• Permanent position based in Sydney, NSW
• Full time - 38 hours per week

About Red Cross

Australian Red Cross is part of the world's largest humanitarian movements seeking to build a better society based on people helping people. Our vision is human dignity, peace, safety, and well-being for all.

About the role

The Information Security Analyst will plan, coordinate and perform regular security reviews/assessments of the enterprise IT systems/applications and continually monitor security events, triage security alerts, coordinate response actions, respond to security incidents and documenting incident reports.

The Information Security Analyst will perform third-party service provider/service risk assessments using ISO27001 based framework, follow-up on risk mitigation actions and maintain up-to-date records of third-party risks. The Information Security Analyst will coordinate security assessments and IT audits performed by third-party security specialists/auditors; review and agree on findings as well as conclude assessment reports; and coordinate and tracking the closure of vulnerabilities/security risks with internal and external stakeholders. The Information Security Analyst will also maintain effective operations of Information Security tools and solutions including periodic internal/external vulnerability scans, conduct friendly phishing campaigns, monitor end-point security and proxy/web content filtering, and cloud security and compliance monitoring.

The Information Security Analyst will also formulate Information Security standards, procedures, technical baselines/guidelines and facilitate their enforcement/ adoption. The Information Security Analyst will maintain up-to-date security operations manuals, registers, records, and management reporting.

What you will bring

• Strong analytical and technical information security/ cybersecurity skills;
• Extensive experience in performing security assessments, security monitoring, incident triaging and analysis and response;
• Good understanding of ISO27001/ ISO27002/ ISM and Essential 8 information security controls;
• Good understating of secure IT system configurations, application security concepts and secure development practices;
• Experience in security information and event management (SIEM) and Security Operations Centre (SOC) operations;
• Degree qualified or significant experience in Information Security with one or more information security certifications.

Why Red Cross

Work for purpose and know that your work helps keep our people and the communities we work with safe. 

You can access flexible working arrangements and generous salary packaging options that can increase your take home pay by paying certain expenses using pre-tax dollars up to $15,900 a year.

Further information

To find out more about this opportunity, please refer to the position description below or contact Sumedha Wijeratne on 02 8651 8819 for a confidential discussion.

Position description:  PD - Information Security Analyst .pdf