,

Security Analyst

Job posted: 02/07/2024
Applications close: 15/07/2024 (Midnight)
2 days remaining

2 days remaining

Job Description

Location: Melbourne | CBD

Job type: Ongoing - Full Time

Organisation: Department of Transport and Planning

Salary: $106,534 - $128,897

Occupation: Information Management

Reference: 4723

Reference: 4723

Occupation: Information Management

Salary Range: $106,534 - $128,897

Work location: Melbourne | CBD

bout the Role


The Cyber Security Analyst is a position that sits within the Security Operations team and provides operational support to DTP to identify, detect, respond, and recover from cyber incidents. The role is a key function that is critical to the organisation's cybersecurity resilience.
The Security Operations team is responsible for all cyber incident management , vulnerability management  and security event monitoring .
Other functions include coordination of security testing activities (including penetration testing engagements and findings management, incident response testing and application security testing), investigations into live threat intelligence for applicability to DTP, risk assessment of vulnerability alert bulletins, forensic investigations and driving critical patching actions in accordance with standards.
DTP makes extensive use of third-party IT suppliers to run parts of our IT landscape, as well as having business outsource arrangements with companies that operate various public transport, road and rail functions. The Cyber Security Analyst needs to maintain connections with these outsource providers to lead and oversee all incident response and vulnerability remediation actions.
The team will also evolve to provide support for some security toolsets in use across DTP, with near term NAC and DLP deployments.
The scope of the role will primarily focus on internal DTP divisions and business units, but it will grow to provide security operations support to agencies across the Victorian government Transport Portfolio.

The Cyber Security Analyst will be expected to fulfill the following responsibilities:
• As a member of a small team, the Cyber Security Analyst is responsible for security incident management, threat monitoring, incident response, policy enforcement, and ensuring compliance with security protocols and standards.
• Undertake investigations into reported vulnerabilities and emerging threat intelligence provided by various sources such as ACSC, DPC CIRS, AusCERT, FBI, CISA and NCSC for applicability to DTP and initiate appropriate remediation.
• Maintain incident management tickets to ensure progress is achieved and closed in a timely fashion.
• Communicate status of threat and incident response actions to key stakeholders and escalate to emergency management team as appropriate.
• Manage Cyber Security issues reported in Remedy, including change requests, IT Security issues, Security Approval.
• Perform security event and incident monitoring.
• Coordinate incident response and critical patching tasks with both internal DTP teams and outsourced providers.
• Support the development and implementation of security strategies, provide security awareness training, and collaborate with other business units to enhance overall security posture.
• Contribute to the development, review, and update of Security Incident Response Plans and playbooks.
• Work closely with and support the Vulnerability Manager by providing relevant data, assisting in the prioritization of vulnerabilities, and contributing to remediation efforts.
• Manage relationships with security service providers. 

 

This role will require occasional ‘non-office-hours’ work to manage active cyber security incidents and may require ‘on call’ arrangements.


To access the Position Description, please click here.


We are seeking a candidate with strong critical thinking and problem-solving skills who can navigate complex issues and guide others in digital and technological literacy. The ideal candidate will excel in stakeholder management, partnering and co-creation, and influence and persuasion, while demonstrating resilience, outcome-oriented thinking, and collaborative work ethic to achieve community-aligned objectives.

 

Position Outcomes / Accountabilities 

•    Compliance Leadership – Provide expert advice that ensures DTPIT teams comply with VPDSS and DTP standards to manage security incidents, with limited or no adverse audit findings. 
•    Stakeholder Engagement – Stakeholders perceive that pragmatic, yet compliant controls which provide data protection and operational resilience have been identified through a supportive partnership approach and a strong understanding of business needs. 
•    Security Maturity – Provide innovative leadership in driving the transport portfolio’s progress to achieve security maturity targets as described in the PDSP and other security frameworks in use. 
•    Risk Management – Within the allocated portfolio group, information security risks have been identified, with treatment plans developed and implemented to ensure the business operates within the DTP risk appetite. 
•    Promote and support safe, inclusive, and flexible team operations. required


Qualifications and Experience

 

Mandatory 
•    Experience in IT Security Operations.
•    Working knowledge of ITIL or other Incident Management framework. 
•    Experience working in incident response, threat intelligence or vulnerability management. 
•    Experience with SIEM and Incident Management tools.

 
Desirable  
•    Degree or diploma in a relevant field, preferably cyber security. 
•    3+ years Cybersecurity experience in IT Operations, preferably in a Cyber Analyst role. 
•    Sound knowledge of, or practical experience working with security standards and models such as VPDSS, ISM, Essential 8, NIST CSF, NIST 800-61r2, Cyber Kill Chain, and MITRE ATT&CK. 
•    Security certifications such as SANS GIAC GSOC, GCIA, GCDA, GCWN and GOSI. 
•    Understanding of or experience with OT security controls
•    Skillsets: Active Directory, PowerShell, Linux, Network, Analytic capability, Process documentation, Penetration testing 


 
What we offer

 
•    Meaningful work making Victorian communities more accessible and liveable 
•    Professional growth and development opportunities across the department and the wider Victorian Public Services •    A hybrid working model focused on collaboration and teamwork
•    Optimal work-life balance initiatives including flexible working arrangements
•    Opportunity to work across multiple urban and suburban hubs
•    We prioritise the development of a safe and inclusive culture

 

Culture Value


We are an equal opportunity employer, embracing a diverse range of applicants such as veterans, and people who identify as Aboriginal and/or Torres Strait Islander, LGBTQIA community members, individuals with disabilities and/or health conditions, as well as those from varied faith and cultural backgrounds. At our department, we prioritize the development of a safe, inclusive, and high-performance culture through shared actions and behaviours that align with our strategy and direction. This empowers our employees to effectively contribute to our goals.

 

How to Apply

 

Non-DTP Employees (Including VPS outside of DTP)

Create an account by clicking the ‘Apply’ button and follow the prompts. For help, click here for Quick Reference Guide.

Applications close at 11:59 PM on Monday, 15th of July 2024.

Please include a resume and cover letter. All applications must be submitted through the online portal. We’re unable to consider email or manual applications.

For more information, contact Abhishek Chanana, Cyber Security Manager via Abhishek.Chanana@transport.vic.gov.au . Preferred applicants will need to complete a police check and other pre-employment checks. Your information will be treated confidentially.

If you require additional adjustments across the recruitment process or accessible formats of this ad, please contact us by phone or email.

Security Analyst

Job type:

Ongoing - Full Time

Job classification:

VPSG5

Contact:

Abhishek.Chanana@transport.vic.gov.au - Cyber Security Manager Abhishek Chanana - Abhishek.Chanana@transport.vic.gov.au

Security Analyst