**About the Company**
Davidson have partnered with a major employer in the Gold Coast and Northern NSW region. With record growth and strong capital development, they are seeking to recruit innovative and engaged individuals.
We are looking for an experienced **Cyber & Information Security Specialist** in a full time, ongoing capacity.
**About the Role**
The Cyber Security Team is responsible for developing and implementing the cyber security strategy and program, ensuring the confidentiality, integrity, and availability of systems, information, and services.
Reporting to the Head of Cyber Security, you will manage the Security Operations Centre (SOC) capability, collaborating with internal system owners and administrators and external security partners.
You will connect with internal working groups, committees, and Communities of Practice to provide cyber security expertise, context and perspectives. Additionally, you will engage with a range of external parties and partners, including the Australian Academic & Research Network SOC, Australian Cyber Security Centre, Australian Cyber Emergency Response Team (AusCERT), Australasian Higher Education Cybersecurity Service (AHECS) and vendors.
Some of your key responsibilities will include:
- Identify, investigate, and respond to cyber security events and incidents as they occur.
- Coordinate and facilitate incident response teams according to incident response plans and playbooks.
- Collate, analyse, and interpret information and reporting on progress, approaches and plans to mitigate or correct identified vulnerabilities and exploits.
- Monitor and triage operational ticket queues, including the IT Service Desk and the Security Operations Centre (SOC), for cyber security requests, events and incidents and investigate, escalate, and resolve them as necessary.
- Document and report testing outcomes, provide recommendations to improve security controls and inform system stakeholders.
- Actively promote and maintain a cyber security awareness program across the University.
- Contribute to developing, reviewing, and continuously improving plans, policies, procedures, guidelines, and key performance.
- Propose and implement continuous improvement initiatives to enhance the cyber security of the IT services, data, processes, and technologies.
- Monitor, test, verify and report on the effectiveness of cybersecurity controls to comply with audit requirements, the cyber & information security program, and industry best practices.
- Produce and maintain systems documentation such as standard operating procedures, playbooks, response plans, registers, as-built designs, recovery procedures and configurations and relevant training materials.
**About You**
Ideally, you will bring:
- Tertiary qualifications in Information Technology (or similar) and at least three years of relevant experience
- Relevant cyber security certifications (or demonstrated progress in attaining) such as CISSP, GIAC, OSCP, Security+, etc.
- Demonstrated knowledge and experience with one or more of the following cyber security frameworks or models:
- ACSC Essential 8
- ACSC Information Security Manual
- NIST Cyber Security Framework
- ISO 27001
- Demonstrated operational cyber security experience, including one or more of the following areas:
- Incident response
- Security assessment and testing
- Security monitoring, alerting and reporting
- Network security, e.g., IDS/IPS, firewalls, wireless security
- Demonstrated ability to diagnose issues, respond to incidents, and to maintain and improve systems and services
- Proven ability to work across a multi-disciplinary team and a track record of positively contributing to team culture.
- Valid Driver’s licence
- Ability to successfully pass a National Criminal History Check.
- Full working rights for Australia - employer visa sponsorship is not available for this role.
**The Perks**
This permanent, ongoing role offers a range of benefits including:
- Base salary of $107,134 - $118,184 per annum plus 17% employer’s contribution to superannuation. (Total remuneration package can be tailored to suit you and will be discussed during screening and interview)
- Generous parental and carer’s leave provisions
- Wellbeing initiatives and employee assistance programs
- Professional learning opportunities and study assistance
- Salary sacrificing opportunities which allow employees to maximise their after-tax salary
- Relocation assistance for eligible new employees
**Next Steps