Cyber Security Operations Analyst Job Vacancy in Central Highlands Regional Council Emerald QLD – Updated today

Are you looking for a New Job or Looking for better opportunities?
We got a New Job Opening for

Full Details :
Company Name : Central Highlands Regional Council
Location : Emerald QLD
Position :

Job Description : CENTRAL HIGHLANDS REGIONAL COUNCIL
P OSITION DESCRIPTION

POSITION TITLE: Cyber Security Operations Analyst
POSITION NUMBER: 10760
AWARD: Queensland Local Government Industry (Stream A) Award –
State 2017
AWARD CLASSIFICATION: 5
REPORTS TO: Manager Information and Communications Technology
DEPARTMENT: Corporate Services
ABOUT US
Our vision
A progressive region creating opportunities for all.
Our mission
We are a council committed to continuous improvement, a sustainable future and efficient
investment in our communities.
Our values
Respect and integrity.
Accountability and transparency.
Providing value.
Commitment and teamwork.
OBJECTIVE OF THIS ROLE
The Cyber Security Operations Analyst will lead cyber security operational activities and support
the delivery of ICT strategic outcomes to continue to uplift the organisations security maturity. The
position will be responsible for the delivery of cyber awareness programs to council staff, being the
first point of contact for cyber incidents, and monitoring and responding to cyber security threats
identified and detected on ICT systems. They will also be responsible for coordinating vulnerability
assessments on systems and infrastructure and coordinating remediation activities identified to
improve the security posture.
This role will provide accurate information, data and reporting to the Manager ICT, and assist in
maintaining relevant security documentation such as security policies, guidelines, and procedures.
They will work with councils Managed Security Service Providers (MSSP) in the delivery of security
event monitoring and alerting services and support the ICT business unit in developing its own
cyber security capabilities.
1
KEY RESPONSIBILITIES IN THIS ROLE
1. Cyber Awareness. Establishing cyber security education and awareness campaigns to enhance

councils’ security culture and understanding of the organisation’s security policies and guidelines

requirements.
2. Security Delivery.
Day-to-day management of security controls and practices within the organisation.
Defining technical and non-technical security policies, guidelines, and procedures.
Monitoring and reporting on compliance with defined CHRC security policies.
Supporting the definition and implementation of controls, processes, and tools to comply with
the internal and external business requirements and address identified security risks.
Collecting, analysing, and reporting on security metrics, such as security events and incidents.
Participate in and support the Manager ICT in the investigation and remediation of security
incidents or other policy requirement violations.
Participate in and deliver cyber security incident simulation activities.
3. Security Architecture.
Develop, document, and maintain security architecture that provides a framework for the
application of standard security controls throughout council.
Provide security consulting, solution design and architecture expertise as part of ICT’s project
delivery and business-as-usual activities, ensuring identified risks are assessed, considered,

and reported appropriately.
Provide guidance and recommendations for exceptions to council’s security policy
requirements.
Assist in evaluating and managing service provider relationships and outsourcing
arrangements.
4. Security Operations.
Manage, install, and administer technical security controls implemented to deliver security
policy requirements, such as Endpoint Security Solutions and Security Incident and Event

Monitoring (SIEM) systems.
Perform patch and configuration management activities of security controls and infrastructure,
including performance tuning and troubleshooting.
Performing regular reviews of council’s compliance with policy requirements to support the
Manager ICT in reviewing and maintaining security compliance.
Monitoring, analysing, reporting, and responding to security events and incidents detected
within the ICT environment. This includes daily review of email spam and quarantine filters,

data loss prevention alerts, major vulnerability alerts, and threat intelligence.
Developing and implementing security controls and processes to minimise identified security
risks from internal and external sources to meet security compliance requirements.
Participate in the development of, and maintain, security policies, guidelines, and procedures,
ensuring they are accurate and up to date.
Evaluating new and existing security features and related products under the guidance of the
Manager ICT.
Ensure that all records are maintained in accordance with council’s information and records
management policies and procedures and meet legislative and business requirements.
5. Project Management. Participate in or lead agreed projects in alignment with ICT Project

Management Frameworks, providing security infrastructure management and technical

expertise accordingly.
6. Reporting. Provide accurate information and data and prepare reporting on cyber security

activities for the Manager ICT. This will include reports on security events and incidents detected

