11 Identity Management jobs in Australia

Title:
Technical Identity and Access Management Engineer
Your KBR future - delivering solutions and changing the world
About KBR:
We are a company of innovators, thinkers, creators, explorers, volunteers and dreamers who all share one goal - to improve the world.
KBR delivers science, technology and engineering solutions to governments and companies around the world. KBR employs approximately 34,000 people performing diverse, complex, and mission-critical roles in 33 countries.
For 65 years, KBR and its heritage companies are proud to have delivered some of Australia's largest and most complex projects.
With around 2,000 employees in 6 primary offices throughout Australia, we are committed to social and environmental sustainability and delivering projects with a digital mindset driving innovation within our business and for our customers.
We help ensure mission success on land, in the air, at sea, in space and cyberspace for our defence customers. From individual technologies and services to comprehensive project delivery and mission execution, no other company can match the breadth and depth of KBR.
KBR comprises a diverse team who provide a broad spectrum of capabilities across Australia and the Asia Pacific. Our proven project teams readily address complex and multi-disciplinary activities, providing low-risk and cost-effective solutions to the defence force.
The Opportunity:
KBR are currently seeking Technical Identity and Access Management Engineer.
As a Technical Identity and Access Management Engineer (IDAM), you will be part of a level 3 team of subject matter experts that is responsible for providing technical expertise for client's various environment and providing L3 IDAM incident management within their ITSM toolset.
The key responsibilities of the role will include, but is not limited to:
+ Provide L3 Technical Support and administration via clients ITSM toolset within the Service health indicator (SHI'S) timeframe
+ Third Party Vendor Engagement
+ Participate in client projects when required
+ Develop and Update standard Operating Procedures (SOP'S)
+ Develop and update Detailed level design
+ Participate in out of hours activities as required
As the ideal candidate you will bring:
Essential:
+ Demonstrated knowledge & Experience in Microsoft Server 2016/2019 products and integrated technologies
+ Demonstrated Knowledge of Delinea Secret Server
+ Demonstrated knowledge and Experience in Active Directory & Identify Management Services
+ Demonstrated Knowledge and Experience in Citrix Studios & Director
+ Proficiency in advanced scripting
+ ITIL V3/V4 certification
+ Tenable AD Experience
+ Certificate Management Experience
+ NV2 security clearance is required
Desirable:
+ Bachelor's degree in computer science or related field
+ Microsoft Certifications or equivalent experience
Benefits of KBR
+ A workplace culture certified as a Great Place To Work (Aus, India, UK & US)
+ Flexible working conditions
+ Competitive salary (including annual reviews)
+ Paid Parental leave
+ Paid Reservist leave
+ Income protection
+ Corporate rewards
+ Salary packaging/Novated leasing
+ Discounted employee stock purchase plans
+ Flu shots, skin checks and private health insurance discounts
+ Career development: Online learning, mentorship and career pathways
If you're ready to shape tomorrow, let's get started. Apply Now!
KBR acknowledges the Traditional Custodians of Country throughout Australia and their continuing connections to land, sea, community and culture. We pay our respects to Elders past and present.
As a Major Service Provider of the Australian Defence Force, an AGSVA security clearance will be required and compliance to International Traffic in Arms Regulations (ITAR). As such, our hiring decisions are based on the key requirements of each role and candidates are selected based on their unique strengths and experiences.
#LI-JAW1

With more than 45,000 employees and partners worldwide, the Customer Experience and Success (CE&S) organization is on a mission to empower customers to accelerate business value through differentiated customer experiences that leverage Microsoft's products and services, ignited by our people and culture. We drive cross-company alignment and execution, ensuring that we consistently exceed customers' expectations in every interaction, whether in-product, digital, or human-centered. CE&S is responsible for all up services across the company, including consulting, customer success, and support across Microsoft's portfolio of solutions and products. Join CE&S and help us accelerate AI transformation for our customers and the world.
