Senior Cyber Security Analyst Clerk Grade 9/10, base salary ranging from $129,464 - $142,665 super Full time temporary to 8 March 2028 Located at Haymarket, Sydney (Hybrid Working) Closing date Friday 10th April 2026 @10am The Team and the Role The Data Analytics Centre (DAC) exists to lead a whole-of-government approach to data analytics, to tackle some of the State’s most difficult policy challenges. As the Senior Cyber Security Analyst, you will be responsible for progressing a range of cyber security-focussed initiatives for the DAC. You will drive cyber security risk management, compliance, and incident response activities, while strengthening the platform’s overall security posture across cloud and ICT environments. This is a hands-on role combining: Cloud security engineering Governance, risk and compliance (GRC) Incident response Security uplift initiatives This role requires strong technical capability across Azure security services, identity protection, monitoring, and incident response, as well as the ability to collaborate with Architecture, Engineering, DevOps, and Risk teams to uplift Azure Cyber Security posture, reduce vulnerability exposure, and establish repeatable best-practice operational controls. Your key accountabilities include: Threat Monitoring & Incident Response Monitor, detect and respond to cyber threats and vulnerabilities. Lead security incident investigations, including forensic analysis and remediation. Maintain comprehensive incident documentation and reporting. Deploy and tune Microsoft Defender for Cloud. Configure and optimize Microsoft Sentinel for cloud threat detection. Develop KQL-based detection rules and analytics Cloud & Platform Security Administer and optimise security tools including: Microsoft Sentinel (SIEM) CrowdStrike (EDR) Qualys (Vulnerability Management) Strengthen Azure cloud security controls, including IAM (Entra ID). Oversee vulnerability scanning, patch management and penetration test responses. Implement and maintain secure Azure architectures aligned to Zero Trust principles. Support implementation of network security controls (NSGs, Azure Firewall, Private Endpoints, WAF). Automate security monitoring and remediation using Azure-native tooling Implement Infrastructure as Code (IaC) security validation Identity & Access Management Configure and manage Microsoft Entra ID security controls. Strengthen Conditional Access, MFA, PAM and Privileged Identity Management (PIM). Enforce least privilege and RBAC across Azure subscriptions. Governance, Risk & Compliance Lead and maintain ISO 27001 certification lifecycle activities. Ensure ongoing compliance with: NSW Cyber Security Policy Essential Eight PSPF Relevant NIST standards Conduct regular risk assessments and manage audit activities. Track remediation of audit findings and compliance gaps. Security Uplift & Continuous Improvement Develop and improve cyber security policies, standards and procedures. Lead security uplift initiatives and targeted remediation programs. Support business continuity and disaster recovery planning. Contribute to evaluation and selection of security technologies. Microsoft Purview and DLP experience Stakeholder Engagement & Reporting Provide clear risk insights and security reporting to senior leadership. Prepare high-quality briefs and advice. Facilitate working groups and governance forums. Translate technical risks into actionable business recommendations. About yo u, To be successful, you will demonstrate: Technical Expertise Strong experience in Azure cloud security, including Entra ID and Microsoft Sentinel, KQL Hands-on experience with EDR and vulnerability management tools (e.g., CrowdStrike, Qualys). Scripting (Bicep, PowerShell, Python, Azure CLI) Experience implementing security controls aligned to ISO 27001 and Essential Eight. Knowledge of DevSecOps and Infrastructure-as-Code security practices. Experience across Windows, Linux, cloud and server environments. Governance & Risk Capability Strong working knowledge of ISO 27001, NIST, Essential Eight and PSPF. Experience managing audit processes and remediation tracking. Ability to assess cyber threats and provide risk-based advice. Communication & Leadership Strong written and verbal communication skills. Ability to brief senior stakeholders clearly and confidently. Experience leading projects or coordinating multi-team initiatives. Ability to operate effectively in fast-paced, evolving environments. Certification ISO 27001 Lead Implementer/Auditor certification Microsoft Certified: Azure Security Engineer Associate (AZ-500) Experience with OT / ICS / IACS security frameworks Essential Requirements: The successful applicant must have, or be able to attain and maintain, a baseline security clearance as a condition of employment. Why Join DAC? Work on high-impact government data platforms. Lead meaningful security uplift initiatives. Join a specialised team driving whole-of-government analytics capability. Flexible hybrid working environment. Salary Grade 9/10, with the base salary for this role starting at $129,464 base plus superannuation Click Here to access the Role Description. For enquiries relating to recruitment please contact Meg Rapley via Meg.Rapley@customerservice.nsw.gov.au. Visit the Capability Application Tool to prepare for the recruitment process by accessing practice application and interview questions based on the focus capabilities listed in the role description. Closing Date: Thursday, May 14th, 2026 at 10:00 am Careers at Department of Customer Service A career at the Department of Customer Service (DCS) gives you the opportunity to help improve government services and be part of reform that benefits people across NSW. We are focused on delivering excellent customer service, digital transformation, and regulatory reform. Come join us and influence the future of our great state. Belong in our diverse and inclusive workplace The strength of our workforce lies in its diversity and embracing difference, while the key to our success is leveraging the contributions of employees with different backgrounds and perspectives. You can view our full diversity and inclusion statement here. We want you to bring your best self to this application process. If you have any support or access needs that may require adjustments to allow you to fully participate in this selection process (including an alternate format of the application form) please contact Meg.Rapley@customerservice.nsw.gov.au or 02 9494 8351. For more information, please visit Information on some of the different types of disabilities Information on adjustments available for the recruitment process