Australian Citizens residing in Australia only respond.

• Contract start 20 November 2023 to 12 months, 12 months extensions.
• Australian Citizen, Canberra, or Melbourne role.

Send your responses to jobs@softtestpays.com

Overview

The Chief Information Officer Division is primarily responsible for the management of technology related solutions within the Agency. This includes managing Shared Services Information and Communication Technology (ICT) services and delivery of ICT projects.

The Protective and Cyber Security Branch implements the requirements of the Protective Security Policy Framework (PSPF) and Information Security Manual (ISM) within the Agency. This is achieved by providing strategic, Agency-wide oversight of Security across security governance, information security, personnel security, physical security, and cyber operations.

The Cyber Operations team is responsible for the identification, response, and remediation of security incidents across the organisation.

About the Role

The Senior Cyber Security Operations Analyst will undertake technical cyber security activities under the leadership of the Assistant Director of Cyber Security Operations. The Cyber Security Operations Analyst must possess and demonstrate technical competency in areas of cloud security (Azure/AWS), endpoint and network security, threat intelligence and hunting, data loss prevention, vulnerability management, and incident response. The Cyber Security Analyst will be required to support and contribute to the protection of the Agencys systems, users, and data, to support NDIAs objectives to build a world-leading National Disability Insurance Scheme.

As part of the Cyber Operations team, the role will help ensure that NDIA has the capability to build and protect cyber-resilient information technology platforms and support strategic objectives.

Every application requires to address selection criteria as part of application submission.

Essential Criteria

1. Minimum 3 years experience in technical cyber security roles

2. Experience conducting detection, investigation, and remediation of security incidents using enterprise security tools (e.g. SIEM/SOAR)

3. Experience performing cyber threat intelligence, threat hunting, and vulnerability management activities

Desirable criteria

1. Experience with cloud defensive tools, such as Microsoft 365 Defender, Sentinel, AWS GuardDuty, and Splunk Cloud

2. Strong knowledge of incident response frameworks such as NIST SP 800-61 Computer Incident Handling Guide

3. Proven ability to mentor and develop junior staff, and identify areas of people, process, and defensive tool improvement