Description:
The purpose of the Cyber Security Engineer role is to design, implement, and support the day to day security management activities and data protection initiatives and operations, as per Intellihub’s security management program. The role will work closely with internal IT teams and vendors to ensure fit-for-purpose, risk-based approaches are taken, resulting in good security and business outcomes. This role is expected to monitor and manage critical security toolsets, strengthen and optimise security tools and policies to protect Intellihub from cyber threats.
- Promote a safe and healthy work environment and contribute to continual improvement in quality and performance at Intellihub by complying with all relevant policies and procedures
- Develop enterprise-wide best practices for Information and Cyber security, and work with key stakeholders and teams to ensure uniform and compliant implementation or maintenance of security standards
- Drive security review and gap analysis programs, identify risks and implement security controls per Intellihub security policies, relevant regulations, and good practice
- Analyse new technology programs, solution documents, network diagrams, or existing technical changes from a security and privacy, and risk management lens.
- Ability to engage confidently with technology and business, propose solutions and mechanisms to effectively manage IT and OT risks
- Effective implementation of security tools leveraging maximum capability and benefits
- Ensure continuous improvement activities are undertaken to optimise processes and reduce security incidents (through problem management, RCA etc.)
- Monitor and improve cyber security initiatives such as email security policies, vulnerability management, patch management, identity and access management, database, and application security.
- Implement security policy controls and related technology projects. Develop and conduct security due-diligence's, spot audits, risk assessments as per good practice and Intellihub policies
About You
- Tertiary Qualification in IT related discipline preferably IT Security/Cyber Security Major
- Broad understanding across key security domains including, IT audit processes, Security Incident Response and resolution, Email security policy advisory, Penetration Testing, vulnerability management
- Demonstrated experience with maintaining software and hardware in relation to security such as email security, vulnerability management and patch management, and end point protection software (including monitoring and maintaining policies of toolsets)
- 2+ years’ experience managing and supporting cyber security capabilities in a mid-sized IT environment across a wide range of technologies, applications and third-party service providers