Security Analyst

Australian Citizens with Baseline Clearance residing in Australia only respond.

Contract start 01 August 2023 to 5 months, 2 x 6 months extensions.

QRadar, Secure Internet Gateways, Network security engineering and operations.

The security infrastructure analyst will have experience in performing current state analysis, requirements analysis definition and implementation of cyber security monitoring and reporting services, specifically with regards to secure gateway operations, monitoring and related Security Information and Event Management (SIEM) services. Skills and experience in IBM QRadar, network gateways and the Mitre Att&ck and Mitre D3fend frameworks are preferred. Provide security analysis of the current state, report options and recommendations, and specify an uplift and enhancement program for the reporting of cyber metrics to Customers of the Services Australia Shared Services Gateway.

• Elicit, analyse and manage security requirements to meet demand.
• Manage the prioritisation and escalation of security issues.
• Communicate the end-to-end implications of security configuration changes.
• Analyse the cyber security impacts of requests for change management.
• Provide detailed specialist technical infrastructure security advice, including strategic advice to the senior executive where appropriate.
• Proactively share knowledge and expertise as the subject matter expert, and provide assistance and mentorship to less experienced colleagues.
• Assist in the development and implementation of cyber security strategies, policy and procedures and change initiatives.
• Undertake research on emerging technologies and provide recommendations on products and suitability for the agency.
• Prepare, review and maintain documentation which may include design documentation, implementation plans, test plans.
• Support procedures, encourage innovation, continuous improvement and manage and support change.

1. Demonstrated experience and success with analysing gateway and network security monitoring solutions in large complex environments, including specialist knowledge of SIEM configuration, SOC operations and reporting.
2. Demonstrated experience in the configuration and deployment of IBM QRadar, use case development and associated reporting capabilities.
3. Demonstrated knowledge of industry Cyber Security frameworks, best practices and standards including the Mitre Att&ck and D3fend frameworks.
4. Demonstrated knowledge and experience with security requirements and solutions with regard to Federal Government information security policy (i.e. Information Security Manual, Protective Security Policy Framework) and the ACSCs Cyber Security principles and guidelines.