Posted: 22/01/2025
Closing Date: 05/02/2025
Job Type: Permanent - Full Time
Location: Head Office - Collingwood
Job Category: Banking and Financial Services
Do you want to be part of using the business of banking as a force for good? Do you want to create positive impact for people and the planet? Bank Australia is the bank for people who want to be part of a movement creating a fairer and more just world.
We're growing fast as more people choose to align their banking with their values. We're a customer owned, B Corp certified bank. We empower our staff and 185,000+ customers to be part of the clean money movement.
We currently have a permanent, full time opportunity for an Information Security Analyst to join our Information Security team and contribute towards the establishment and maintenance of a well-structured and mature cyber security environment.
The Information Security Analyst will be responsible for detection, prevention, responding to and triaging of information security incidents. In addition you will play a key role in the team in building our information security situational awareness.
**Why join us**
- We have big plans to become Australia's most trusted bank and a leading purpose-driven business
- As a certified B Corp, we're part of a global business community who meet the highest social and environmental standards, putting purpose over profit
- Every role and person in our bank is essential to bringing our values, purpose and aspiration to life
- We offer flexible working options, competitive salary and 13% super
- Our staff have access to a range of meaningful benefits to support their physical and mental wellbeing including 24/7 free counselling, free flu vaccinations and discounted gym memberships
- We also support staff with study assistance, paid parental leave (regardless of gender), volunteer, bereavement, gender affirmation and family violence leave; and the opportunity for bonus annual leave
- We support our staff to grow their careers through learning and development and an organisational culture where we reward and recognise innovation and values, not long hours
- We are committed to building an inclusive culture and a diverse workforce that reflects the Australian community
- We care for a conservation reserve - where we work with key partner organisations to protect threatened species and involve staff in conservation.
**What you will be doing**
- Perform day to day monitoring, analysis, response and triaging of security alerts and incidents
- Support vulnerability management and penetration testing processes
- Support information security threat intelligence and threat hunt capability
- Keep up to date with trends in information security and ensure appropriate controls are in place to protect Bank Australia from security threats
- Support testing and verifying security controls across both internal systems and systems managed by third parties
- Provide input into regular security reporting including security control status and trends in adversary behaviours
- Contribute to the deployment, maintenance and continuous improvement of Bank Australia's information security capability
- Create and maintain security operational documentation
- Ensure continuous validation and uplift of incident response plans and play books
- Contribute a strong security voice to the business across various security domains including information security monitoring and threat prevention
- Ensure continuous compliance with policies, standards and best practice.
**What you will bring**
- 3-5 years' experience as an information security analyst or similar role
- One or more relevant cyber security certifications
- Understanding of current cyber security threat trends and how to protect and defend against such threats
- Knowledge of and experience with core infrastructure technologies, such as (but not limited to) workstation and server platforms, networking and cloud services including best practice and related standards
- Knowledge and understanding of authentication and authorisation technology
- Exposure and understanding of security frameworks and standards including APRA CPS 234, NIST Cyber Security Framework, ISO27001, PCI DSS, ASD Essential
- An understanding of security technologies used to detect, contain or prevent security incidents such as IDS/IPS, Endpoint Security, Firewalls, Content Inspection and SIEM
- Strong communications skills (interpersonal, verbal and written) and ability to share knowledge and educate others
- Conceptual, problem solving and analytics skills, with a high attention to detail
- Relevant tertiary qualification or progress towards attaining a relevant qualification will be highly regarded
- Familiarity with the banking industry is a bonus
- Commitment to Bank Australia's purpose, aspiration, values and brand as well as the B Corp ethos.