As a Cyber Security Analyst, you will work in a fast-paced, technologically diverse environment, within a team who provide full security operations and incident response capability whilst managing competing team and individual priorities.
You’ll require competence in a multitude of cyber security disciplines to compliment your broad enterprise IT experience. Your primary responsibilities will focus on monitoring, assessment/analysis of emerging threats and security events, administration and support for a suite of security applications and platforms. A key function of this position is to support the administration, operation, and ongoing uplift of the Departments micro-segmentation capability, including onboarding, policy development, and operational support.
You will demonstrate expertise in the investigation of complex cyber security events, including the analysis of indicators of compromise, attacks, telemetry data and alerts. You will also significantly contribute to the evolving capabilities and roll-out of the micro-segmentation platform.
Key duties and responsibilities:
- Support the operation and ongoing uplift of the micro-segmentation platform, including monitoring agent health, policy status, and workload compliance across onboarded environments.
- Undertake operational activities including policy review, refinement, exception management, and support for policy lifecycle processes.
- Contribute to workload onboarding activities, including discovery workshops, traffic flow analysis, application dependency mapping, and identification of policy requirements and exceptions.
- Support the development, testing, and implementation of micro-segmentation policies aligned to enterprise security and operational requirements.
- Conduct monitoring of networks, systems, and endpoints to identify security events, threats, and anomalous behaviour.
- Triage and investigate alerts from security platforms, analysing telemetry, indicators of compromise, and system behaviour to determine appropriate response actions.
- Support incident response activities, including investigation, escalation, and coordination across Cyber Security and broader IMT teams.
- Apply analytical and troubleshooting skills across both security and general IT domains to identify root causes and support remediation activities.
- Monitor emerging threats and vulnerabilities relevant to the environment and ensure appropriate action or escalation.
- Develop and maintain documentation, including procedures, operational guides, and knowledge artefacts supporting both cyber security operations and micro-segmentation capability uplift.
- Collaborate with technical teams, system owners, and stakeholders to support service delivery outcomes and the secure operation of enterprise systems.
- Contribute to continuous improvement of security operations and micro-segmentation capability, including tooling, processes, and detection strategies.
- Participate in team activities including on-call support, knowledge sharing, and cross-functional delivery.
Skills and Experience Required:
- Demonstrated experience operating within a Cyber Security Operations function in a large enterprise, managed service provider, or system integrator environment, with exposure to incident detection, triage, response, and continuous monitoring.
- Broad, hands-on experience across generalist IT domains, including networking, systems administration, cloud services, endpoint platforms, and identity services, with the ability to understand interdependencies across enterprise environments.
- Proven capability in investigating complex security events, including analysis of alerts, telemetry, network traffic, and indicators of compromise, and translating findings into actionable outcomes.
- Practical experience or strong working knowledge of micro-segmentation concepts, including workload profiling, application dependency mapping, policy design, and enforcement approaches in distributed environments.
- Experience supporting or administering security platforms and tooling (e.g. SIEM, EDR, NDR, vulnerability management, or network security platforms), including tuning, optimisation, and operational support.
- Strong analytical and problem-solving skills, with the ability to operate across both security-specific and general IT problem domains.
- Demonstrated ability to operate effectively in technically diverse environments, balancing competing priorities and contributing to operational uplift.
- Effective communication and stakeholder engagement skills, including the ability to work with both technical and non-technical audiences to drive outcomes.
- Demonstrated ability to collaborate across multidisciplinary teams, contributing to shared objectives and service delivery outcomes
Location and Contract Term: This role can be based in QLD, WA, ACT, VIC, NSW, NT, SA & TAS Hybrid working arrangements. 12 month contract with 1 x 12- month contract extension options pending budget and delegate approval.
Security Requirements: Applicants must be Australian Citizens and hold a NV1 security clearance.
How to Apply: Applications close 5 June.
Please upload your resume to apply. Candidates will need to be willing to undergo pre-employment screening checks which may include, ID and work rights, security clearance verification and any other client requested checks
Please note you may need to complete selection criteria to complete this application process. We will be in touch with instructions for suitably skilled candidates
Call Kelly 0480 002 457 or email kelly@whizdom.com.au for any further information
