WHAT WE OFFER?

• Opportunities to support your local community through paid community leave
• 20 weeks gender neutral paid parental leave
• Great benefits to support your health and wellbeing, including access to discounted productsMental health support for you and your family through our Sonder assistance program

PURPOSE OF ROLE:

As Australia’s Most Trusted Manufacturer of natural health products for the past 15 years, and one of the Financial Reviews Best Places to Work in 2023, it couldn’t be a better time to join a truly purpose-led business that places wellbeing and workplace flexibility at the heart of our culture! We are excited to offer the role of a Senior Security Engineer (Sydney based)
This role will report to the Head of Cyber Governance and Operations. This role will safetguard our information systems and data. This position involves designing and implementing robust security controls, managing risks, and leading incident response efforts to counter cyber threats. The engineer will ensure compliance with relevant security standards and regulations, collaborate with various departments to integrate security practices, and continuously improve Blackmores’ security posture.
This role will be based in Sydney and is expected to work from our NSW work sites – either from Surry Hills or Warriewood at least 3 days a week.

WHAT WILL YOU DO?

• Security Engineering: Design and deploy security controls including Data Loss Prevention (DLP) Identity and Access Management (IAM) and / or Privileged Access Management (PAM).
• Manage the lifecycle of existing security controls such as email security, End Point Detection and Response (EDR), Vulnerability Management, Security Information and Event Management (SIEM), Security Orchestration and Automation (SOAR), Data Loss Prevention (DLP) and Network Security.
• Risk Management: Conduct risk assessments and vulnerability analyses to identify potential security threats.
• Develop and implement risk mitigation strategies and security policies.
• Incident Response: Lead the incident response team in identifying, analysing, and responding to security breaches and incidents.
• Conduct forensic investigations and root cause analyses to prevent future incidents.
• Compliance and Governance: Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, NIST).
• Develop and maintain security documentation, including policies, procedures, and guidelines.
• Security Monitoring and Analysis: Monitor security systems and networks for unusual activities and potential threats.
• Analyse security logs and reports to identify and address security issues.
• Collaboration and Training: Collaborate with IT and other departments to integrate security measures into all aspects of the organization’s operations.
• Provide training and guidance to staff on security best practices and awareness.
• Continuous Improvement: Stay up-to-date with the latest cyber security trends, threats, and technologies.Continuously improve security processes and technologies to enhance the organization’s security posture.