Cyber Security Technologist – Operations, Engineering and AssuranceSecurity (Information & Communication Technology)Government - Federal (Government & Defence)The Australian Security Intelligence Organisation (ASIO) protects Australia and Australians from threats to their security. In a complex, challenging and changing security environment, our success is built on the imagination and intelligence of our team. ASIO's people are ordinary Australians but they do extraordinary things – they are our most important asset. To be successful in our mission, we need talented people who are highly capable, dedicated, adaptable and resilient.We seek to reflect the diversity of the community we protect. ASIO is committed to fostering a diverse and inclusive environment, where all staff are valued and respected. We welcome applications from all eligible candidates, irrespective of gender, sexual orientation, ethnicity, religious affiliation, age or disability. Aboriginal and Torres Strait Islander Peoples are encouraged to apply. We are secretive about what we do, not what we value.The opportunityASIO is seeking cyber security technologists across multiple levels to fill vacancies in our cyber security operations, engineering and assurance teams. These roles are critical to ensuring that ASIO is effectively mitigating cyber security threats through the delivery of cyber security monitoring and response capabilities, vulnerability management, cyber security awareness campaigns, and the delivery of technical capabilities to support cyber security functions.Role responsibilitiesAs a Cyber Security Operations Analyst you will:Leverage your understanding of emerging cyber attacks to develop mechanisms to monitor and detect malicious activity on ASIO systems.Analyse security event logs, network traffic, and system activity to identify and understand security threats.Respond to security incidents by investigating and resolving malicious activity.Ingest and implement threat intelligence to improve threat detection and contribute to the creation of tactical and strategic intelligence.Undertake threat hunts to proactively detect malicious activity on systems.Develop and maintain documentation of security incidents, including root cause analysis and lessons learned.Maintain up-to-date technical knowledge on the latest cyber security threats, technologies and developments.As a Cyber Security Engineer you will:Provide operational support for a number of cyber security technologies such as SIEM platforms, endpoint security, network security and vulnerability management.Design, configure and manage security technologies across both cloud and on-premise environments.Collaborate with Cyber Security Operations to understand and enable effective monitoring of the latest security threats.Work together with infrastructure/system managers to integrate cyber security technologies.Maintain up-to-date technical knowledge on the latest cyber security threats, technologies and developments.As a Cyber Security Assurance Officer you will:Promote, enable and provide specialist security advice on the design and architecture of new and emerging systems in alignment with industry and community best practices.Collaborate with project teams in the development of securely designed systems through the development of security documentation and risk assessments.Lead and support compliance assessments of ASIO's systems against relevant policies, standards and best practices.Develop and maintain IT security policies.Perform staff security awareness maturity assessments and deliver curated and interactive cyber security awareness campaigns.Maintain up-to-date technical knowledge on the latest cyber security threats, technologies and developments.As Assistant Director Cyber Security Operations you will:Lead a small team of Cyber Security Operations Analysts to deliver ASIO's cyber security monitoring and incident response functions.Lead incident response activities in accordance with incident response policies and plans. Where necessary, engaging with external entities to resolve security incidents.Plan and manage the development of security capabilities and lead the development of a security team.Develop and maintain relevant documentation, procedures and policies.Maintain up-to-date technical knowledge on the latest cyber security threats, technologies and developments.What you will bringWe invite applications from people with some or all of the following attributes:Strong analytical and problem-solving skills, with the ability to work under pressure.Demonstrated ability to work closely with stakeholders, including internal technology teams, external managed service providers, vendor professional services and domestic and international partners.Excellent collaboration skills and demonstrated ability to lead the delivery outcomes.Strong security awareness and risk management skills.Strong curiosity to learn from subject matter experts.Qualifications or experienceThe following qualifications or experience are desirable, but not essential:At the AE5/6 level, a relevant degree or equivalent work experience in a role related to the field that you are applying for (i.e. operations, engineering and/or assurance).At the SITEC level, a relevant degree or equivalent work experience, with strong technical expertise and relevant work experience in the field you are applying for (i.e. operations, engineering and/or assurance).At the AEE1 level, a relevant degree or equivalent work experience in cyber security and/or experience leading a small technical team.Relevant certifications within cyber security (e.g. SANS GIAC certifications, CISSIP, CISM).Experience with security technologies such as Security Information and Event Management (SIEM) systems (preferably Splunk and/or Sentinel), vulnerability management tools (e.g. Tenable), endpoint and network security tools, threat intelligence platforms (e.g. Anomali or OpenCTI) and incident response tools.Knowledge of security frameworks and standards such as the Information Security Manual (ISM).Experience in the design, implementation and/or maintenance of enterprise systems.What we offer youASIO provides a number of benefits to its staff including:A competitive salary, including a 7.5 per cent allowance for maintaining a TOP SECRET-Privileged Access security clearance.Employer superannuation contributions of 15.4 per cent.A variety of leave options, in addition to the standard 4 weeks annual leave to ensure your work-life balance.Flexible working arrangements to assist you to maintain your work-life balance. (Please note: due to our unique working environment, work from home options are generally not available).Study assistance, including financial support and study leave for tertiary education.Access to 7 staff-led diversity and inclusion networks.Access to an Employee Assistance Program (EAP).To be eligible for the role, you must be:Assessed as suitable to hold and maintain a TOP SECRET-Privileged Access security clearance.LocationThese positions are located in Canberra, ACT & Sydney, NSW and applicants must be willing to relocate. Relocation assistance is provided to successful candidates where ASIO requires you to relocate.How to applyClick on 'Apply online' to commence your application. Your application must be complete and include the following:A written pitch of up to 800 words using examples to demonstrate how your skills and experience meet the requirements. Please Include what position and level you wish to be considered for.A current CV, no more than 2 pages in length, outlining your employment history, the dates and a brief description of your role, as well as any academic qualifications or relevant training you may have undertaken.Details of 2 referees, which must include a current or previous manager.All employment decisions and selection processes at ASIO are based on merit principles and candidates must be prepared to undergo various selection stages.ASIO is committed to fostering a diverse and inclusive environment, where all staff are valued and respected. We welcome and value applications from all eligible candidates, irrespective of gender, sexual orientation, ethnicity, religious affiliation, age or disability. Aboriginal and Torres Strait Islander peoples are encouraged to apply.
#J-18808-Ljbffr