Do you want to be part of using the business of banking as a force for good? Do you want to create positive impact for people and the planet? Bank Australia is the bank for people who want to be part of a movement creating a fairer and more just world.

We’re growing fast as more people choose to align their banking with their values. We’re a customer owned, B Corp certified bank. We empower our staff and 185,000+ customers to be part of the clean money movement.

We currently have a permanent, full time opportunity for an Information Security Analyst to join our Information Security team and contribute towards the establishment and maintenance of a well-structured and mature cyber security environment.

The Information Security Analyst will be responsible for detection, prevention, responding to and triaging of information security incidents. In addition you will play a key role in the team in building our information security situational awareness.

Why join us

• We have big plans to become Australia’s most trusted bank and a leading purpose-driven business
• As a certified B Corp, we’re part of a global business community who meet the highest social and environmental standards, putting purpose over profit
• Every role and person in our bank is essential to bringing our values, purpose and aspiration to life
• We offer flexible working options, competitive salary and 13% super
• Our staff have access to a range of meaningful benefits to support their physical and mental wellbeing including 24/7 free counselling, free flu vaccinations and discounted gym memberships
• We also support staff with study assistance, paid parental leave (regardless of gender), volunteer, bereavement, gender affirmation and family violence leave; and the opportunity for bonus annual leave
• We support our staff to grow their careers through learning and development and an organisational culture where we reward and recognise innovation and values, not long hours
• We are committed to building an inclusive culture and a diverse workforce that reflects the Australian community
• We care for a conservation reserve – where we work with key partner organisations to protect threatened species and involve staff in conservation.

What you will be doing

• Perform day to day monitoring, analysis, response and triaging of security alerts and incidents
• Triage phishing emails, taking appropriate containment and remediation actions to prevent security incidents
• Support vulnerability management and penetration testing processes
• Support information security threat intelligence and threat hunt capability
• Keep up to date with trends in information security and ensure appropriate controls are in place to protect Bank Australia from security threats
• Support testing and verifying security controls across both internal systems and systems managed by third parties
• Provide input into regular security reporting including security control status and trends in adversary behaviours
• Contribute to the deployment, maintenance and continuous improvement of Bank Australia’s information security capability
• Create and maintain security operational documentation
• Ensure continuous validation and uplift of incident response plans and play books
• Contribute a strong security voice to the business across various security domains including information security monitoring and threat prevention
• Ensure continuous compliance with policies, standards and best practice.

What you will bring

• 3-5 years’ experience as an information security analyst or similar role
• One or more relevant cyber security certifications
• Understanding of current cyber security threat trends and how to protect and defend against such threats
• Knowledge of and experience with core infrastructure technologies, such as (but not limited to) workstation and server platforms, networking and cloud services including best practice and related standards
• Knowledge and understanding of authentication and authorisation technology
• Exposure and understanding of security frameworks and standards including APRA CPS 234, NIST Cyber Security Framework, ISO27001, PCI DSS, ASD Essential
• An understanding of security technologies used to detect, contain or prevent security incidents such as IDS/IPS, Endpoint Security, Firewalls, Content Inspection and SIEM
• Exposure working with security controls such as SIEMs, endpoint security solutions, email security gateways, web proxies
• Strong communications skills (interpersonal, verbal and written) and ability to share knowledge and educate others
• Conceptual, problem solving and analytics skills, with a high attention to detail
• Relevant tertiary qualification or progress towards attaining a relevant qualification will be highly regarded
• Familiarity with the banking industry is a bonus
• Commitment to Bank Australia’s purpose, aspiration, values and brand as well as the B Corp ethos.

By submitting an application you agree to Bank Australia’s Privacy Policy for applicants and confirm that you are legally able to work in Australia. Bank Australia is an equal opportunity employer committed to sustainable development. We encourage people from different backgrounds to apply, including Aboriginal and Torres Strait Islander people, people from different cultural backgrounds and people with disabilities because we want to reflect the diversity of our communities. We are committed to making reasonable adjustments to provide a positive, barrier-free recruitment process and supportive workplace.

Bank Australia reserves the right to withdraw this advertisement at any time. Candidates will be progressed as applications are received, rather than after the advertisement closure date. If you wish to be considered, please submit your application as soon as possible. Please note, the successful candidate will be subject to satisfactory background checks including but not limited to police and previous employment.