Within CE&S, the Customer Service & Support (CSS) organization builds trust and confidence for every person and organization through delivering a seamless support experience. In CSS, we are powered by Microsoft's AI technology to help consumers, businesses, partners, and more, resolve their issues quickly and securely, helping prevent future problems from occurring and achieving more from their Microsoft investment.
In the Customer Service & Support (CSS) team we are looking for people with a passion for delivering customer success. As a Senior Technical Support Engineer, you will own, troubleshoot and solve complex customer technical issues. This opportunity will allow you to accelerate your career growth, hone your problem-solving, collaboration and research skills, and deepen your technical proficiency.
This role is flexible in that you can work up to 50% from home.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
**Responsibilities**
Support Engineers (SE) serve as frontline technical resources for Microsoft's customers and partners via phone, email or web.  They deliver unique value by collaboratively and reactively solving customer problems, providing proactive support advice, contributing to product quality and enhancements and creating self-help assets to broadly reach more customers. 
You will be part of a team responsible for providing an outstanding technical support experience to our business customers. From problem identification to full resolution, you will own and manage the customer experience over the phone and Web. When needed, you will collaborate with others to engage subject matter experts, Engineering (Product Groups) or Management. Your day to day job will be about providing both technical expertise (either on your own or by involving your colleagues) and about being an excellent communicator and a service oriented professional. You will be given the opportunity to become a subject matter expert in one or more areas and receive guidance and mentorship from your colleagues. 
**Core Responsibilities:** ** **  
+ Scope a customer's issue by collecting the relevant facts and investigate the problem by doing your own research and by involving other teams as needed. 
+ Consult and collaborate with your immediate peers or colleagues around the world and with management and engineering to resolve service issues. 
+ Act internally as a customer advocate.   
+ Empower customers to find information, self-solve when they decide to, and learn more about Microsoft products, services and support.  
+ Advise customers on how to gain additional value from their Microsoft products. 
+ Document your technical work and research to help your colleagues, improve the product, and improve the support experience. 
+ Maintain a proactive approach to customer happiness, identifying customer satisfaction concerns and managing customer expectations.
**Qualifications**
**Required Qualifications:**  
+ 5+ years in designing, implementing and supporting solutions in a complex enterprise environment. 
+ 5+ years technical background, enterprise experience, and knowledge in one or more of the technologies below:   
+ Identity Synchronization Technologies 
+ Authentication and Authorization Management 
+ Enterprise level protocols (Kerberos, PKI, Oauth, SAML, WS-Fed, etc)  
+ Identity Management 
+ Federation 
+ Security Management 
+ B2B, B2C 
+ Role based access control, Permissions management 
+ MFA 
English Language: fluent in reading, writing and speaking. If English is not native language, proficiency test results is a plus (e.g. TOEFL, TOEIC, Cambridge English Exams) 
Flexibility to adapt working hours according to business needs, including weekends and be part of on-call rotations. Though schedule changes are not frequent, you will need to have flexibility to accommodate changes as needed.  
**Preferred Qualifications:**   
+ 5+ years of experience in technology, support, training, consulting, architecting, development, network, data center operations, IT admin or operations or equivalent education in technologies below: 
+ Azure Active Directory 
+ Identity Synchronization Technologies (Dirsync, AAD Connect, FIM.etc) 
+ Active Directory Federation Services (ADFS) - or similar 3rd party experience (Shibboleth, CA SiteMinder, Okta, PING etc) 
+ Identity and Access Management 
+ Office 365 Identity Management 
+ Cloud Domain Management 
+ Cloud User Management and configuration 
**Citizenship & Citizenship Verification:** This position requires verification of Australian citizenship due to citizenship-based legal restrictions. Specifically, this position supports United States federal, state, and/or local Australian government agency customers and is subject to certain citizenship-based restrictions where required or permitted by applicable law. To meet this legal requirement, citizenship will be verified via a valid passport.
Ability to meet Microsoft, customer and / or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud Background Check upon hire / transfer and every two years thereafter.
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today - ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.
