Careers at Children's Cancer Institute
Cyber Security Analyst

Location:
Randwick - Sydney, Australia  
Employment Type:
Full-Time Fixed Term  
Department:
Technology Services Group1 (TSG1)
Supporting Documentation:

 

  • Innovative, collaborative and positive team-orientated environment
  • Modern, world-class facilities
  • Convenient Randwick location, close to transport
  • Flexible working options
  • 12 month full time fixed term contract – possibility for extension

The Children’s Cancer Institute is embarking on an ambitious 5-year strategic plan with technology underpinning many of the strategic initiatives.  As the Institute grows and the pace of innovation in both our Research and Operations continues to grow, we have recognised the need for a dedicated Cyber Security Analyst to help manage and maintain all security across the institutes internal programs, systems, and processes in addition to the products and solutions that are provided to our staff. The increase in these areas has been driven by our Zero Childhood Cancer program and the implementation of a new Computational Biology program at the Institute in 2018 which further increased the need to monitor and secure our network and services from all threats and vulnerabilities in our environment.

The role of the Cyber Security Analyst is to ensure the secure operation and monitoring of the in-house computer systems, servers, and network connections. This includes day-to-day operations of the in-place Security solutions, identification, investigation and resolution of Security incidents and breaches detected by those systems, checking server and firewall logs and scrutinising network traffic. The CSA will also analyse and resolve Security tickets and vulnerability issues in a timely and accurate fashion and conduct user activity audits where required.

 

Responsibilities will include, but are not limited to:

  • Act as the Subject Matter Expert (SME) on cybersecurity and to ensure relevant stakeholders are provided with relevant, accurate and current information on cybersecurity.
  • Undertake Cyber Security threat and vulnerability identification and assessments to identify potential cybersecurity weaknesses and recommend appropriate responses to ensure the institutes assets are protected.
  • Work with the ICT Manager and CIO to develop, implement, and maintain an Operational Technology Cybersecurity assurance program to ensure the Institute assets are protected.
  • Support the management of the Information Security Management System and Cyber Security Management Systems to ensure they meet international standards and the Institute’s Cyber Security Policy 2019.
  • Provide security assurance leadership to all Departments, as well as vendors, to ensure compliance with applicable cybersecurity policies, standards, legislative and regulatory obligations.
  • Manage and control self-assessments and vendor security assessments to ensure effective cybersecurity risk management is in place.
  • Provide regular and ad hoc analysis and reports on departmental team’s status of cybersecurity performance, potential threats, and issues to ensure management have relevant data to make informed business and resourcing decisions.
  • Working with the ICT Manager and CIO to implement, manage and monitor the rollout of the Institute wide Cyber Security training program and ensure effective reporting is in place.

 

Qualifications, experience and skills required:

  • 3+ years working in Cyber Security field
  • Intermediate skills in SIEM operation as an analyst
  • Running queries to follow a chain of events through multiple indexes or other sources.
  • Broad hands-on knowledge of firewalls, intrusion detection/prevention systems, anti-virus software, data encryption, and other industry-standard techniques and practices.
  • In-depth technical knowledge of network and operating systems.
  • Understanding common protocols such as TCP, UDP, IPSec, HTTP, SSL, TLS, and DNS.
  • Identify threats and work to create steps to defend against them.
  • Perform Vulnerability Scans across all network segments and Web Services.
  • Monitor network traffic for suspicious behaviour.
  • Analyse current Security requirements and make suggestions for improvements.
  • Conduct Security audits and make policy recommendations.
  • Proven analytical and problem-solving abilities.
  • Intuition and keen instincts to pre-empt attacks.

 

This is an excellent opportunity to work in an inspiring workplace. You'll be rewarded with a friendly and professional flexible work environment, comprehensive on-campus facilities, competitive salary, salary packaging options, access to a leading EAP program and regular social activities. Join a group of dedicated people in a performance-driven environment to achieve success and discover what it's like to look forward to coming to work every day and make a real difference. We're looking for people who share our values of accountability, integrity and camaraderie, teamwork, sharing and excellence, success and satisfaction.

A detailed job description and additional information about Children's Cancer Institute can be found on our website at: https://www.ccia.org.au/careers-study . We embrace diversity and encourage applications from people from diverse backgrounds and cultures.

To apply, please click the 'APPLY' link and forward both your resume AND cover letter (mandatory) clearly addressing the qualifications, experience and skills required.

Note: Applications will be reviewed prior to the closing date; which is dependent on the status of the recruitment process. Only successfully shortlisted candidates will be contacted directly.