Information Security Advisor, Systems and Infrastructure

The opportunity

You’ll be working with the Information Security Manager and inter-departmentally (“Systems and Infrastructure Platform SME’s”) for security risk identification on information assets, solutions and programs whilst recommending a viable security mitigation control that improves the overall security posture of Vocus.

As Information Security Advisor you’ll also play a key role in maintaining PCI-DSS compliance posture for Vocus, including privileged and user access reviews, and meeting our Pen testing and third-party assessment targets. Additionally, you’ll be conducting regular security compliance assessments; initiating and managing security calendar activities and validating the currency of security policies and procedures in line with security best practice, i.e. AU ISM, NIST & ISO27001 Standards and Controls.

What you’ll be doing day-today

• Proactively conducting security assessments on systems, solutions, and programs to identify security vulnerabilities/weaknesses, evaluate countermeasures, and recommend practical and best security practice to mitigate the vulnerabilities.
• Reviewing the results and recommending effective remediation of vulnerability scans, penetration tests and compliance reports.
• Participate and recommend security controls for IT related projects.
• Be a champion of effective security best practices and promote their acceptance, adoption, and socialisation.
• Review and provide access approvals for offshore teams on critical systems.
• Collaborate and work effectively with other Vocus business units including the Security Operations team.
• Participate in the information security incident management process.
• Develop and maintain regular information security reports.
• Assist the Information Security Manager with continuous review and ensuring compliance to security standards and policies.
• Perform Vendor Security Assessment and reviewing the process of onboarding vendors.
• Assist with Security Awareness training programs.

 What you’ll bring to the role

• A minimum of 6 years’ experience in a large Enterprise or Service Provider organisation.
• Tertiary qualification in IT, Computer Science, or a related discipline is desirable.
• You are passionate about information security with a strong commitment to continuously improving user experience outcomes.
• Experience with security technologies such as next generation firewalls, Network IDS/IPS, VPN, web proxy, WAF, AAA (Authentication, Authorization, and Accounting) services, Multifactor Authentication, NAC solution and SIEM.
• Experienced in vulnerability scanning, security monitoring, threat intelligence and security analytics tools such as Rapid 7, Zscaler etc.
• Infrastructure Security Hardening (System and Network) based on industry best practices.
• Experience with TSSR (Telecommunication Sector Security Reforms) submission and handling.
• Good understanding of the industry recognized cloud platforms e.g. AWS, Google, Azure.
• Network security experience, strong understanding of network fundamentals (E.g. Knowledge of Local Area Networks, TCP/IP, IPSEC and high-level communication protocols (Windows, Unix, Linux, etc.) and communication protocols running on various layers of the OSI (Open Systems Interconnection) stack.)
• Understanding of security standards such as ISO27001, PCI-DSS, AusGov PSPF, ASD Essential 8.
• ACSC Information Security Manual and security risk management.
• Knowledge and expertise in the Governance, Risk Management of technical services.

What We Offer 

Working at Vocus will give you rewarding experiences and the opportunity to do extraordinary work. You will enjoy: 

• Diverse and dynamic teams with a supportive and inclusive culture. 
• Supportive career development plans with comprehensive ongoing training, support, and development opportunities. 
• Flexible hours and a hybrid working environment 
• Generous discounts on power, gas, mobile and internet; plus, discounts to over 400 retailers. 
• Competitive leave benefits, including anniversary leave, purchased leave, parental leave, volunteering leave, study leave, and much more. We also offer a fifth week of annual leave when you hit five years of service! 
• Study assistance programs to excel your personal growth, learning and development. 
• Health and wellness offerings, including access to our wellbeing initiatives that can help you from a financial, psychological, and physical perspective. 

Working at Vocus is never just a job – it’s personal. We’re crazy about our customers and believe our people are the difference. Our wonderfully diverse team and a vibrant culture define us. We care about the impact we have on our people, our customers, and our communities and are committed to operating as a responsible, ethical business. 

We pride ourselves on setting audacious and ambitious goals and believe that we can play our part in changing the Australian telecommunications landscape and make a fundamental difference to people’s lives. 

With us, you’ll have the opportunity to lead and inspire teams, work on projects that are shaping the future of telecommunications and become part of a culture that thrives on creativity, encourages new ideas, and provides a collaborative and inclusive environment.  

About Us 

As Australia’s specialist fibre and network solutions provider, we own and operate 25,000km of secure, high-capacity fibre connecting people, businesses, governments, and communities across Australia to the world. Through our well-known retail brands, we deliver simple and affordable broadband, mobile, voice and energy services with the purpose of Building Critical Connections. Enabling Better Possibilities.  

Ready to take the next step? 

If you like the sound of this role and think you’d do a great job, but are worried you don’t tick every box, we encourage you to back yourself – we know that diverse groups are less-likely to apply for roles they’re not 100% qualified for, but just as likely to succeed at them!  

We are a proud equal opportunity employer committed to providing a safe, diverse, and inclusive working environment where all our team members feel like they belong. We know diversity makes us stronger and we encourage applications irrespective of background, age, origin, gender, sexual orientation, identity, or ability.   

If you feel comfortable, please let us know if you have any accessibility requirements upon application, so we can make any adjustments required to support you throughout our recruitment process.