The Opportunity Due to internal movement, a position is available to join our IT Risk and Security team on a full-time 12-month contract. In this role, you'll serve as a technical advisor to management on the latest techniques and methods for identifying, protecting, detecting, responding to, and recovering from evolving cybersecurity threats.
Working closely with our Cloud Engineering and Service Desk teams, you'll contribute to proactive and reactive activities across technical and non-technical controls within QIC's corporate and operational technology environments. Your efforts will focus on uncovering vulnerabilities and exposing potential threats, while ensuring robust contingency plans and response strategies are in place.
Key Accountabilities Vulnerability Management – Monitor and report on QIC's corporate and operational technology assets and ensure all vulnerabilities are identified, assessed and remediated in accordance with QIC's risk appetite. Provide advice on zero-day vulnerabilities to ensure QIC remains protected.Cybersecurity Roadmap – Involved in the implementation of a strategic cybersecurity roadmap to uplift the cybersecurity posture across QIC's operational technology.SIEM Management – Optimise QIC's early detection and response capabilities through the management of log ingestion, creation of automated reports and alerts. Work alongside QIC's 24x7 SOC to manage relationship and develop security use cases.Incident Management – Execute incident management procedures including the monitoring and management of all local security breaches, initial incident triage, cause analysis and impact, taking appropriate action to prevent recurrence wherever possible. Ensure all incidents are logged, reported and appropriately documented as per a defined security incident procedure.Support, Assist and Advise – Provide support to delivery teams to ensure optimal use and application of security controls and systems. Consultation with key stakeholders to ensure IT Risk and Security policies remain aligned with stakeholder requirements. Provide onsite support for QIC office locations as required.About You Recognised qualification or experience in Information Technology.Minimum 3 years experience in cyber security.Strong report writing and communication skills.Solid understanding of cybersecurity or information security management.Familiarity with incident management and response planning.Interest in threat detection, assessment, and mitigation.A proactive, responsive, and professional approach with a "can-do" attitude.
#J-18808-Ljbffr