Team Leader, Cyber Threat Management

Similar documents
Professional Leaders/Specialists

INFRASTRUCTURE TECHNICAL LEAD

POSITION DESCRIPTION. Classification Higher Education Worker, Level 7. Responsible to. I.T Manager. The Position

Job Profile Data & Reporting Analyst (Grant Fund)

STARplex Fitness Centre Manager

CASSOWARY COAST REGIONAL COUNCIL POLICY ENTERPRISE RISK MANAGEMENT

Security Services. Service Description Version Effective Date: 07/01/2012. Purpose. Overview

SERVICE DESK TEAM LEADER

Change Management Process

South Australia Police POSITION INFORMATION DOCUMENT

SOFTWARE DEVELOPER POSITION BY RIOMED LTD. SAFE. EFFICIENT. QUALITY WORLD CLASS HEALTHCARE SOLUTION

Health Stream Portfolio (e.g. Mental health, drug & alcohol) and Contract of Employment

Research Report. Abstract: The Emerging Intersection Between Big Data and Security Analytics. November 2012

Duration of job. Context and environment: (e.g. dept description, region description, organogram)

OFFICIAL JOB SPECIFICATION. Network Services Analyst. Network Services Team Manager

J-B Pst: General Manager Centre A.F.F.T.F.T.A.F.F.A.T.A.F.F.P.F.A.F.F.F.

How To Manage An Infrmatin Security Gvernance Prgram

Duty Statement Manager The Early Years at Seymour (TEYS)

LATROBE COMMUNITY HEALTH SERVICE MANAGER, MARKETING AND COMMUNICATION JOB & PERSON SPECIFICATION

G-CLOUD FRAMEWORK SERVICE DEFINITION. Oracle Technology Service for Agile Cloud Projects. Copyright: point6 Ltd

ITIL Release Control & Validation (RCV) Certification Program - 5 Days

Version: Modified By: Date: Approved By: Date: 1.0 Michael Hawkins October 29, 2013 Dan Bowden November 2013

Wiltshire College. Job Description. Public Relations Officer (Fixed term maternity cover) 5: 21,103 per annum Marketing and Communications Manager

BRISTOL CITY COUNCIL ROLE AND EMPLOYEE PROFILE: Architect (Practitioner Level) Specific Role Data Architect

Project Officer, Health Content Digital (1.0 EFT)

Job Classification Details Department Job Function Job Family Job Title Job Code Salary Level

Build the cloud OpenStack Installation & Configuration Integration with existing tools and processes Cloud Migration

Version Date Comments / Changes 1.0 January 2015 Initial Policy Released

Request for Resume (RFR) CATS II Master Contract. All Master Contract Provisions Apply

VACANCY. SENIOR MANAGER: SPECIAL PROJECTS AND STAKEHOLDER MANAGEMENT x1 3 YEAR CONTRACT (WITH A POSSIBILITY OF BEING EXTENDED TO 5 YEARS) JOB LEVEL: 5

CMS Eligibility Requirements Checklist for MSSP ACO Participation

Risk Management Policy AGL Energy Limited

Agenda. o Purpose of IT Assessment o Scope of IT Assessment o Deloitte Recommendations o IBM Discussions o Research Data Center o Open Season

TrustED Briefing Series:

JOB DESCRIPTION. Director of Contracting and Performance

UBC Incident Response Plan V1.5

BIBH Duty Statements and Governance chart reviewed and approved April BIBH Executive Governance & Management Arrangements

JOB DESCRIPTION. Job Title: Business Intelligence Developer. Job Holder: Date: April 2016

How To Be An Administrative Assistant

Represent New College Stamford at both national and regional events and serve on appropriate external committees.

