About us The Department of Government Services (DGS) was established on 1 January 2023 to improve everyone's experience of doing business and interacting with the Victorian government. We bring important day-to-day services together in one department to make things easy and seamless for Victorians and businesses. We are doing this by connecting and digitising our systems and platforms across state and local government as well as streamlining our corporate and procurement services. About the role The Senior Cyber Incident Response Analyst supports the investigation and remediation of significant cyber security incidents affecting the Victorian Government. The position supports the provision of sound advice and guidance on the investigation, containment, eradication and remediation of cyber security incidents. The position participates in an on‑call roster and requires the ability to perform intermittent after-hours work. The role leads the diagnosis, governance and technical response of cyber incidents that affect the Victorian public sector, providing stakeholders with high-quality advice to identify, contain, eradicate and remediate cyber incidents and threats impacting the Victorian Government. The function manages tasks across Cyber Incident Response Service (CIRS) and provides mentorship and coaching across the team. It also supports and Manager and Senior Manager to deliver a sustainable, high-performing service, including the provision of reporting and expert advice to senior executives and key stakeholders. The position requires strong initiative, professional drive and integrity - including the ability to manage competing deadlines during periods of heightened operational tempo. About you To be considered for the role, you must be able to demonstrate: * Demonstrated technical understanding of ICT networks and cyber threats. * Demonstrated experience in leading or coordinating technical investigations into potential suspected or confirmed cyber security incidents, including containment, eradication, investigation and remediation activities. * Facilitiate incident response engagements and assess technical information to develop key messaging to support responses. * Demonstrated oral and written ability to translate technical concepts into ‘plain English' to inform a range of stakeholders and decision-making requirements. * Demonstrated report writing and briefing skills. * Demonstrated ability to initiate, develop and maintain productive working relationships with stakeholders at all levels of government and private industry and negotiate positive outcomes in a dynamic operational environment while managing competing stakeholder needs and priorities. * Proven ability to identify and initiate activities that support continious improvement of work plans, policies and procedures including advising management on operational collaborations and contributions toward strategic planning. * Demonstrated ability to lead teams and manage tasks associated with cyber security incidents across various teams for incident response and hunt operations, including setting priorities and engaging with stakeholders Mandatory requirements * The successful applicant must be an Australian citizen or eligible for Australian citizenship and will be required to attain and maintain a Negative Vetting 2 Security Clearance. Desired requirements * Participation in an on-call roster and the ability to perform intermittent after-hours work in response to incidents or emergencies. Key Accountabilities * Lead investigations into cyber security incidents to support successful response activities, in partnership with government and private industry stakeholders. * Initiate and support whole-of-government coordination functions to achieve timely and effective responses to cyber security incidents affecting Victorian Government organisations. * Advise stakeholders on effective risk mitigation and incident response strategies to minimise harm to the Victorian Government. * Contribute to the continuous improvement of team plans, policies and procedures relating to cyber risk intelligence and incident response functions. * Support DGS in performing its emergency management functions as the Control Agency for cyber security emergencies in Victoria—including performing various roles under the AIIMS Incident Management System. * Participate in an on-call roster and undertake intermittent after hours work in relation to cyber security incidents or emergencies. * Other duties as required to support the service catalogue and programs of work for the Victorian Government Cyber Incident Response Service and the Cyber Security, Data and Digital Resilience Division. For specific responsibilities please review the attached position description. This position is only open to applicants with relevant rights to work in Australia. How to apply Apply before the advertised closing date 11:59pm on 18th May 2025. All applications should include: * a resume; and * a cover letter which addresses the key selection criteria (within three pages) Other relevant information The department is committed to providing and maintaining a working environment which is safe and without risk to the health of its employees and clients and consistent with the department's obligations under the Occupational Health and Safety Act 2004 (OH&S Act), to support this DGS has a COVID-19 Vaccination policy which strongly recommends all DGS employees be fully vaccinated. Preferred candidates will be required to complete a Pre-employment Declaration and Consent Form. Employment of successful candidates will be subject to a National Police Check. DGS actively promotes diversity, inclusion and an equal opportunity workplace. We welcome applicants from all diverse backgrounds, including people with disabilities and Aboriginal and Torres Strait Islander peoples. All roles at DGS can be worked flexibly, however it may differ from role to role.