The Senior Information Security Engineer, as a key member of the Platform Support Administration team, is accountable for the administration, optimization, and continuous improvement of the ServiceNow platform, with a particular emphasis on SecOps applications. This role ensures the platform's stability and performance while aligning with organizational objectives. The individual will collaborate closely with end-users and stakeholders to provide timely and effective support.
**Key Responsibilities:**
+ Lead the day-to-day administration of the ServiceNow platform, including user and group management, access controls, data imports, and platform upgrades.
+ Develop tools in Python, bash, and/or JavaScript to replace manual work and improve customer maintenance experience.
+ Prepare to onboard new ServiceNow products. Provide training and knowledge transfer to the end users.
+ Use broad knowledge and experience of systems administration and networking principles to proactively prevent and address incidents while constantly improving documentation.
+ Participate in escalations and Root Cause Analysis of issues.
+ Configure and maintain core ServiceNow applications such as:
+ ITSM (Incident, Problem, Change, Request)
+ SecOps Applications (Vulnerability Response, Configuration Compliance Security Incident Response)
+ Serve as a lead technical expert for integrations between ServiceNow and third-party systems (e.g., via REST/SOAP APIs, MID servers).
+ Monitor platform health, performance, and security, implementing tuning and hardening measures as needed.
+ Evaluate and apply ServiceNow patches, upgrades, and hotfixes in accordance with release cycles.
+ Provide mentorship and oversight to internal and external teams.
+ Partner with stakeholders across internal Security, Digital transformation and other business units to gather requirements and implement scalable solutions.
**_Due to the nature of the role and regulatory requirements for this role, only candidates who are Australian citizens and on Australia soil can be considered._**
+ Bachelor's degree in computer science, Information Systems, or related field, or equivalent experience.
+ 5+ years of hands-on system administration experience in a complex enterprise environment.
+ Proficiency in scripting languages used in ServiceNow (e.g., JavaScript, GlideScript).
+ Experience with ServiceNow update sets, ACLs, client/server scripts, UI policies, and customizations.
+ Strong understanding of ITIL/ITSM processes.
+ Demonstrated experience managing ServiceNow upgrades and platform migrations.
**Preferred Skills:**
+ ServiceNow Certified System Administrator (CSA) certification.
+ SecOps Applications Specialist Certificate
+ AIOps experience
+ Familiarity with Agile or Scrum delivery methodologies.
+ Experience with automated testing tools in the ServiceNow ecosystem (e.g., ATF).
**Work Personas**
We approach our distributed world of work with flexibility and trust. Work personas (flexible, remote, or required in office) are categories that are assigned to ServiceNow employees depending on the nature of their work and their assigned work location. Learn more here ( . To determine eligibility for a work persona, ServiceNow may confirm the distance between your primary residence and the closest ServiceNow office using a third-party service.
**Equal Opportunity Employer**
ServiceNow is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, national origin or nationality, ancestry, age, disability, gender identity or expression, marital status, veteran status, or any other category protected by law. In addition, all qualified applicants with arrest or conviction records will be considered for employment in accordance with legal requirements.
**Accommodations**
We strive to create an accessible and inclusive experience for all candidates. If you require a reasonable accommodation to complete any part of the application process, or are unable to use this online application and need an alternative method to apply, please contact for assistance.
**Export Control Regulations**
For positions requiring access to controlled technology subject to export control regulations, including the U.S. Export Administration Regulations (EAR), ServiceNow may be required to obtain export control approval from government authorities for certain individuals. All employment is contingent upon ServiceNow obtaining any export license or other approval that may be required by relevant export control authorities.
From Fortune. ©2025 Fortune Media IP Limited. All rights reserved. Used under license.

Cloud Security Operations Senior Analyst, Global Information Security
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**Job Description:**
As a Senior Cloud Operations Specialist, you will play a pivotal role in our organization's growth and evolution. You will be responsible for modernizing our existing and future cloud operations workflows to simplify, optimize and ensure consistency in quality and urgency of investigations within our organization and a well-defined decision matrix for escalations to our partner organizations. You will also collaborate with partner teams to continually identify opportunities to reduce event volume, to increase event fidelity, and to engineer detections for new threats and risks.
