The Internal Services and Cyber Branch (ISCB) provides the core digital, infrastructure and cyber security capabilities that enable the Department of Finance to operate securely, reliably and at scale. The Branch underpins day?to?day business operations by delivering and sustaining enterprise ICT services, safeguarding critical systems and information, and ensuring staff have trusted, modern tools to perform their roles effectively.
The Cyber Security team forms a part of ISCB and is the Finance central point of contact for cyber advice, governance, incident management and cyber security operations.
The purpose of the team is to support defence of the Department's data and assets from both internal and external threats. This is achieved through strong governance, robust monitoring and considered advice provided across the department.
These roles support the security operations team, with a focus on log monitoring, alert investigation, threat intel & vulnerability management.
The key duties of the position include:
These positions represent an opportunity for the successful candidates to demonstrate and develop a wide range of skills to protect, detect, and respond to cyber security threats. The successful candidate will act as a member of the cyber security team with exposure to the operational, governance, risk and compliance functions. The successful candidate will support senior team members and the Finance IT Security Adviser (ITSA) to develop, implement, operate, and improve Finance’s ICT Security capability.
You will have the opportunity to enrol in learning and training pathways, leading to recognised certifications and qualifications in Cyber Security domains.
We seek team-oriented candidates with technical and organisational skills and adaptability to work in a small dynamic team.
Under supervision and guidance, the APS 5 Cyber Security Analyst is responsible for the following deliverables.
• assist system managers to identify security risks and recommend appropriate treatments through established governance processes
• liaise with internal and external stakeholders on cyber security related practices and issues
• conduct research and provide analysis to assist the development and provision of advice on current trends, vulnerabilities and threats within cyber security
• leverage available toolsets to assist with security testing and vulnerability identification of ICT systems
• leverage available toolsets to assist with the detection, containment, investigation and remediation of security incidents
• assist the ITSA to improve the overall security posture of Finance by increasing the efficiency of cyber security core functions
• assist with the development and maintenance of departmental IT security policies, standards and plans
• assist with the production, review and distribution of periodic and ad-hoc reporting associated with team activities
• Undertake additional cyber related activities as directed
Under limited supervision and guidance, the APS 6 Senior Cyber Security Analyst is responsible for the following deliverables:
• assist system managers to identify security risks and recommend appropriate treatments through established governance processes
• liaise with internal and external stakeholders on cyber security related practices and issues
• development and provision of advice on current trends, vulnerabilities and threats within cyber security
• leverage available toolsets to assist with security testing and vulnerability identification of ICT systems
• leverage available toolsets to lead the detection, containment, investigation and remediation of security incidents
• assist the ITSA to improve the overall security posture of Finance by increasing the efficiency of cyber security core functions
• assist with the development and maintenance of departmental IT security policies, standards and plans
• produce, review and distribute periodic and ad-hoc reporting associated with team activities
• Support the development of junior analysts, and maintain a high standard in your own work
• Undertake additional cyber related activities as directed.
Skills and experience in Splunk, Tenable, or Microsoft Defender is highly desirable. Candidates should be able to demonstrate a continuous learning mindset, and be proactive in their work.
Eligibility
ELIGIBILITY ADVICE & CANDIDATE NOTES
* Under section 22(8) of the Public Service Act 1999, employees must be Australian citizens to be employed in the Australian Public Service (APS) unless the Agency Head has agreed otherwise, in writing.
* Successful applicants will be required to undergo the process to obtain and maintain, or continue to hold the required security clearance level for the role as indicated in the downloadable job pack. All Finance staff are required to have a minimum baseline security clearance prior to commencement.
* This role is being advertised as both ongoing and non-ongoing. Roles may be offered as either ongoing or non-ongoing subject to operational requirements. Where a non-ongoing position is offered, the role will be filled for a specified term of up to 12 months. Specified term vacancies may be extended up to a maximum period of 18 months.
* We encourage and welcome applications from Aboriginal and Torres Strait Islander peoples, people with Disability, LGBTQI+ people, people from culturally and linguistically diverse backgrounds and mature aged people.
Finance welcomes applications from public and private sector candidates who can demonstrate the skills and expertise, or experience required to contribute to maintaining the Department’s Cyber Security program.
• experience in using toolsets such as vulnerability assessment, logging and monitoring systems.
• experience leading or participating in Cyber Security Incident Response teams
• ability to research and analyse current trends, vulnerabilities and threats within cyber security
• excellent written and oral communication skills
• familiarity with government guidelines and frameworks relevant to the ICT security domain
• industry-specific certifications or qualifications or a tertiary degree in cyber security will be highly regarded.
• highly motivated and eager to learn new skills and technologies
• be resilient and able to effectively work in a fast-paced dynamic environment that routinely receives high priority and short-notice tasks
• personal drive, integrity, and commitment to the APS Values and Code of Conduct and ongoing self-development
Getting to know the Department of Finance
As a central agency of the Australian Government, the Department of Finance (Finance) plays an important role in assisting government across a wide range of policy areas to ensure its outcomes are met. Finance supports the government's ongoing priorities through the Budget process and fosters leading practice through the public sector resource management, governance and accountability frameworks. Finance plays a leading role in advising the government on many of its strategic priorities. We do this through our professional and considered approach to providing advice, developing policy, delivering services and engaging with our clients and stakeholders. Finance's key areas of focus are: - Budget - Business Enabling Services - Commercial - Governance and Resource Management