Senior Cyber Security Analyst Clerk Grade 9/10, base salary ranging from $129,464 - $142,665 super Full time temporary to 8 March 2028 Located at Haymarket, Sydney (Hybrid Working) The Team and the Role The Data Analytics Centre (DAC) exists to lead a whole-of-government approach to data analytics, to tackle some of the State’s most difficult policy challenges. This is a unique and strategically important role that combines hands‑on Azure cyber security engineering with governance, risk, and compliance responsibilities, including alignment with ISO 27001 and broader organisational risk management practices. The role goes beyond traditional security operations or advisory functions. It requires a practitioner who can both design and implement security controls directly within the Azure environment and lead risk‑based security decision‑making, ensuring that technical controls are aligned with organisational risk appetite, regulatory requirements, and industry standards. Key Focus Areas - This is a hands‑on role combining: Azure cloud security engineering and secure configuration Governance, risk, and compliance activities, including ISO 27001 alignment Vulnerability management and patch management across cloud workloads Identity and access management and identity protection Security incident response and investigation Security uplift and continuous improvement initiatives The role requires strong hands‑on capability across Azure security services, identity protection, security monitoring, vulnerability and patch management, and incident response, along with the ability to work closely with Architecture, Engineering, DevOps, and Risk teams to uplift the organisation’s Azure cyber security posture. The successful candidate will be expected to implement security controls and make configuration changes directly in Azure to remediate risk. Your key accountabilities include: Security Engineering Own and operate the end‑to‑end vulnerability management process, including scanning, risk‑based prioritisation, patching, remediation within agreed service levels, and reporting Use vulnerability management tools such as Microsoft Defender and Qualys to identify and manage security risks Implement and manage patching across Azure Virtual Machines and Azure Virtual Desktop environments Apply secure configurations across Azure infrastructure and platform services (IaaS and PaaS) Design and maintain secure Azure architectures aligned to Zero Trust principles Strengthen and govern identity and access management across the Azure environment using Entra ID, including role‑based access control, least‑privilege access, and automated provisioning and deprovisioning Support and enhance network security controls such as Network Security Groups, Azure Firewall, Private Endpoints, and Web Application Firewall Governance, Risk and Compliance Support alignment with ISO 27001, the Essential Eight, NSW Cyber Security Policy, and other relevant standards Conduct security and risk assessments and provide practical, actionable remediation advice Track and support remediation of audit findings and identified security gaps Lead or support root cause analysis for incidents, outages and major performance issues About you To be successful, you will demonstrate: Proven experience in vulnerability remediation and patch management across Azure Virtual Machines and Azure Virtual Desktop Strong hands‑on experience securing Azure environments, including identity and access management using Entra ID, and security monitoring with Microsoft Sentinel and KQL Practical experience with endpoint detection and response and vulnerability management tools such as CrowdStrike and Qualys Experience automating security and infrastructure changes using PowerShell, Bicep, Azure CLI, or Python Strong working knowledge of ISO 27001, NIST, the Essential Eight, and the Protective Security Policy Framework, with experience applying these standards in practice Experience supporting or managing ISO 27001 audit activities, including remediation tracking and evidence management Ability to translate risk and compliance requirements into practical technical controls within Azure environments Knowledge of DevSecOps practices and securing Infrastructure‑as‑Code and delivery pipelines Experience working across Windows, Linux, cloud, and server environments Communication & Leadership Strong written and verbal communication skills. Ability to brief senior stakeholders clearly and confidently. Experience leading projects or coordinating multi-team initiatives. Ability to operate effectively in fast-paced, evolving environments. Certification ISO 27001 Lead Implementer/Auditor certification Microsoft Certified: Azure Security Engineer Associate (AZ-500) Experience with OT / ICS / IACS security frameworks Essential Requirements: The successful applicant must have, or be able to attain and maintain, a baseline security clearance as a condition of employment. Why Join DAC? Work on high-impact government data platforms. Lead meaningful security uplift initiatives. Join a specialised team driving whole-of-government analytics capability. Flexible hybrid working environment. For any questions about the role Contact Rodrigo Sandoval, Advisor Talent Acquisition at rodrigo.sandoval@customerservice.nsw.gov.au How to Apply! Please submit your application for the role Only via www.iworkfor.nsw.gov.au Click the ‘Apply Online’ button on the advertisement. Accept the redirection to NSW connect and to the Department of Customer Service career page then click on the ‘Apply Now’ button to then complete your application process. Please note direct applications will not be accepted via email Your application should include a cover letter of no more than 2 pages, and an up-to-date resume of no more than five pages which clearly details your skills and experience as relevant to this role. There are no selection criteria to be addressed. Please note a talent pool may be created for future ongoing and temporary opportunities valid for 18 months Salary Grade 9/10, with the base salary for this role starting at $129,464 base plus superannuation Click Here to access the Role Description. For enquiries relating to recruitment please contact Rodrigo Sandoval via rodrigo.sandoval@customerservice.nsw.gov.au. Visit the Capability Application Tool to prepare for the recruitment process by accessing practice application and interview questions based on the focus capabilities listed in the role description. Closing Date: Thursday, May 14th, 2026 at 10:00 am Careers at Department of Customer Service A career at the Department of Customer Service (DCS) gives you the opportunity to help improve government services and be part of reform that benefits people across NSW. We are focused on delivering excellent customer service, digital transformation, and regulatory reform. Come join us and influence the future of our great state. Belong in our diverse and inclusive workplace The strength of our workforce lies in its diversity and embracing difference, while the key to our success is leveraging the contributions of employees with different backgrounds and perspectives. You can view our full diversity and inclusion statement here. We want you to bring your best self to this application process. If you have any support or access needs that may require adjustments to allow you to fully participate in this selection process (including an alternate format of the application form) please contact rodrigo.sandoval@customerservice.nsw.gov.au or 02 9494 8351. For more information, please visit Information on some of the different types of disabilities Information on adjustments available for the recruitment process