MANITOBA SECURITIES COMMISSION STRATEGIC PLAN

ITIL Service Offerings & Agreement (SOA) Certification Program - 5 Days

Career opportunity [Agile Coach]

Oakland Unified School District Impact Assessment Performance Management in Action

Weber State University Stewart Library Information Technology Plan Contents

SECTION J QUALITY ASSURANCE AND IMPROVEMENT PROGRAM

Position Description. Duties and Responsibilities

Research Report. Abstract: Advanced Malware Detection and Protection Trends. September 2013

JOB DESCRIPTION FORM

Lumension Connect: Online Customer Community FAQs

POSITION DESCRIPTION

ITIL V3 Planning, Protection and Optimization (PPO) Certification Program - 5 Days

Research Report. Abstract: Security Management and Operations: Changes on the Horizon. July 2012

Chief Finance and Operations Officer IfM Education and Consultancy Services (IfM ECS)

Corporate Profile, 2014

Strategic Goal 2. Timely, Accurate, and Responsive Customer Service U.S. OFFICE OF PERSONNEL MANAGEMENT RECRUIT, RETAIN, AND HONOR

REPLY S OFFER FOR BUSINESS SECURITY

ITIL V3 Service Offerings and Agreements (SOA) Certification Program - 5 Days

BUSINESS NEED SUMMARY TABLE: # Need P Concerns Current Solution Proposed Solution

Job Summary. Job Title: Head of Sport & Recreation. Grade: 9. Job reference: CSE01521

Communications Campaign Manager (15 Months Fixed Term Contract) Grade 4

Help Desk Level Competencies

Médecins Sans Frontières Australia Job Description

Contact Officer Contact Telephone Closing Date

MANAGED VULNERABILITY SCANNING

ISO Management Systems. Guidance on understanding the benefits of an ISO Management System

Connecting with People is the trading name of Open Minds Alliance CIC, a not-for-profit organisation formed in 2010.

Service Level Agreement Distributed Hosting and Distributed Database Hosting

Charlotte-Mecklenburg Schools Elementary School Grading Procedures Plan

UCISA. Creating a Service Desk Good Practice Guide

Vulnerability Management:

COURSE PROFILE. Business Data Analysis IT431 Fall

JOB DESCRIPTION. Technical Support Officer. Environment & Sustainable Communities. Environmental Services. September 2015

RESTRUCTURING THE ADDITIONAL DUTY HOURS ALLOWANCE. Part I of Volume II JOB DESCRIPTIONS FOR DIRECTORS

Support Services. v1.19 /

Contact Officer Contact Telephone Closing Date

ENTERPRISE RISK MANAGEMENT ENTERPRISE RISK MANAGEMENT POLICY

JOB DESCRIPTION FORM

POSITION: Palliative Care Registered Nurse Division 1. Coordinator Nursing Services. Nicholson Street, Fitzroy North. DATE: December 2015

2. Are there any restrictions on when the work can be performed (e.g. only at night, only during business hours, only on weekends)? No.

Delivering Business Value Through IT Cost Transparency Using IT CMF

STANDARDISATION IN E-ARCHIVING

Web Development the Next Steps

VCU Payment Card Policy

Application Development Team Lead Information Services (IS)

ITIL Foundation Certification Course v3 Information Technology Service Management (MIE-ITIL-FDN, 3 days)

Organization Design Specialist

FY-2006 Networking and Security Engineering and Operations NASA Task TM: Richard Kurak

UNITED STATES OF AMERICA FEDERAL ENERGY REGULATORY COMMISSION. Statement of Thomas F. O Brien. Vice President & Chief Information Officer

Gravesham Borough Council

Privacy and Security. Ryan Dunn, PSO

PCI - Why You Need to be Compliant When Accepting Credit Card Payments. Agenda. Breaches in the Headlines. Breach Events & Commonalities

def TRUST BOARD - July 2010 Staff Survey Action Plan Agenda Item: 15 PURPOSE:

Group Director of Nursing & Midwifery

IT Help Desk Service Level Expectations Revised: 01/09/2012

Representative Workforce Strategic Action Plan

FINANCIAL SERVICES FLASH REPORT

Lead Infrastructure Analyst. IT Services. The University. Salary Grade 8-40,046 to 45,053 per annum. Ref: CSE00949

Safety and Operational Risk Update. Mark Bly Executive Vice President, S &OR

Corporate Standards for data quality and the collation of data for external presentation

Transcription:

