Cloud Security Incident Response Senior Analyst

Overview Incident Response Cloud Security Senior Analyst You are a problem solver with experience in cloud security, specialising across AWS and Azure services and solutions. We are one of the largest Cyber Security teams in the southern hemisphere. Together we will build tomorrow’s bank today, using world-leading engineering, technology, and innovation. Your business The Technology division delivers the Group’s information technology and banking operations functions to ensure the highest levels of customer service through world-class process excellence and technology innovation. Cyber Security protects the bank and our customers from theft, losses and risk events, through effective and proactive management of cyber security, privacy and operational risk. Your new team The Incident Response Cloud and Emerging Security Team is responsible for managing and analysing security incidents that involve AWS and Azure environments. The team conducts detailed investigations and provides analysis on incident response to identify root causes and reduce risk. It works to improve cloud cyber hygiene by strengthening security controls and implementing best practices. The team also supports the Group’s incident response processes to ensure that security events are handled quickly and effectively. In addition, the team drives proactive security by performing cyber defensive assessments on emerging security technology and trends. The team is committed to protecting the organisation’s cloud platforms and enabling secure and resilient operations. Your Impact and Contribution The Incident Response Cloud and Emerging Security Team is part of the wider Cyber Defence Operations (CDO) function and works closely with all cyber teams. The team collaborates with stakeholders responsible for cloud enablement, engineering, and security, which manage the Group’s cloud environments. As a Senior Analyst specialising in Incident Response for Cloud and Emerging Security, your expertise will play a pivotal role in shaping solutions, services, and initiatives within cloud environments and on prem. In this role, you will act as the technical subject matter expert (SME) for cloud and emerging security and serve as the primary escalation point for complex issues. You will draw on your expertise in one or more of the following areas: incident response, AWS or Azure environments, cloud security control effectiveness, host analysis, network forensics, malware analysis, threat intelligence, and system administration. You will also Use cyber security tools to gather information and perform investigations within the Group’s public cloud environment. Determine best practice approaches for monitoring, undertaking incident response, and managing cyber control hygiene in the cloud. Document appropriate ways to detect, prevent, and isolate suspicious activity in the cloud. Assist the CDO team with any incident response and remediation activities related to cloud workloads. Review security controls in affected cloud environment(s) to identify gaps and provide input into post incident reporting. Assist the cloud engineering team with ongoing reviews/uplift of the security posture in the public cloud environment. Research and evaluate emerging security technologies and trends, recommending implementations to enhance our security posture. Stay informed about the latest cybersecurity threats and vulnerabilities, and provide tactical and strategic recommendations to mitigate risks. We are interested in people who We’re seeking a cybersecurity professional with experience in Incident Response, ideally within cloud-native or hybrid environments, to lead and mature our response capabilities. This role blends strategic oversight, incident response and cloud security expertise, driving continuous improvement in how we detect, respond to, and recover from cyber threats. You will bring Minimum of 3-5 years of experience in cybersecurity, with a focus in Incident Response or Cloud Security. Bachelor’s degree in information technology, cybersecurity, or a related field is preferred. Professional certifications such as CISSP, information security, information technology, risk management or equivalent discipline is highly desirable. Proven experience in cyber security across cloud environments is essential. Cloud Security certifications are desirable. Demonstrated ability to conduct cyber assessments, document findings clearly and accurately, and communicate insights effectively to stakeholders at all levels. Acts as a key review point for analysts, providing guidance and quality assurance on deliverables. If this role is of interest to you, please apply directly or reach out to have a confidential discussion in more detail. If you are part of the Commonwealth Bank Group (including Bankwest, x15ventures), please apply through Sidekick to submit a valid application. We’re keen to support you with the next step in your career. We’re aware of some accessibility issues on this site, particularly for screen reader users. If you require additional support please contact HR Direct on . #J-18808-Ljbffr