Cyber Security Administrator

As a Cyber Security Administrator, you will play a critical role in safeguarding the organisation's IT infrastructure and information assets by implementing, monitoring and maintaining robust security measures. You will be responsible for ensuring the security integrity, confidentiality and availability of information systems, identifying vulnerabilities, and collaborating with external security teams in responding to security incidents. Your expertise will help protect sensitive data, mitigate cyber threats and ensure compliance with industry standards and regulatory requirements. Collaboration with IT teams, proactive threat detection, and continuous improvement of the organisation's security posture will be key aspects of your role.

• Network and Systems Security Monitoring: Collaborate with external security teams to regularly assess and monitor traffic for suspicious activity and potential threats.
• SASE, Firewall and Security System Administration: Configure, administer and optimise from security perspective SASE product suite (SWG, ZTNA, CASB), firewalls, intrusion detection/prevention systems (IDS/IPS), and other security systems to ensure continuous improvement on cyber security posture.
• Policies and Procedures Enhancement: Collaborate with external security teams to develop, improve and enforce security policies and procedures.
• User Access Control and Identity Management: Control user access to network, private resources and external sites by utilising SASE, ensuring that permissions are granted appropriately. Perform regular identity audits to ensure compliance with access control policies.
• Incident Response & Threat Mitigation: Collaborate with external security teams to execute incident response procedures to promptly respond to and mitigate security incidents. Document findings and provide recommendations to improve security controls.
• Vulnerability Assessments & Security Audits: Conduct regular security audits, vulnerability scans and coordinate external penetration tests to identify security weaknesses in systems, networks, and applications. Collaborate with system administrators and stakeholders to remediate vulnerabilities and maintain a secure environment.
• Security Policy & Compliance Enforcement: Ensure adherence to security policies, industry standards (e.g., ISO 27001, NIST, CIS, APRA 234), and regulatory requirements through audits and documentation.
• Disaster Recovery & Business Continuity Planning: Contribute to the development and testing of disaster recovery plans to ensure rapid restoration of services during cyber incidents.
• Threat Intelligence: Stay up-to-date with the latest cybersecurity threats, vulnerabilities, and attack vectors. Leverage threat intelligence sources to identify emerging threats and proactively adjust security controls and procedures accordingly.
• Collaboration and Communication: Collaborate with IT teams, management and external stakeholders to report security risks, trends and improvement initiatives.

• Relevant tertiary qualification(s) in IT and/or equivalent relevant industry knowledge and experience
• Previous experience in network administration with strong proficiency with network security tools and technologies such as SASE, SWG, CASB, firewalls, VPNs and IDS/IPS.
• Knowledge of, and experience with vulnerability management tools such as Tenable, Rapid7, Qualys or equivalent.
• Knowledge of, and experience with EDR tools such as MS Defender, Crowdstrike or equivalent
• Knowledge of, and experience with operating CSPM solutions in cloud platforms such as MS Azure, AWS or GCP
• Familiarity with common security frameworks (e.g., NIST Cybersecurity Framework, ISO27001)
• Strong analytical and problem-solving skills
• Attention to detail and a methodical approach to tasks
• Excellent written and verbal communication skills
• Relevant certifications such as Security+, CISSP, or GCIH are highly desirable.

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Outsourcing and Offshoring Consulting