It Security Analyst

Have an impact on InfoSec & see your contribution$130,000 - $140,000 (including super)Full time permanent role | Hybrid working THE COMPANY This large and well-known global Professional Services firm employs 700+ staff in multiple offices across Australia, and more than 70+ offices around the globe. They are currently looking to transform, mature and uplift Information Security and require an additional IT Security Analyst, in this newly created role. THE ROLE & RESPONSIBILITIES As the IT Security Analyst, you will work with the Head of Information Security, the wider InfoSec team, and business-stakeholders to monitor, maintain, and improve InfoSec across the firm. It's a great opportunity to get hands-on and have a direct impact on maturing/uplifting security where you can see the payoff of your work. Responsibilities include:- Assist in maintaining InfoSec Governance & Compliance programs.- Respond to client questionnaires/requests and IT internal audits.- Conduct security risk assessments and undertake remediation activities.- Conduct Third Party Supplier Risk Assessments- User Access reviews. - Monitor security systems to detect & investigate potential threats.- Maintain & administer IT security systems.- Incident Response activities - including notification processes, breach analysis to identify root cause then remediate.- Champion InfoSec awareness and support cultural change.- Assess IT projects and new IT systems to ensure compliance with InfoSec policies.- Work closely with internal stakeholders to proactively identify, assess, control, report and monitor information security risks.- Assist with ISO 27001 certification.- Essential Eight and CPS 234 assessments. REQUIRED EXPERIENCE / BACKGROUND / KNOWLEDGE Suitable for an IT Security professional experienced with security operations and the implementation/maintenance IT governance and compliance frameworks. Ideal for a self-starter who enjoys getting hands-on in risk assessments/policy writing and is capable of confidently communicating with both technical and non-technical stakeholders. The following is required: - Proven experience inside mid-large sized enterprise environments implementing & maintaining IT governance & compliance frameworks.- Good knowledge of InfoSec standards & frameworks such as ISO 27001, NIST, Essential Eight, SOC2, CPS 234 etc.- SecOps experience - including Incident Response.- IT Risk & vulnerability management experience.- InfoSec reporting skills.- Data Privacy experience is beneficial.- Excellent verbal and written communication skills capable of delivering complex technical terminology in an easy-to-understand manner. - Polished and professional presentation capable of forging relationships and influence others. This is a full-time permanent role with hybrid working offering circa $130,000 - $140,000 (including super) - depending on experience. Note: unrestricted Australian working rights are required to be considered for this position and successful applicants will be contacted. By clicking 'apply', you give your express consent that Robert Half may use your personal information to process your job application and to contact you from time to time for future employment opportunities. For further information on how Robert Half processes your personal information and how to access and correct your information, please read the Robert Half privacy notice: https://www.roberthalf.com/au/en/privacy. Please do not submit any sensitive personal data to us in your resume (such as government ID numbers, ethnicity, gender, religion, marital status or trade union membership) as we do not collect your sensitive personal data at this time.