Security Engineer — Brisbane, Brisbane Region

Expired

Talenza have partnered exclusively with a Mission focussed corporation to search and select a Security Engineer in Brisbane. About the Client This global organisation are making a real impact to people's lives and as an employee you can feel that within everything they do. You will work alongside a highly skilled team who are committed to the cause. About the Role The Cyber Security Engineer will sit in the Cyber Security Team and will be working within the Cyber Program Delivery function as well as the Cyber Operations and wider IT Operations teams to deliver outcomes required for the Cyber Resilience Program. The role will enhance the Cyber Security Team's ability to deliver on the outcomes of the Cyber Resilience Program by being able to perform tasks the operational team are unable to complete with the Project and Program's timeframes. The Cyber Security Engineer will be involved in the following Cyber Resilience initiatives. These initiatives are under different stages of delivery. Delivering in tandem, the projects require support with most daily activities of the Cyber Program Team to deliver project outcomes on time. Email Fraud Prevention Analyse SPF and DKIM signatures and track DMARC status. Monitor email traffic and gather relevant data for inspection. Evaluate if email sender and emails are legitimate and have respective SPF and DKIM signatures. Build a plan to rectify any identified issues. Perform remediation activities for identified issues against each email sender. Communicate with 3rd party vendors with DMARC requests (require 3rd party support) Communicate with Internal Admin to access Sender Platform Add sender IPs and include statement to SPF record (DNS/Hosted SPF) Publish DKIM records (DNS/Hosted DKIM) Test remediated senders and confirm the remediation activities were successful. Application Whitelisting Analyse current applications using existing monitoring capabilities to establish application and baseline policies. Perform roll out of application control agent to all endpoints and remote access servers. Coordinate with security operations team to implement logging, alerting and response plans for application control incidents and requests. Perform continuous audit of applications in the digital estate. Perform constant update of the whitelist to ensure authorise applications are included. Active Defence Assist in planning the deployment of trip wires (canary tokens) Perform token ingestion activities in documents, systems, users and servers to set up honey organisation. Coordinate with security operations to enable high priority alerting and response plans when tokens are triggered. File Integrity Monitoring Review and identify critical servers, systems and applications for file integrity monitoring. Perform deployment of monitoring agents for database and file integrity Coordinate with operations to enable logging and alerting through security monitoring platform. Event Logging Uplift Coordinate with security operations to identify log sources to monitor for critical servers, systems and applications. Perform deployment of log collection and monitoring agents Coordinate with operations to enable logging and alerting through security monitoring platform. Coordinate with security partner in updating or creating detection use cases and reporting. Deliver project outcome for the Cyber Resilience Program by a combination of hands-on work and assisting the operational teams. Advise on strategies to achieve project goals while adhering to their Enterprise Architecture framework and following the direction of BAU teams. Document and transition project deliverables that relate to the role for smooth handover to BAU teams. Assist in delivering the technical implementation, configuration, and deployment of projects as part of the overall cyber security program. Exercising independent judgement, utilise expert consultancy with Cyber Security Architect to ensure solutions adhere to the groups cyber security standards and policies. Ensuring that internal and external engineers meet Cyber Security standards, policies, and expectations. Be a trusted advisor to the Program Manager - Cyber Security providing guidance and strategies to meet project outcomes and achieve a smooth transition to BAU. Assist with the preparation of project plans by breaking down activities and applying realistic effort estimations. Flexibility to work out of hours where necessary and utilise time in lieu to maintain a work/life balance. The Requirements Experience with administering technologies such as Active Directory, Group Policy, Intune and End Point Manager. Experience deploying software to servers in an enterprise environment. Experience configuring mail applications or advising system administrators on changes that need to be made to meet the requirements of projects. Experience configuring DKIM/DMARK/SPF. Strong familiarity with working within a Microsoft ecosystem. Experience with change control processes and the ability to present changes to an IT change control board. Analytical skills to review logs, server configurations and identify suitable servers for inclusion & exclusion in projects. Willingness to learn and to gain additional skills required to achieve project outcomes within the IT infrastructure area. The Desirables Tertiary qualification in Information Technology or related discipline. Previous experience working within the highly regulated and complex environments such as critical infrastructure or healthcare related knowledge of opportunities and constraints. Relevant cyber security certifications (SSCP, CISSP, CISM, or similar).