Cyber Security Analyst

at  Device Technologies Australia

ABOUT US…

Since 1992, Device Technologies has been dedicated to improving patients’ lives through leading edge technology and services, supplying hospitals and healthcare professionals with the finest medical solutions for their patients. Device Technologies continues to grow with HQ based in Sydney representing over 200 trusted brands, along with over 1000 highly skilled staff located across ANZ and Southeast Asia.
Geared towards optimal performance, our culture is built on empowering our people to achieve their goals, aligning with wider business objectives. We focus on productivity, continuous improvement, career development and leadership nurturing to foster a superior workforce.

ABOUT YOU…

At Device Technologies, we succeed through our commitment to four key values:
Delivering Innovation – We encourage and reward fresh ideas and are committed to supporting our people to make change.
Seeking Collaboration – We support each other in our combined mission to help others achieve their goals.
Taking Ownership – We believe in equipping our people to take responsibility and accountability in their roles and trust them to get the job done.
Practicing Good Business – Our success is built on a mix of intuition and experience and we foster an environment where all voices are heard, and nobody is afraid to make mistakes.
Our ideal candidate for this role aligns with these values.
We are looking for candidates with a strong background across multiple information security domains such as, but not limited to, endpoint security, network security, IDS/IPS, data loss prevention, vulnerability management, incident response, threat hunting, identity and access management, and application security.

EXPERIENCE REQUIRED:

• Understanding of secure systems architectures
• Knowledge of Identity and access management principles
• Passionate about information security with a strong commitment to continuously improve user experience outcomes
• Experienced in incident handling for internal and advanced threats
• Experienced in EDR, web proxy, vulnerability scanning, security monitoring, threat intelligence, and security analytics tools
• Infrastructure Security Hardening (Systems & Infrastructure) based on Industry Best Practices
• Systems Security Experience, Strong understanding of operations systems; Windows, Linux, etc. and communication protocols running on various layers of the OSI stack
• Knowledge of network fundamentals, e.g., Local Area Networks, TCP/IP, IPSEC, and high-level communication protocols
• Solid understanding of security standards such as ISO27001, NIST, PCI-DSS, PII, Essential 8, MITRE ATT&CK and ISM (desirable)
• 4-6 years’ experience in IT Infrastructure, with 3+ years of IT security experience, coupled with a degree in Computer Science, appropriate industry applicable certifications (e.g. CISSP, SSCP, GIAC, CEH, OSCP)
• Self-driven and motivated, with a team/collaborative style

You will be part of the Security Centre of Capability. This team is responsible for the development, implementation, and operation of our cyber security practices, protecting our technology systems and information assets. The team is responsible for the operation, and continual improvement, of our security practices and insure they are incorporated into our way of working to deliver secure solutions to our business and our customers.
This role is responsible for monitoring and responding to security alerts and incidents, the design, implementation and operation of security controls, assisting with risk and control assessments, helping to foster security awareness through the business, and supporting initiatives to uplift our security maturity as the business scales and expands globally.