About the Role

The Information Technology Unit (ITU) is seeking to appoint a Cyber Incident Responder, Senior Security Analyst to build capability to deal with mitigating ongoing cyber threats and be a pivotal role for leading the UTS operational response during any cyber incident. This is a companion role to the existing Incident Responder role. This is a critical role in enabling UTS to deal effectively with cyber threats and incidents.

Detailed Description

About You

As the Cyber Incident Responder, your responsibilities include:

• Manage the operational response to cyber incidents, working with the Security Operations Centre and where relevant the Incident Response Retainer team
• Develop operational playbooks for different types of cyber incident responses
• Manage vulnerabilities proactively and reactively through the use of scanning tools and threat intelligence sources
• Manage the SIEM, the automated event correlation ruleset, the automated alerting of events and reporting to senior management
• Provide support to the CISO and cyber Managers in the development of Cybersecurity policy

With examples from your previous work experience, please outline, in a separate document, how you meet the following five (5) key selection criteria points below:

• Experience in managing IT incidents (including cyber incidents) and managing the stakeholders involved in incident response
• Demonstrated knowledge of security concepts, scripting languages, technical solution design
• Experience managing security incident and event management tools and in using intrusion detection and protection systems for security incident monitoring and investigations (Experience with LogRhythm, Exabeam, Fortinet firewalls, AWS, Azure and McAfee ePO desirable)
• Experience in developing operational playbooks for different types of incidents / incident response
• Demonstrated ability to work collaboratively with others to achieve productive outcomes