Additionally, you will support development and maintenance of innovate training programs to quickly upskill existing cybersecurity operations professionals to operate in an Azure cloud operations environment as well as to be a representative for the organization on cloud related operations in any audit or regulatory examinations.
**Key Responsibilities:**
+ Investigate security events and incidents within cloud environments, utilizing advanced tools and techniques to identify threats and vulnerabilities.
+ Design and implement comprehensive workflows for handling security events, ensuring timely and effective response procedures.
+ Collaborate with cross-functional teams to develop and refine security policies, procedures, and best practices tailored to Azure cloud security operations.
+ Provide guidance and mentorship to junior team members, fostering their professional development and enhancing overall team capabilities.
+ Stay abreast of emerging threats, vulnerabilities, and industry trends, continually updating skills and knowledge to maintain expertise in cloud security.
**Qualifications:**
+ Extensive experience (7+ years) in cybersecurity operations, with experience onmulti-cloud (AWS, Azure and Google) environments.
+ Proven expertise in investigating security events and incidents within cloud environments, demonstrating strong analytical and problem-solving skills.
+ Solid understanding of regulatory compliance requirements, particularly in highly regulated industries (e.g., healthcare, finance, government).
+ Experience in designing and implementing workflows for security event investigation and response.
+ Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and mentor junior team members.
+ Ability to thrive in a fast-paced environment, managing multiple priorities and deadlines effectively.
**Required Skills:**
+ Understanding ofmulti-cloud (AWS, Azure and Google) environmentsand its associated technologies, both from Security and Cloud Ops perspective.
+ 8+ years relevant Cyber Security experience with at least five (5) years in Cloud SOC and/or Purple Team roles.
+ Experience designing and implementing technical solutions to enhance visibility, alerting capabilities, and reduce risk within Cloud IaaS, PaaS, and M365 environments.
+ Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities.
+ Experience with a range of Azure native services and tools.
+ Experience writing and modifying Analytic Rules.
+ Experience designing and implementing SOAR capabilities within Azure.
+ Deep understanding of Cyber Security control environments and their relationship to zero-trust networks.
+ Understanding of Terraform.
+ Understanding of threat frameworks, such as MITRE ATT&CK for Cloud and D3FEND.
+ Understanding of Risk Management principles.
+ Experience in building, configuring, operating and/or securing cloud infrastructure and applications with either native cloud service provider capabilities or 3rd party vendor tools.
+ Proven ability to leverage Cloud native capabilities to build custom reports and dashboards.
+ Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
+ Ability to perform root cause analyses.
+ Experience partnering with incident response teams, threat intelligence researchers, Red/Purple teams, and/or HUNT researchers.
+ Ability to support 24x7x365 global support through rotational on-call.
+ Highly organized and motivated self-starter who can deliver results with minimal direction.
+ Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation.
+ Excellent verbal and written communication skills with ability to distill key data points and effectively present information.
**Preferable Certifications:**
+ AZ-500: Azure Security Engineer Associate
+ CISSP
+ CISM
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Vice President, Insider Threat Investigations, Global Information Security, Australia
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**What you can expect**
The Cyber Security Operations (CSO) function within Global Information Security enables the various businesses of Bank of America to conduct operations in a secure, trusted, and safe manner by defending the organization and our customers from cyberattacks. Insider Threat Investigators (ITI) within CSO investigates risks and protects against threats posed to the bank by insiders and works closely with peer teams across the enterprise to ensure comprehensive and proactive controls and monitoring are in place to detect and mitigate insider risks.
Insider Threat Investigator is responsible for conducting data analysis of insider threat auditing and monitoring software resources to detect and identify insider risk activities. In addition, they will be required to complete investigations by analyzing and verifying information through various investigative techniques, internal resources, and conversations/interviews with persons of interest. The role will also require regular collaboration with experts in and out of the team, both in country and in other regions, where excellent communication skills will also be necessary.
