Security Analyst

**Why work for Brennan?**

At Brennan, we aim to lead, not follow. One of the ways we do this is through an open diverse culture that values performance, where anyone in the team can bring new ideas to the table and see them thrive. Our people are empowered, unique, considerate, supportive, trusting and accepting being the cornerstone of the business. Because of this approach, we have now become the largest Australian owned systems integrator in Australia.

**Brennan offers an excellent remuneration package and benefits including**:

- A strong culture underpinned by values that are truly lived every day.
- An environment that embraces learning and development of all employees.
- Flexibility to work in the way that brings out the best in you.
- The ability to do what you love, in an environment that supports you.
- A focus on health and well-being.

**The Role**:

- Responsible for managing IT security related cases.
- Responsible for 24/7 response of known and emerging threats escalated to you.
- Responsible for documenting and reviewing knowledgebase (Athena) articles.
- Responsible for 24/7 monitoring and event management of Antivirus subscription and service alerts.
- Responsible for vulnerability monitoring and mitigation.
- Responsible for adhering to ITIL processes such as Change Management, Incident Management, Problem Management.

**Key Responsibilities**:
**Information Security (Level 3)**
- Contribute to vulnerability assessments.
- Recognise when an IT network/system has been attacked internally, by a remote host, or by malicious code, such as virus, worm, or trojan etc., or when a breach of security has occurred.
- Take immediate action to limit damage, according to the organization’s security policy, which may include escalation to next level, and records the incident and action taken.
- Demonstrate effective communication of security issues to business managers and others.
- Perform basic risk assessments for small information systems.

**Security Administration (Level 4)**
- Investigate identified security breaches in accordance with established procedures and recommend any required actions.
- Assist users in defining their access rights and privileges and administer logical access controls and security systems.
- Maintain security records and documentation.

**Technical Specialism (Level 4)**

**Information Assurance (Level 5)**
- Provide authoritative advice and guidance on information assurance architecture and strategies to manage identified risk.
- Familiarity with major legislation relevant to security of information.
- Interpret security and assurance policies and contribute to development of standards and guidelines that comply with these.
- Use testing to support information assurance.

**Service Desk and Incident Management (Level 4)**
- Ensure that incidents and requests are handled according to agreed procedures.
- Ensure that documentation of the supported components is available and in an appropriate form for those providing support.
- Create and maintain support documentation.

**Problem Management (Level 5)**
- Ensure that appropriate action is taken to investigate and resolve incidents and problems in systems and services.
- Ensure that such incidents and problems are fully documented within the relevant reporting system(s).
- Coordinate the implementation of agreed remedies and preventative measures.

**Service Level Management (Level 4)**
- Perform defined tasks to monitor service delivery against service level agreements and maintain records of relevant information.
- Analyse service records against agreed service levels regularly to identify actions required to maintain or improve levels of service and initiate or report these actions.

**Change Management (Level 4)**
- Assess, analyse, develop, documents and implement changes based on requests for change.

**Configuration Management (Level 6)**
- Manage configuration items (CIs) and related information.
- Investigate and implement tools, techniques, and processes for managing CIs and verify that related information is complete, current, and accurate.

**What skills and experience you bring**:

- Degree or equivalent in Information Technology/Cyber Security.
- CEH or equivalent.
- SSCP, CISSP, CISA, CCNP, MCSA, CCNA, MS 500, AZ 500, SC 900.
- 1-3 years of experience in a similar capacity.
- Understand cloud security architecture and incident response.
- Capable of working comfortably in Windows, Linux, and VMWare environments.
- Understand malware analysis using advanced techniques (static and dynamic analysis) and prepare a comprehensive report.

**Brennan IT** is an equal opportunity employer.