Junior Cybersecurity Analyst

at  MoneyMe

ABOUT MONEYME:

MONEYME is a founder-led digital lender and Certified B Corporation. We challenge the traditional ways of credit and simplify the borrowing experience with digital-first experiences that meet the needs of modern consumers. We offer a range of fast, flexible, and competitively priced products that span our customers’ credit lifecycle, including personal loans, credit cards, and car loans. We deliver unrivalled customer experiences powered by smart technology, speed and efficiency.
We are for ambitious Australians that expect more from life and the companies they engage with. We uphold a strong ethos of sustainability and hold ourselves accountable to the high standards of the B Corp movement. Our culture is energetic and driven, and we continually challenge the status quo… we’re nothing like your traditional finance institution. We have recently been certified as a B Corp and a Great Place To Work. We’re proud to have built a culture where people feel heard, cared for, and empowered to push boundaries. We wouldn’t be able to continually improve and grow as a company without our diverse and exceptional team.

WHAT WE ARE LOOKING FOR:

We are looking for a JuniorCybersecurity Analyst with technical experience and enthusiasm to learn new things in a fast-moving environment. As a Cybersecurity Analyst you will plan and conduct vulnerability assessments and penetration testing on web and mobile applications. You will ensure high end security standard of the overall system and network of the company and develop security strategies and training programs.

RESPONSIBILITIES WILL INCLUDE:

• Work with both Red and Blue teams to plan and execute realistic defensive and offensive security exercises.
• Assist in the vulnerability assessment, penetration testing, vulnerability management and remediation activities.
• Monitor threat intelligence feeds and alerts from tools to identify potential threats and/or vulnerabilities.
• Monitor, plan, implement, or upgrade security measures for the protection of network, system and data resources.
• Ensure the diligent application of cybersecurity policies, principles, and practices in the delivery of all Information Technology and cybersecurity services.
• Collaborate with key stakeholders to investigate and resolve security incidents and identified vulnerabilities.
• Assist in the documentation and implementation of threat intelligence playbook
• Conduct cybersecurity training sessions for new hires during their onboarding process.
• Send out newsletters and cybersecurity tips to all employees.
• Perform other security tasks assigned by the Senior Information Security Specialist.

TO BE SUCCESSFUL FOR THIS ROLE THE FOLLOWING SKILLS AND EXPERIENCE IS REQUIRED:

• At least 1 year of experience in Alert Monitoring and Incident Response.
• Hands-on experience of more than 1 year with key components of cybersecurity including but not limited to:
• Network Security
• Security Operations
• Alert Monitoring and Incident Response
• Threat Intelligence
• Threat Hunting
• Security Awareness and Training
• Working familiarity with OWASP Top 10.
• Familiarity with tools such as Kali Linux, Burp Suite, OWASP Zap, Crowdstrike, Darktrace, Sentinel, Intune, or Defender.
• Good understanding of Secure SDLC concepts.
• Strong knowledge in cloud network, and technologies.
• Strong understanding of Cloud Security in (specifically MS Azure.) Knowledge in other cloud platforms is a plus.
• Holders of ISC CC, Network+, Security+, CEH, Azure certifications are preferred
• Experience with social engineering and red teaming is a plus.