**What you will do**
+ Conduct investigations by analyzing and verifying information through various investigative techniques, internal resources, and conversations/interviews with persons of interest;
+ Complete written reports in compliance with current reporting procedures and policies. Must have the ability to write detailed, concise, and accurate reports;
+ Ability to manage high risk regional information security incidents by working in conjunction with response partners and other risk teams;

+ Utilizing next generation tools and technology to conduct deep behavioral analytics assessments/ investigations with a focus on mitigating information security related insider threats;
+ Ability to collect and analyze data from various applications to fulfill an investigation/support request(s)
+ Document each stage of the investigation with clear & concise notes
+ Effectively pivot communication style & verbiage based on audience (i.e. non-technical)
+ Ability to collaborate well with other teams to drive resolution to an investigation, across multiple regions/countries
+ Ability to effectively multi-task between several competing efforts
+ Maintain an awareness of industry challenges and advancements to add value to enhancing processes & technologies
**Your background**
+ 5+ years' work experience with an insider threat focus or technical background that could be applied to understand key insider risk components
+ Curiosity, diversity of thought, critical thinking, willingness to learn, and persistence to identify risk
+ Methodical and systematical approach to utilizing technical tools, applications, etc.
+ Familiarity with Splunk, ENCASE, CrowdStrike and other similar investigative and/or monitoring tools
+ Exceptional written and verbal communication skills to various audiences
+ Mindset of curiosity: not afraid to learn new things
+ Excellent organizational skills to manage caseload, projects and ad hoc requests
+ Experience in conducting complex investigations with an Insider Threat emphasis
+ Knowledge in how to conduct computer forensics
+ Familiarity with participating/driving incident response events
**Desired Skills**
+ An understanding of human behavior / human psychology or investigative background
+ Technical experience with information security / data loss prevention tools or controls such as Intrusion Detection & Prevention technologies (IDS/IPS) and/or SIEM systems and other data correlation engines.
+ Extensive experience in Splunk, ENCASE, CrowdStrike and other similar investigative and/or monitoring tools
+ Certifications - Security+, Network+, CEH, CISSP, CCNA, CCNP, EnCE other cyber security related certifications
+ Familiarity with sleuthing in OSINT
+ Familiarity with working in cloud
+ Networking/System administration experience
+ Experience in scripting languages for databases
+ Bachelor's in computer science or related fields
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Vice President, Incident Response Manager, Global Information Security, Australia
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**Your background**
+ Proven experience handling Information Security related events and incidents.
+ Experience in an operations focused role with an emphasis on cyber incident response.
+ Demonstrable experience in the coordination of containment activities related to cyber security incidents.
+ Familiarity with security vulnerabilities exploits and APT tools, techniques, and procedures.
+ Familiarity with network security vulnerabilities, exploits, malware, and digital forensics desirable.
+ An excellent verbal and written communicator who can adapt to their audience.
+ Decisive and can make difficult decisions in what can be a high-pressure environment.
+ Exercise independent judgment in methods, techniques, and evaluation criteria for obtaining results.
+ Able to handle multiple competing priorities in a fast-paced environment and act without causing an undue delay.
+ Supportive and can work well as part of a team as well as independently.
+ Ability to remain calm under pressure.
+ Ability to work in a strong team-orientated environment with a sense of urgency and resilience.
+ Must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks whilst remaining risk and objective focused, with an investigative mindset.
+ Security+ or equivalent certification.
+ GCIH or equivalent certification required within six months of employment.
**What you can expect**
Cyber Incident Response and Management is part of the Cyber Response & Recovery division who provides a globally coordinated and managed response capability for information security events and incidents that may impact the confidentiality, integrity, and/or availability of the Bank's information and information systems or has privacy implications.
The role of the Senior Incident Manager is to coordinate the response and recovery activities from information security incidents. This includes collaboration with appropriate response, assist with determining the root cause of incidents and work with stakeholders and responsible parties to remediate any identified control gaps or failures; Escalate issues to management in a timely manner with appropriate information regarding severity, exposure, and action items; this role requires critical thinking and investigative mindset coupled effective written, and verbal communication skills.