with the CHRC environment.
Additionally, this position may be required to conduct other duties as lawfully directed by the
reporting manager.
2
ABILITIES, SKILLS AND KNOWLEDGE REQUIRED
Mandatory:
An inherent passion for cyber security and service excellence.
Demonstrated experience in a customer-facing technical or security support environments.
Demonstrated experience in the development and implementation of cyber security plans.
Demonstrated experience in managing cyber security incidents.
Knowledge for building out and managing cyber threat detection and response capabilities.
Knowledge and/or experience in technologies such as Microsoft Azure Sentinel, Security
Centre, Microsoft Cloud App Security, and Microsoft 365 Defender.
Demonstrated experience in effective customer service and communication with customers.
Desirable:
Demonstrated experience in delivery and management of ICT projects.
Demonstrated knowledge of the ITIL Framework.
QUALIFICATIONS, EDUCATION AND LICENCES REQUIRED
Mandatory:
Minimum of Queensland C class provisional driver’s licence.
Qualifications in Information Technology/Cyber Security or demonstrated equivalent
industry experience.
Desirable:
Cyber Security Certifications such as OSCP, GCFA, GCIH and other GIAC certifications
will be highly regarded.
Qualifications in Project Management.
Qualifications in IT Service Management (ITIL).
KEY SELECTION CRITERIA
A responsible, disciplined, self-motivated, pro-active approach to work.
Demonstrated ability to work effectively in a team environment.
Strong experience in Cyber Security Tools.
Excellent analytical, problem-solving and stakeholder management skills.
An innate ability to understand Cyber Security processes and validate/triage incidents.
An inquisitive mindset to analyse complex issues and quickly identify solutions.
Solid understanding of security operations and technologies.
Demonstrated time management skills, with the ability to organise and prioritise work
effectively to meet deadlines/timeframes.
3
CORPORATE REQUIREMENTS YOU MUST MEET
1. Commitment to council’s vision, mission and values.
2. Compliance with council’s code of conduct.
3. Adherence to all relevant council policies and procedures, certified agreement, your
contract of employment and relevant legislation, including the Local Government Act, 2009
and Work Health and Safety, Act 2011.
4. Commitment and adherence to council’s customer service charter.
5. Compliance with all relevant and necessary pre-employment checks required for this role.
6. Commitment to council’s corporate plan.
7. Commitment to equal employment opportunity, diversity and merit principles.
8. Commitment to ensuring a workplace free from bullying, harassment and discrimination.
9. Efficient and effective utilisation of resources as allocated under the level of responsibility
for the position.
10. Commitment to change management.
ELIGIBILTY AND PRE-EMPLOYMENT CHECKS
To be appointed to a permanent position, you must be an Australian citizen, or have permanent
residency status, or a visa permitting you to work in Australia permanently. If you have a visa
permitting you to work temporarily in Australia, you may be appointed to a temporary or casual
position, providing the work complies with the conditions of your visa.
The pre-employment checks relevant to this position include:
Right to work in Australia.
Medical and functional assessment including drug & alcohol testing.
Reference checks.
CORE COMPETENCIES WE NEED FROM YOU
Competency Definition Level
Delivering Results Having the ability to set objectives for yourself and others, taking
a forward-looking perspective, and delivering successful 3
outcomes within agreed parameters.
Communication Identifying and using appropriate communication styles and
methods, taking into consideration the audience and the desired

3
outcome. Building and maintaining effective working
relationships with key stakeholders, both internal and external.
Initiative and Anticipating situations and problems, finding appropriate
innovation solutions, grasping opportunities for improvements, and taking

3
ownership for continuous improvement that goes above and
beyond the call of duty.
Flexibility Being able to adapt your thinking and behaviour to suit different
situations and changing circumstances. Taking other people’s

2
views on board, accepting new and different ways of working
and encouraging others to embrace change.
4
Teamwork Having the ability to work as part of a team, actively encouraging
team working and recognising the role you play as part of the 2
council team.
Commitment to Being willing and able to align your own behaviours with the
Council objectives, goals, and values of council; acting as a role model 2
and promoting the values to others.
Customer service Aligning your behaviour with the customer service charter to
ensure both internal and external customer needs are met;

3
taking a positive attitude, showing commitment, and having a
can-do approach.
Workplace Health & Taking reasonable care for the health and safety of yourself and
Safety others, complying with reasonable instruction and co-operating 2
with council policy and procedure.
A copy of the Competency Handbook is available on the Central Highlands Regional Council
website under ‘Careers with Council’.
GENERAL OBLIGATIONS
1. This is a description of the job as it is presently constituted. Council will regularly review
position descriptions and appropriately update them to ensure that they relate to the job
being performed, or to incorporate whatever changes are being proposed. Where
appropriate, employees will be consulted on the changes and employees are expected to
participate in consultation.
2. Whilst employment is in the position described in this document it is understood that
employment is with Central Highlands Regional Council. In the event of organisational
change or restructure, council may require employees to undertake other roles for which
they are qualified and capable of performing.
3. Employees may be required to undertake a variety of duties not related to their substantive
role in the times of disaster or significant exceptional operational circumstances.
4. All employees are responsible for making and keeping records in accordance with
legislation, information standards and other relevant guidelines and procedures.
5. Failure to maintain any licence or qualification, which are a condition of your employment,
may result in demotion or termination as council is unable to guarantee your transfer to a
position not requiring said licence/qualification.
Please sign below if you have read, understood, and accepted the responsibilities of this
position as outlined in this position description.
Name
…
Signature Date
…
5

This post is listed Under  App Development
Disclaimer : Hugeshout works to publish latest job info only and is no where responsible for any errors. Users must Research on their own before joining any company