Platform Administrator SIEM - Melbourne, Australia - Department of Education

    Department of Education
    Department of Education Melbourne, Australia

    Found in: Talent AU C2 - 2 weeks ago

    Default job background
    Full time
    Description

    Platform Administrator - SIEM VPS5 PN Fixed Term until 30th June 2025

    Platform Administrator - SIEM VPS5 PN Fixed Term until 30th June 2025

    About the opportunity

    Information Security Services is seeking an experienced Platform Administrator SIEM to join their team. This is an exciting opportunity to be responsible for contributing to the overall success of the implementation, roll-out and ongoing support of the Security Information and Event Management (SIEM) tool and processes as part of the SIEM project.

    The role provides roll-out support, configuration and operational SIEM tool usage in an emerging project stream seeking to launch in early 2024. The role will draw on previous SIEM experience to assist in the support of roll-out activities across a geographically diverse set of schools.

    About you

    The primary purpose of the role will serve as a bridge between the incident response team and vulnerability teams within the Threat Response Unit. Responsibilities for the role include:

    • Experience in SIEM roll-out planning, co-ordination and support actitivities.
    • Contribute to the development of policies, security standards, playbooks and operating procedures to support the team and broader department.
    • Manage and maintain close liaison and effective relationships with other branches within the department, other government departments and non-government services.
    • Check for vulnerabilities in devices, networks and applications and follow through with responsible teams for remediation.
    • Recommend security enhancements and help users when they need assistance to operate technology securely.
    • Design and deliver reporting systems for the Department which allow executives to have visibility of the security program and provide insights on a wide range of security indicators.

    As the ideal candidate, you will have:

    • Familiarity or experience using cyber security related tools specifically SIEM tools (e.g. Fortinet, Google Chronicle, LogRhythm, Microsoft Sentinel, Rapid7, SolarWinds, Splunk).
    • Experience and aptitude in assisting in deployment planning and support of security related tools highly regarded.
    • Experience in configuring reports, tests and alerts, ideally using SIEM tools, that indicate potential threats.
    • Establishes systems and procedures to guide work and track progress.
    • Analyses issues from different perspectives, improvises, and draws sound inferences from information available.

    For more details regarding this position please see attached position description.

    The Department values diversity and inclusion in all forms - gender, religion, ethnicity, LGBTIQ+, disability and neurodiversity. Aboriginal and Torres Strait Islander candidates are strongly encouraged to apply. For more information about our work, working for the Department, diversity and inclusion, and our employment conditions visit the Department website [] , HRWeb [] and our Diversity and Inclusion page [].

    Applicants requiring adjustments can contact the nominated contact person.

    Applications close: 23 June 2024