This is a senior role on the team with high visibility at the global level including interacting with and providing direct updates to executives and senior leadership stakeholders. A Senior Incident Manager provides their knowledge and expertise in incident response to lead, mentor, and challenge associates on the team. The team conducts follow-the-sun (FTS) operations which you will work closely with AMRS and APAC regions.
**What you will do**
+ Establish oversight of information security events and cyber incidents and communicate analysis, containment and remediation efforts to all business partners.
+ Cyber incident response and recovery plans will be available to use and should be maintained by the team. Any issues that require management escalation will be expected to be completed in a timely manner including all appropriate information in relation to risk and action times.
+ The Cyber Incident Manager will be expected to provide status updates and post-incident findings for executives and stakeholders in non-technical terms encompassing risk, impact, likelihood, containment and remediation activities and threat actors.
+ Risk management including briefing and recommending actions to executive leadership within Global Information Security and other business partners on events and incidents.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

**Information Systems Security Office** **| Alice Springs, NT**
Amentum is a leader in global engineering, project management and solutions integration, trusted to modernize the most critical missions anywhere in the world. Driven to create a safer, smarter, cleaner world, we innovate as a team of inventive doers passionate about making a difference. Underpinned by a strong culture of ethics, safety and inclusivity. Amentum is fiercely committed to operational excellence and successful execution.
Are you seeking a career that offers a healthy work-life balance, a friendly company culture, and engagement with a supportive community?
Amentum has an exciting opportunity for a **full-time** **Information Systems Security Office** to join their team in **Alice Springs, NT - Australia.**
**_Only applicants with an active TS/SCI clearance with Polygraph will be considered_**
**THE ROLE**
**PURPOSE AND SCOPE**
The Information Systems Security Officer (ISSO) reports directly to the Information Systems security Manager and provides support to the ISSM in the development and management of operational information systems security implementation policy, procedures, and guidelines.
The ISSO is responsible for the preparation, review, and update of authorization packages. The ISSO ensures approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media.
**ESSENTIAL RESPONSIBILITIES**
**Responsibilities/Duties**
+ Conduct periodic reviews of information systems to ensure compliance with the security authorization package, notify ISSM when changes occur that might affect the authorization determination of the information system(s)
+ Coordinate any changes or modifications to hardware, software, or firmware of a system with the ISSM and AO/DAO prior to the change
+ Monitor system recovery processes to ensure security features and procedures are properly restored and functioning correctly
+ Ensure all IS security-related documentation is current and accessible to properly authorized individuals, ensure audit records are collected, reviewed, and documented (to include any anomalies)
+ Attend required technical and security training (e.g., operating system, networking, security management) relative to assigned duties
+ Execute the cyber security portion of the self-inspection, to include provide security coordination and review of all system assessment plans
+ Identify cyber security vulnerabilities and assist with the implementation of the countermeasures for them
+ Prepare reports on the status of security safeguards applied to computer systems
+ Ensure compliance with all site's environmental health and safety requirements
+ Any other reasonable duties as requested
**QUALIFICATIONS**
**Minimum Essential**
+ Bachelor's degree in a related field
+ CISSP, Security + or equivalent
+ MCSA or equivalent
**Desirable**
+ Drivers License
**EXPERIENCE AND SKILLS - Minimum Essential**
+ Minimum 2 years' experience - extensive work experience in a current ISSO role with IA Certifications may suffice for degree
+ Experience in Intelligence Community Directive 503 (ICD 503) and Risk Management Framework (RMF)
+ Meets DoD 8570.1 Certification Requirements as an Information Assurance Technical Category II (IAT II) minimum (for system and network administrators)
+ Linux experience preferred
+ Prior experience in roles such as System, Network Administrator or ISSO
+ Knowledge of databases, spreadsheets and technical report writing
+ Excellent communication skills and ability to brief at all levels to include Senior Leadership
+ Demonstrated ability to work as a member of a team
+ Ability to adapt to change and contribute to continuous improvement
+ Positive outlook and willingness to collaborate with others to achieve business outcomes
+ Demonstrated customer focus
+ Ability to demonstrate an understanding and commitment to the principles of workplace diversity and equity, and EH&S
**WORK ENVIRONMENT, PHYSICAL DEMANDS, AND MENTAL DEMANDS**
+ The ability to lift items up to 10kgs independently
+ The employee is frequently required to walk, sit, use hands to handle, or feel; reach with hands and arms; climb or balance; stoop, kneel, crouch, or crawl; and talk or hear. The employee is occasionally required to stand.
