The Opportunity The Security Analyst is responsible for providing technical security advice and support to ensure the confidentiality, integrity and availability of VicGrid's information, devices, technology and infrastructure, protecting VicGrid from emerging cyber threats. The role will also help administer and improve VicGrid's information and cyber security solutions by creating and updating policies and processes in alignment with ACSC Information Security Manual (ISM), Victorian Protective Data Security Framework (VPDSF) and other related security-by-design frameworks. If this sounds like a program you want to be a part of, keep reading to find out some the things you will be responsible for delivering and some of the skills and experience you will bring with you. You can also refer to the Position Description for more information. What you will deliver Provide governance, risk, and compliance support by conducting security assessments such as user access reviews, third-party risk and other required assessments. Maintain cybersecurity registers including risk registers, and assist is developing and updating policies, standards, and procedures aligned to VPDSF, ACSC ISM, Essential Eight, ISO 27001, and Victorian Government requirements. Support audit activities, external assessments, and internal compliance reviews. Provide technical security advice and monitor, detect, and respond to security vulnerabilities, incidents, and threats, ensuring timely triage, containment, remediation, and post-incident reviews. Produce clear reports, dashboards, and metrics for management and governance bodies, applying advanced data analysis skills. What you will bring Demonstrated experience operating in a governance, risk and compliance (GRC) role within a public sector or similarly highly regulated environment. Proven capability to monitor, assess and respond to cybersecurity threats, vulnerabilities and incidents across medium to large enterprise environments, including cloud, application and network domains. Strong working knowledge of Victorian Government and national cybersecurity frameworks and obligations, including ACSC ISM, VPDSF, Essential Eight and ISO/IEC 27001. Well-developed analytical and reporting skills, including advanced Excel capability (e.g. pivot tables, lookups and dashboards) to support risk reporting and decision-making. If you think you have transferable skills, an appetite to learn and would be a great fit, we'd love to hear from you. What we offer you We are committed to creating a workplace that inspires and engages you. Joining our new organisation as it establishes its footprint empowers and provides you with the opportunity to influence and shape our culture Other relevant information: Preferred candidates will be required to undertake pre-employment screening, including a Declaration and Consent form and a National Police Check. To be eligible for appointment to this role, applicants must be an Australian/New Zealand citizen or a Australian Permanent Resident. How to Apply This is an ongoing role. The work location for this position is 2 Lonsdale Street, Melbourne. Hybrid work arrangements available. To be considered for this position, applicants are encouraged to submit a resume and cover letter summarising their skills and relevant experience. Applications close at 11:59pm on Friday 27 th February 2026.