Cochlear is the global market leader in implant hearing solutions. Cochlear's mission is to help people hear and be heard. Around the world, more people chose a Cochlear-branded hearing implant system than any other. A Cochlear Implant is an electronic device that is surgically implanted under the skin near the ear that restores hearing to those who suffer from severe hearing loss. It’s an incredible piece of engineering and the only product in the world that restores a sense through technology. Imagine using your experience to help people around the world to hear again. We can offer a unique opportunity to join Cochlear, an iconic Australian company, leading the world in implantable hearing solutions. Our mission is to help more people to hear.The responsibility of the Cyber Security Specialist is to protect Cochlear’s information assets from Cyber Security threats. Working within a global organisation as part of a multi-disciplined team, you will be charged with implementing pragmatic but effective Cyber Security defences while keeping information owners apprised of increasing Cyber Security threats.The OpportunityCochlear has a unique opportunity for a Cyber Security Specialist based in our Macquarie, Sydney Office. In this role, the successful Cyber Security Specialist will Contribute ideas on systems and process methods to improve deliverables.Responsibilities include:
- Pentesting of internal infrastructure, products and services
- Working independently with limited supervision to support the Director Cyber Security in managing Cochlear’s Cyber Security response plan.
- Administer a vulnerability management program across applications and infrastructure, identify potential threats and conduct risk assessments as to their likely impact.
- Assist in the management of information security incidents, including investigation, reporting and recommendations for improvement of controls.
- Ensure understanding of complex issues through adapting and exchanging information in the most appropriate form for the audience.
- Cyber security penetration testing
- Cyber security operations
- Vulnerability management
- Incident response
- Cyber security support
- Strong commercial experience in Information Technology, with reasonable Information security experience.
- Exposure to industry standard security frameworks (e.g. HIPAA, ISO, PCI DSS, NIST).
- A good working knowledge of Internet and network security systems and tools including firewalls, load balancers, WAFs, IDP, PKI and remote access systems.
- Hands on experience managing SIEM platforms and tools (e.g. Splunk, LogRhythm).
- Experience with VMware, Microsoft, UNIX and Linux Operating Systems.
- A good understanding of security incident response processes.
- Significant experience with vulnerability scanning tools including Nessus and QualysGuard.
- Significant experience with SIEM and/or log management products.
- Ability to efficiently review, correlate and parse log files to pinpoint relevant incident information using scripting languages to automate the process.
- Exposure to Data Loss Prevention (DLP) systems.
- A track record in analysing complex technical situations and articulating technical security issues and associated risks in business language.
- A high proficiency working with Microsoft Office tools.
- A passion for information technology and information security within a commercial context.
- A good communicator with the intellectual ability to challenge and debate pertinent issues.
- A meticulous attention to detail in daily all activities.
- A high level of personal integrity is critical.
- Offensive Security Certified Professional (OSCP) is a must
- Applicable industry certifications such as CISSP, SSCP, GIAC, CREST.
- ITIL certifications or experience of working within an ITIL oriented organization.
- Degree qualified in related IT discipline.