Senior Security Operations Analyst

Position Details Position Description : Senior Security Operations Analyst 1 / 6 Position title : Senior Security Operations Analyst - DTS Entity : Austroads Division : Data & Technology Job Type : Full-time (1.0 FTE) Location : Austroads Melbourne or Sydney Offices Reports to : Head of Information Security & Policy Responsible GM : Chief Data & Technology Officer Direct reports : N / A Date reviewed : September Organisational Context Austroads is the association of Australian and New Zealand transport agencies. We provide authoritative, practical and impartial advice, information, tools and services to help our members to deliver safe, efficient and reliable mobility to their customers. We also deliver value to a range of other key stakeholders across government, industry and communities, where there is a demonstrated societal benefit to do so. Austroads comprises several business activities, including the core Austroads work program, the National Exchange of Vehicle and Driver Information System (NEVDIS), and Transport Certification Australia (TCA). Our teams are located across Australia and New Zealand. We work in an integrated and collaborative, along with external consultancies and other partners, to ensure our products and services are delivered successfully and maximise value. Austroads promotes a culture of professionalism, innovation, and integrity, with a commitment to accountability, quality, and excellence in the delivery of all of our programs and services. Austroads values continuous improvement, and all staff are expected to engage in their work in a spirit of curiosity, collaboration, and proactivity. We recognise the unique skills and abilities of each individual, who come from a wide range of disciplines and backgrounds. We support our people through ongoing development and learning opportunities and create a supportive team environment for all our staff. We strive to be an employer of choice. Austroads takes inclusion and diversity seriously. We embrace difference and diversity of identity, experience and thought, and actively strive for inclusive behaviours across our company and our work. Position Description Position Description : Senior Security Operations Analyst 2 / 6 The Role Team Purpose The Data and Technology team focuses on harnessing the power of data and technology to support our member organisations to deliver improved outcomes for roads and transport users. Our mission is to enable data-driven decision-making, enhance operational efficiency, and create value for our stakeholders. We do this through the proactive development and implementation of contemporary D&T standards and systems. Here are some key points that encapsulate our purpose : Data Stewardship : We treat data as a valuable corporate asset. Our team aims to deliver its completeness, quality, security, and accessibility, allowing us to derive meaningful insights and drive informed actions. Technology Enablement : We leverage state-of-the-art technologies; and we use the best systems for the task. Our goal is to empower our organization with scalable, reliable, and agile solutions. Cross-Functional Collaboration : We collaborate closely with business units, ensuring alignment between data / technology strategies and organizational goals. By bridging the gap between technology and business, we drive holistic transformation. Innovation Hub : Our group serves as an innovation hub, constantly exploring emerging trends and experimenting with novel solutions. We foster a culture of curiosity, experimentation, and continuous learning. Remember, our Data and Technology team is not just about bits and bytes; it's about unlocking the full potential of data / technology to propel our organisation forward. This role will work very closely with the New Programs and Services team who oversees management and coordination of select significant implementation projects for Austroads, with a focus on the development and implementation of new products and services, in alignment with Austroads strategic objectives and the evolving needs of our members and key stakeholders. Position Purpose Implement all security related operational processes for assigned projects and transition them into steady-state operations post go-live. Ensure security monitoring, incident response, vulnerability management, and compliance activities are embedded and executed effectively across all vendors. The role will also manage Austroads' day-to-day security operations as required as part of the team. This role is responsible for executing and maintaining core security processes, monitoring and responding to threats, and ensuring compliance with organisational and system specific information security management systems. Major Responsibilities / Accountabilities The role is responsible for : Security Operations Design and Implementation for Projects Design and implement operational security models and processes during project delivery (monitoring, alerting, incident response, vulnerability management). Develop runbooks, SOPs, and escalation workflows for security operations across all solution vendors. Configure and Validate Security Tooling Configure and validate security tooling (SIEM, EDR, vulnerability scanners, CSPM) for new solutions including across solution vendors. Perform log onboarding, use-case development, and alert tuning for new solutions. Support project design and engineering teams to implement security specific tooling and controls. Ensure operational processes and controls are compliant with organisational and project policies and frameworks. Manage operational handover and acceptance criteria for go-live readiness. Run ongoing security operations for the solution post go-live, including monitoring, incident triage, and reporting. Maintain security metrics and dashboards for operational performance and risk posture. Assess and influence the security operations