experience with AWS and/or Azure
- Certificate (Preferred) CISSP, CISM, IC32, IC33, CEH, CHFI
- Exposure to Sumo Logic and/or Splunk is highly desirable.