About the role
We are looking for a Cyber Security Analyst to perform a wide range of security program activities including management of Cyber Security maturity, information assets, incident, and development of security assessment questionnaire. Whilst ensuring that the information is protected in terms of confidentiality, integrity, availability and complies with the organisation’s security policies.
On a day-to-day basis you will be responsible for:
1. Engage in a wide range of security program activities including management of Cyber Security maturity, information assets, incident, and development of security assessment questionnaire
2. Perform security reviews and audits to ensure the adherence to adopted security standards
3. Perform monitoring, analysis, and research on security threats and vulnerabilities
4. Monitor, analyse, assess, and report on the cyber security risks, issues, threats and vulnerabilities including breaches and potential intrusion incidents to ensure the security of networks, systems and applications
5. Work collaboratively with internal and external stakeholders and vendors to monitor, detect, report and share cyber vulnerabilities, incidents, threats and trends.
6. Collaborate with third party service on security incidents, obtaining root cause analyses and implementing remediations
7. Aid in ongoing security assurance, training, advice, and provides technical guidance and advice on complex security assessments
8. Develop and maintain NESA’s Information Security policies and procedures documents
Our ideal candidate will have;
9. Demonstrated experience in an Information Technology Role, preferably in a Cyber Security Environment.
10. Evidence of actively participating in incident response activities, such as analysing security incidents and implementing corrective measures.
11. Experience in managing and maintaining security infrastructure, including firewalls, intrusion detection/prevention systems, and antivirus solutions.
12. Effective communication skills, both written and verbal, to interact with stakeholders across different organisational levels.
13. Experience in conducting risk assessments across various subject areas, encompassing both technological and process-related aspects.
At the NSW Education Standards Authority (NESA) we work with the NSW community to drive improvements in student achievement.
We achieve this by supporting all school sectors with high-quality syllabuses, assessment (including managing the HSC and NAPLAN), teaching standards (, accrediting teachers) and school environments (including setting and monitoring school standards).
Ready to join us?
Targeted Question 1
This role is responsible for working closely with various stakeholders to maintain compliance to international information security standards. Can you provide an example from your past experience where you used tools or techniques to engage with stakeholders and ensure successful delivery of information security priorities?
Targeted Question 2
Describe your experience in identifying and managing threats, exploits and vulnerabilities. What strategies did you use to mitigate the risk? What methodologies or tools did you use for conducting security assessments, and how did you ensure that all potential vulnerabilities are identified? What were the learnings from this experience?
If you need reasonable adjustments for the recruitment process and workplace, please reach out to the contact person above.
Close Date: 29 February 2024 AEDT
Thank you for your interest, we look forward to receiving your application.
Important information
We particularly welcome applications from Aboriginal and Torres Strait Islander people, people with a disability, people of all ages, genders, cultural and linguistic backgrounds, the LGBTQIA+ community, veterans and refugees.
Visa sponsorship is not available for this position. For ongoing roles, you must be an Australian or New Zealand citizen or an Australian Permanent Resident. Australian Temporary Residents may be considered for a fixed term contract for the length of their visa, depending on the requirements of the hiring area and the position.
A Talent Pool (valid for 18 months) may be created for future ongoing and temporary roles.