Principal Cyber Security Analyst

Queensland Corrective Services (Organisation site )
Corp - Digital Services and Information Technology Communications;
Digital Services and Technology;
Statewide Operations;
Brisbane

The QCS cyber security team is responsible for protecting and securing QCS assets that are in scope of the agencies Information Security Management System (ISMS).

• Work within a hybrid cyber security operating model that includes both internal and external cyber security team members.
• Undertake cyber offence assurance activities that align with industry best practice. This will include undertaking system penetration testing of QCS assets, systems and networks after appropriate stakeholder consultation and approvals have been sought.
• Undertake cyber security incident response that aligns with industry best practice, including monitoring, investigating, containing, eradicating, recovering, documenting and reporting on security events and incidents.
• Undertake threat hunting based on actionable cyber threat intelligence.
• Lead the identification, management, and monitoring of cyber security threats, vulnerabilities, and risk.
• Develop and implement best practice cyber security controls and processes that comply with the legislative and regulatory environment in which QCS operates (e.G., IS18, ISO/IEC 27001, ASD Essential Eight Strategies to Mitigate Cyber Security Incidents, ASD Information Security Manual (ISM).
• Manage and maintain QCS cyber security infrastructure and services including departmental firewalls, antivirus, internet proxy servers, email gateways, intrusion prevention systems, SIEM (splunk/sentinel), cloud security, vulnerability threat management, and DMZ environments.
• Undertake technical information security threat and risk assessments and threat modelling as required.
• Contribute to the development, maintenance, and implementation of cyber security policies and practices within QCS.
• Oversee and conduct cyber security investigations while working with key stakeholders such as the ethical standards unit.
• Provide leadership and mentoring to a team of cyber security professionals.
• Perform other duties as required.

This position may be required to perform oncall duties for cyber security incident response purposes.

Applications to remain current for 12 months.

Job Ad Reference:
QLD/574720/24

Closing Date:
Friday, 12th July 2024

Further information

We are committed to building inclusive cultures in the Queensland public sector that respect and promote human rights and diversity .

Please ensure you download all attachments and follow the instructions on how to apply.

Documents

Before applying for this vacancy please ensure you read the documents below.

• Keyword
  Please use for wildcard searches.
• Search exact phrase
  Check to search for the exact phrase. Uncheck to return jobs that contain any of the keywords.
• Location
  Hold down the control (Ctrl) button and use your computer mouse to select multiple options
• Occupational group
  Hold down the control (Ctrl) button and use your computer mouse to select multiple options

Salary (yearly) Leave blank if you are searching for casual jobs

• Minimum
• Maximum

Total Remuneration Only used for Senior Medical or Executive positions

We are committed to building inclusive cultures in the Queensland public sector that respect and promote human rights and diversity, including making any reasonable adjustments to support you through the recruitment process.