Security Analyst Rle Specificatin Rle Title: Security Analyst Cyber Threat Management Business Unit: SBS (Suncrp Business Services) Lcatin: Brisbane Divisin: Crprate Shared Services Pay Band: 4 Department: Cyber Security Operatins Jb Family: Other Team: Cyber Threat Management Leader Prfile: Team Member Rle Reprts t (rle title): Direct Reprts (rle titles): Ttal Emplyees (ttal number f emplyees reprting thrugh t this rle, if applicable): Team Leader, Cyber Threat Management Nne Nne Purpse f the rle (What the rle des; hw the rle cntributes t the team/department/divisin gals) The missin f the Cyber Threat Management Team is t mnitr, assess, and defend Suncrp s infrmatin systems and envirnments frm internal and external threats. The Security Analysts within the team prvide technical expertise and are respnsible fr the delivery f service excellence within the fllwing areas f the team s peratins: Security event analysis, escalatin and reprting Security event remediatin and preventin advice Mnitring f plicy, standards and cmpliance Vulnerability scanning The Security Analyst rles are als heavily invlved in supprting the delivery f the fllwing services: Threat intelligence management Penetratin testing Key Accuntabilities (Key activities, tasks and utcmes t be achieved) Technlgy Leadership: Mnitring and detectin f threats (including malicius cde) by ensuring apprpriate system lgs, tls, prcesses and reprting mechanisms are in place, as well as utilising industry threat mnitring systems. Respnse and preventin f threats by taking immediate actin, engaging with ther teams/partners as required, undertaking pst incident review, and recmmending preventative actins/cntrls. Mnitring the IT envirnment fr any indicatrs f security plicy breaches, and taking the apprpriate actin t reslve. Ensuring that basic security hygiene practices (e.g. patching, DLP, access vilatin, etc.) are mnitred and apprpriate actin taken. Ensuring a defined vulnerability scanning prgram f scheduled assessments is undertaken. Maintain a register f actins and risks frm these assessments, and fllw up n actins and risks that have been identified. Vendr relatinship management f Managed Security Services slutins. Operatinal Excellence: Enhancing and streamlining peratinal activities t reduce effrt, minimise cmplexity, reduce instances f errr and save mney. 1

Service Excellence: Using Agile techniques, supprt the prduct, platfrm and service based teams thrughut the business t deliver custmer value. T help build and wrk within self-empwered high perfrmance teams which will deliver high quality value frequently. Enabling Partners: Assisting SBS teams by c-rdinating patch gvernance frums t ensure desktp & server patching is undertaken t a sustainable level. T help with cntinuus delivery, cntinuus develpment, and security based Devps (SecDevOps). Gvernance: Undertake activities and tasks, mindful and cmpliant with all relevant gvernance, plicies and prcedures. Be a practive supprtive vice f the Suncrp risk cmmunity, helping with educatin, awareness, and cmpliance. Wrking Relatinships (Key stakehlders, clients, custmers, suppliers, prviders, cnsultants, etc.) Internal Relatinships Suncrp Business Services All Suncrp business grups External Relatinships Strategic partners Managed service prviders Technlgy vendrs General Services & Activities Security Event Analysis, Escalatin and Reprting Perfrming 24x7 cyber security event mnitring, identificatin and analysis f the Suncrp Grup IT envirnment. Ensuring that events are managed and actined, with escalatin f incidents t the apprpriate teams as required. Intrusin Detectin: Mnitr and detect intrusin events using tls and data prvided by ther teams & partners and assist with incident respnse and preventin advice Mnitr fr malware (i.e. virus, wrms, trjans, spyware, adware, etc.) using tls and data prvided by ther teams, determine infectin entry pints & assist with remediatin and preventin advice Mnitr lgs fr anmalies Mnitr external activity nt cvered by Intrusin Preventin Systems Mnitr irregular internal netwrk activity Data Leakage: Threat Analysis: Mnitr fr data exfiltratin using tls and data prvided by ther teams & partners and assist with event remediatin and preventin advice Analysis f threats identified frm internal and external surces Statistical analysis f lgs and ther data surces Practively lk fr behaviur anmalies and investigate (ie. hunting) Understand netwrk behaviur and traffic trends Track change activity fr unexpected security mdificatins Security Lg Management: Wrk with Stakehlders t assist them in cmplying with security lg cllectin, retentin and mnitring requirements Reprting/Alerting: Understand capabilities f Stakehlder tls t assist with detectin and alerting Reprting/Alert generatin prcess imprvement within a security based DevOps framewrk 2

