As a Senior Security Administrator, you will work in collaboration with other technical and project teams, vendors, and service providers to deliver a secure, reliable, fit-for-purpose and enterprise-class technical security environment for our State Government client. The Technical Security team provides a secure ICT environment for staff from the department and their partner agency, to consume on-premises and cloud-based resources.
The ICT environment consists of a state-wide network with around 150 offices that supports around 7,500 staff. Cisco equipment is used in the data centres, MAN and WAN, and VMware is used as the hypervisor. Desktops and servers run Microsoft operating systems and users have access to the Microsoft productivity suite including OneDrive. Microsoft Teams is used for telephony.
Key responsibilities
- Provide expertise and advice to achieve specified business objectives, including the planning, development, and implementation of technical security infrastructure and process improvements.
- Monitor the security compliance maturity level of the technical infrastructure environment, and lead security risk and vulnerability assessments and report on and remediate technical security issues within the environment against Queensland Government Information Standards and industry best practices.
- Develop and maintain a fit-for-purpose set of work practices within the technical security team.
- Ensure that management is kept informed of risks, operational issues and emerging trends in technical security.
- Liaise and work with internal and external workgroups, other Queensland Government agencies, vendors and partners as required.
Demonstrates strong knowledge and experience in managing technical security infrastructure in an enterprise ICT environment. It is desirable to have experience with the following or similar technologies:
- Email proxy and content filters (Cisco IronPort ESA, Microsoft Defender for Office365)
- Web proxy and content filtering (Zscaler)
- Anti-Virus, Application Whitelisting, Data Loss Protection (Microsoft Defender, WDAC)
- Security logging and events (Microsoft Sentinel)
- Network Vulnerability Scanning (InsightVM Rapid 7)
- Public Key Infrastructure (Microsoft PKI)
- Secure File Transfer (Axway)
- Compliance tools (Microsoft Purview)
- Scripting (Powershell)
- Azure ARC
- Contribute to the business-as-usual operational activities of the team.
- Develop artefacts, documentation and reports as required.
- Take ownership of and deliver enhancement requests for relevant technical security processes and technologies used within operational and project teams.
- This position may be required to be contacted after-hours to assist with major technical security incidents.
Skills
Security, Sentinel, InsightVM Rapid 7, PKI, Axway, Purview, Defender, WDAC, Zscaler, Cisco, IronPort ESA, Office365, Powershell, Azure
Education
Associate Degree/Diploma