Joining the Metcash Family
At Metcash, you're part of something bigger. You have all the perks of a small business heart, without missing out on the big business support. Being part of something bigger means you're part of a strong purpose, where the work you do makes a big difference to independent business and local communities. It opens a sea of opportunities to develop yourself, grow your career, thrive your way and make your mark. And you'll be part of our high performing team, where you reap the rewards of our collective success now and into the future.
About the Opportunity
Exciting opportunity to be a part of our growing Cybersecurity team. This is a newly created role that will be responsible for the technical leadership that safeguards Metcash's information systems and infrastructure by designing, implementing, and managing security systems and controls. This role leads the operational monitoring and response to security incidents, analysing and enhancing existing security protocols, and ensuring compliance with industry standards and regulations.
In this Role
Cloud Security Posture Management: Use, manage and improve Azure Security controls and other Microsoft cloud security tools to continuously monitor and assess the security posture of 365 and Azure environments.
Incident Response: Lead and coordinate responses to security incidents across on-prem and cloud environments, including containment, eradication, and recovery efforts.
Vulnerability Management: Conduct regular security assessments and vulnerability scans on IT and OT resources across Metcash and its subsidiaries to identify and address security weaknesses.
Access and Identity Management: Help manage security and controls for Azure Active Directory (Azure AD) and Privileged Access Management (PAM). Monitor and review access controls and permissions to ensure compliance with security policies.
Compliance and Governance: Ensure technology environments comply with industry standards and regulations including SOCI, ASD Essential 8 and NIST.
Security Configuration and Hardening: Drive adherence to security configurations and hardening practices for Azure resources and related landing zone guard rails. Manage and support network security and secure service edge controls.
Threat Intelligence and Analysis: Contribute to ongoing IOC gathering and investigation with internal teams and MSSP vendors. Respond to Phishing and BEC requests and escalations.
Security Automation: Collaborate with DevOps teams and MSSP vendors to develop and maintain automated security workflows and playbooks using Azure Logic Apps, Azure Automation, or other security-as-code mechanisms.
Collaboration and Training: Provide subject matter leadership with DevOps, IT operations, and technology project teams.
Documentation and Reporting: Maintain comprehensive documentation (including reporting) of security configurations, incidents, and remediation efforts.
Building a new high performing team: Work with the Head of Security Operations to develop technical capabilities to support ongoing maturity.
You're Likely a Match If
Minimum 10 years' experience in security operations technical capacities.
Industry experience in Logistics/Supermarket/Retail/Wholesale or Critical Infrastructure is highly regarded.
Experience building Azure security practices (DevOps, DevSecOps).
Experience in incident response coordination.
Vendor management and SLA oversight experience.
OT Security experience will be well regarded.
Bachelor's degree in information technology, cyber security, or related field.
Experience in technical leadership of SOC operations teams.
Relevant security certifications such as CISSP, MS Security Operations Analyst (SC-200), MS Identity and Access Admin (SC-300), MS Azure Security Engineer Associate (az-500).
Thorough knowledge of blue team operations and continuous defensive posture management.
Demonstrable knowledge of ASD Essential 8 security controls and enforcement – patching, MFA, whitelisting, MS Office security and ASR rules etc.
Technical Knowledge: MS Azure and Defender 365 expertise (SC-200, SC-300, AZ-500 qualifications preferred).
Microsoft, Unix, Linux operating systems and Endpoint Security application whitelisting controls and technical management best practices.
Certification Management and CA Management.
Bicep infrastructure-as-code fundamentals and experience – Knowledge of DevSecOps processes.
Identity and access management – Conditional Access, PAM/Thycotic.
Pen test remediation and ongoing risk management processes.
Vulnerability Management and remediation – Qualys, 365 Security recommendations, threat intel feeds etc.
Secure Service Edge – SWG, Secure Remote Access and CASB using Zscaler.
Security Information Event Management (SIEM) systems – Log source testing/verification, ongoing use case validation.
Network security – FW, Load Balancer and ZTNA experience.
ITIL and IT Service Management.
Life at Metcash
Experience a supportive and flexible work environment. We are a FlexReady accredited workplace!
Enjoy a 5th week of annual leave every year after your first year.
Benefit from 2 well-being days and 1 volunteer day annually.
An abundance of learning, development, and career growth opportunities.
12 weeks of gender-neutral paid parental leave for primary carers.
Proudly awarded "Bronze Employer for LGBTQ Inclusion".
Recognised as 45th in the global "Equileap Top 100" for initiatives on gender equity.
A neutral gender pay gap of under 5% as published by WGEA 2022-2023.
Gold accreditation by Mental Health Australia.
Incredible value discounts and perks through our team member app, "Our Local".
#J-18808-Ljbffr