capabilities and processes for all third parties to ensure end to end cyber resilience. Support simulated testing of operational processes across all relevant third parties. Collaborate with security team, technology teams, SOC, vendors and project stakeholders to ensure effective security operational coverage. Security Monitoring and Incident Response Monitoring alerts from security tools including SIEM, endpoint protection, web filters, DLP, and cloud security consoles. Monitoring threat intelligence advisories for threats requiring investigation and response. Leading investigation and response to security incidents, escalating where necessary. Tuning and optimising alerting rules with the MSSP to improve detection accuracy and reduce false positives. Vulnerability Management Conducting regular vulnerability scans across infrastructure and cloud environments. Conducting threat hunting and proactively identify vulnerabilities or suspicious activity. Analysing findings, prioritising risks, and coordinating remediation with IT and business teams. Maintaining vulnerability tracking and reporting for governance and audit purposes. Technical Compliance and Assurance Validating technical controls against policies and standards considering project specific and organisation controls such as ISO and Essential Eight requirements. Performing configuration reviews and system hardening activities. Supporting internal and external audits by providing evidence and technical insights. Security Tooling and Operations Managing and maintaining security tools, platforms and vendors, ensuring they are operational and effective. Assisting in onboarding new tools and integrating them into existing workflows. Documenting operational procedures and maintaining runbooks for key security processes across vendors. Owning and executing daily, weekly, and monthly security tasks (e.g., log reviews, patch validation, access reviews). Supporting the Information Security Team Collaborating with technology and business teams to achieve information security outcomes. Contributing to continuous improvement, identifying ways to enhance value for our members and the public. Maintaining Quality Systems processes and procedures associated with the function. Other Duties Maintaining metrics and reporting for operational and governance forums. Provide appropriate backfill for other security resources as required. Other duties as directed. Key Stakeholder Interfaces Internal Chief Data & Technology Officer Head of Information Security & Policy Data & Technology team All staff External Austroads approved contractors and service providers Industry solutions providers The Person Qualifications, Knowledge, and Experience 5+ years of experience in security operations or a related cybersecurity role. Strong understanding of security technologies and operational processes. Strong experience with Microsoft and AWS cloud environments. Strong experience with SIEM, endpoint protection, identity and access management, privileged access management, vulnerability management, zero trust tools, firewalls and cloud security tools. Experience with frameworks such as MITRE ATT&CK and NIST. Familiar with ISO ACSC Essential Eight PSP ISM compliance requirements Excellent analytical, troubleshooting, and documentation skills. Desirable : Certifications such as CISSP, CISM, CompTIA Security+, GCIH or equivalent; AWS Certified Security – Speciality, Azure Security Engineer Associate, or similar.; Experience in a small or mid-sized organisation with broad responsibilities.; Good knowledge of Public Key Infrastructure, secure management of public keys, digital trust service, identity and access management services and developments in encryption technology including Quantum Resistant Encryption.; Ability to obtain Baseline / NV1 clearance (as applicable). Personal Qualities Excellent leadership, initiative, innovativeness and drive, and the ability to work independently to deadlines and within time constraints, to handle tasks with discretion, confidentiality, reliability and flexibility, and to set priorities. Demonstrated high level organisational and administrative ability. Highly developed interpersonal and communication skills, both oral and written, including the ability to deal tactfully and effectively with people at all levels. Comfortable working in a fast-paced environment. A service focused approach. Sound judgement and problem‑solving ability. Strong networking and teamworking skills. Strong attention to detail. Commitment to ongoing professional development and learning. Professional ethics and integrity. Comfort working in an environment which is constantly evolving. Capability Profile Resilience and Courage: Is open and honest, prepared to express views, and willing to accept and commit to change. Maintains a positive attitude in the face of challenging situations. Critical Thinking and Problem Solving: Objectively analyses and evaluates available data, points of view, needs of stakeholders and potential solutions before recommending relevant actions or decisions. Digital and Technology Proficiency: Integrates digital and technological developments in the design and delivery of relevant policies, programs and services. Drive Accountability and Outcomes: Is proactive and responsible for own actions to ensure desired organisational objectives are achieved. Communicating with Impact: Uses various communication media to convey information, ideas, and insights in ways that maximises understanding of key messages. Possesses good written and verbal communication skills. (Intermediate) Working Collaboratively: Collaborates with others, demonstrating an understanding of their value to the organisation. (Intermediate) Influence / Negotiate / Persuade: Gains consensus and commitment from others to promote the organisation's agenda and plans. Works proactively to anticipate and resolve issues and conflicts. (Intermediate) #J-18808-Ljbffr