Security Event Remediatin and Preventin Advice Drive technlgy teams t undertake security event remediatin activities, ensuring that rapid turnarund ccurs. Plicy, Standards and Cmpliance Mnitring Mnitring the IT envirnment fr any indicatrs f security plicy breaches, and taking the apprpriate actin t reslve. Ensuring that basic security hygiene practices (e.g. patching, DLP, access vilatin, etc) are mnitred and apprpriate actin taken. Privileged Access Cmpliance Privileged Accunt Management User behaviur mnitring PCI DSS Card Data Recn Patching Gvernance Organisatinal Chart Executive Manager Cyber Security Operatins Team Leader Cyber Threat Management Security Analyst Persn Specificatin Key Jb Requirements Qualificatins (Indicate whether mandatry r desired) Current Industry Technical Qualificatins is highly desirable Tertiary Qualificatin in Infrmatin Technlgy is desirable Experience (the minimum amunt f experience required t perfrm in the rle) At least 5 years hands-n IT experience. At least 3 years experience in IT peratins within a large rganisatin. Specialised knwledge f security-related cncepts, practices and technlgies. 24x7 Rstered On-call Services Participatin in a 24x7 n-call rster is mandatry Technical Capabilities (skills, knwledge, technical r specialist capabilities) Technical knwledge f enterprise level security platfrms, including: Netwrking technlgies, Firewall technlgies, Web Applicatin Firewall technlgies, data leakage and anti-malware technlgies. 3

Technical knwledge f infrastructure and applicatin vulnerability assessment tls and a cnceptual knwledge f Secure Sftware Develpment Lifecycles and cmmn applicatin vulnerability classes (i.e. OWAP tp ten). Lgging systems and analysis tls (including Security Infrmatin & Event Management (SIEM) and frensic tls) (e.g: Netwitness, Splunk, etc.). Linux, Unix, windws, mbile technlgies, clud technlgies. Current knwledge f the Internet and internal threat landscape trends, including malware, hacking tls and a current understanding f the security research being carried ut by the hacking cmmunity. Knwledge and cmmercial experience with industry standard security practices. Be able t demnstrate a slid understanding f disciplines in change cntrl, security, perfrmance mnitring, n-ging administratin and dcumentatin. Previus experience wrking within an Agile envirnment, with an excellent understanding f the Agile practices. Skills and Abilities (Individuals capabilities, include level f prficiency) Ability t understand the implicatins f threats in terms f Suncrp s business, risk, plicy, and industry best practice. Ability t cllabrate with many different technical teams and lead security activities invlving analysis, escalatin, respnse, remediatin and preventin. Ability t perfrm research int threat trends and develpments, and prduce management level reprts that include recmmendatins and priritised actins. Ability t perfrm scripting and autmatin f threat management activities. Ability t develp peratinal dcumentatin, prcedures and prcesses and manage the implementatin f these acrss the relevant technical teams. Strng custmer fcus with a can-d attitude. Ability t wrk well in a team, as well as independently and withut direct supervisin. Ability t wrk well under pressure. Excellent verbal and written skills, with the ability t cmmunicate effectively at all levels. Jb Family Capabilities (capabilities specific t a jb family rle including levels f prficiency required ) Business Acumen - Fundatin Cnsulting - Intermediate Diagnstics & Analytics - Advanced Change Leadership - Fundatin Suncrp Leader Prfile Leader prfiles describe behaviural expectatins at all levels (frm Team Member t Strategic Leader) acrss the Suncrp Grup. Clarity f Purpse Knwing and cntributing t Suncrp s strategy Driving the strategy with a sense f purpse Planning fr success Custmer Fcus Knwing and delighting ur custmers Delivering great custmer utcmes Sharing and learning frm custmers 4

Relentless Executin Having clear bjectives and targets linked t strategy Measuring, adjusting and cntinually imprving results Building high perfrmance teams Building Great Teams Wrking as One Team Attracting, develping and grwing great talent Sharing and learning frm thers Simplicity and Agility Keeping things simple while driving innvatin and creativity fr cmpetitive advantage Cntinuusly imprving the way we wrk and remving blckages Anticipating and adapting t changing market and business challenges Prepared by: (Name & psitin) Apprved by: (Name & psitin) Mark Phillips Team Leader, Cyber Threat Management Clin Cassell Executive Manager, Cyber Security Operatins Date: 21/12/2015 Date: 21/12/2015 5

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information