What you’ll be doing…
Customer cyber security services
- Build relationships between customers and the cyber security team
- Act as a liaison between customers and our cyber security operations team
- Perform security technical risk assessments in on-site consulting engagements for our customers
- Ensure cyber defenses are aligned with customer requirements
- Assist in the development of new cyber security product offerings using our product development framework
- Act as a liaison between customers and our cyber security operations team
- Work with customers to design and test security incident playbooks
Cyber Security Tool Development
- Define requirements and evaluate cyber security tools
- Design and build cyber security platforms
- Identify weaknesses and potential threats to cyber security toolsets
- Perform enhancements to existing cyber security tools
- Onboard devices, develop use cases and perform ruleset tuning in Cyber security tools including IBM QRadar, Qualys, ForcePoint DLP, Mimecast and Carbon Black
Security testing and risk assessments
- Perform security technical risk assessments for new projects and applications
- Perform network security assessments
- Assess technical controls of infrastructure platforms in public cloud environments (AWS, Azure) and on-premise
- Analyse security best practices and identify gaps in existing infrastructure technology platforms
- Conduct vulnerability assessments and translate vulnerabilities into business risk
- Develop security testing process
- Advise red vs. blue team and purple team engagement
What you will bring...
- 5+ years cyber security experience
- Experience in a customer facing role, working with stakeholders at all levels of the organisation
- Experience in security testing, vulnerability assessments and exploitation
- IBM QRadar experience: adding new devices, QRadar ruleset tuning and platform maintenance
- Strong knowledge of cyber security tools, including but not limited to: Firewalls, IDS/IPS, Mail and Web Security, SIEM, DLP, host based security, anti-malware, vulnerability management, mobile device security
- Working knowledge of public cloud and multi-tenant platforms (AWS, Azure and IaaS platforms)
- Working knowledge of security control frameworks including ISO27001, NIST 800-53, Australian Signals Directorate Top 35, PCI-DSS
- Working knowledge of security risk management frameworks including ISO27005 and NIST 800-30
- Experience in managed services environments and security consulting;
- Fortinet Firewall and Cisco network management experience
- Architecture and design experience
- Experience in scripting languages: Powershell, python
- An understanding of adversarial behaviour and the MITRE ATT&CK framework
- Experience in Windows Server, Linux and VMware virtualisation platforms
- Working knowledge of security control frameworks: ISO27001, NIST SP800-53, PCI-DSS, Australian Signals Directorate Information Security Manual, SANS and other control frameworks
- Working knowledge of security risk management frameworks including ISO27005 and NIS 800-30
- Experience in security incident response planning and playbook generation
- Ability to analyse business processes to identify security threats and risks
What's in it for you?
This is a fast growing organisation with lots of career opportunities and the ability to earn an excellent package.
To learn more and have access to a more complete job description listing the full responsibilities, please apply by sending your CV via the big button below or contact Geraint for a confidential discussion on (03) 8637 7370.