**SECURITY CLEARANCE REQUIREMENT**
It is a condition of employment that employees obtain and retain the appropriate level of security clearance and medical clearance applicable to each role. The employee must be a US citizen and will require a minimum TS/SCI with poly (U.S.) clearance.
**STATEMENT OF WORK REQUIREMENTS**
All personnel assigned shall be:
+ At least 18 years of age.
+ Able to fluently read, write and speak English
**EHS REQUIREMENT**
All Amentum personnel are responsible for understanding and complying with all site environmental, health and safety requirements. While Amentum is responsible for providing a safe workplace and is responsible for ensuring compliance with requirements of the EHS Handbook, each person is responsible for:
+ Completing work tasks in a safe manner
+ Reporting any unsafe acts or conditions to their supervisor and/or PMO/EHS Manager
+ Continuous adherence to the environmental, health and safety procedures outlined in the EHS Handbook during the performance of their work
+ Red-Carding a Job - Employee right and responsibility to "STOP WORK" if a job is unsafe or possess a danger to the environment
**QUALITY REQUIREMENT**
Quality is the foundation for the management of our business and the keystone to our goal of customer satisfaction. It is our policy to consistently provide services that meet customer expectations. Accordingly, each employee must conform to the Amentum Quality Program and carry out job activities in compliance with the Quality System documents and customer contracts. Each employee must read and understand their Quality Management and Customer Satisfaction responsibilities.
**PROCEDURE COMPLIANCE**
Each employee must read, understand and implement the general and specific operational, safety, quality and environmental requirements of all plans, procedures and policies pertaining to their job.
For further information contact
**Applicants will be required to undertake pre-employment checks which include referee checks, criminal History checks, a pre-employment medical assessment and drug test.**
Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, sex, sexual orientation, pregnancy (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, ancestry, United States military or veteran status, color, religion, creed, marital or domestic partner status, medical condition, genetic information, national origin, citizenship status, low-income status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal laws and supplemental language at Labor Laws Posters ( .

Assistant Vice President / Vice President, Digital Forensics, Global Information Security
Sydney, Australia;#02-01, Singapore
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Bank of America is seeking to expand and diversify the Digital Forensics and Incident Response (DFIR) capability with adaptable and resilient individuals from a range of different backgrounds and experience.
This role is open to **individuals with up to/between 3 to 5 years of Digital Forensics experience** .
**Required Background and Experience:**
+ Identify, analyse, and present evidential data from workstation orientated systems, including but not limited to systems installed with Microsoft Windows; and
+ Such candidates will have experience in investigating specific facets or workstreams of various incident scenarios/investigations as part of a broader DFIR/investigative team; and
+ This selected candidate will have accumulated some form of generalist or broad knowledge in computing and networking, together with at least a generalist understanding of information security technologies, techniques, and processes; and
+ The ability to participate unsupervised on incidents/investigations from commencement to cessation.
**Knowledge in one or more of the following Digital Forensics, and Incident Response (DFIR) background(s) will be advantageous, though not required:**
+ Knowledge of operating system artefacts, file systems, and inner workings of the following:
+ Microsoft Windows; and/or
+ Apple MacOS; and/or
+ Linux/Unix distributions (distros) with particular focus on RedHat.
+ Cloud and/or containerization technologies (i.e. Docker and Kubernetes) within an enterprise environment.
**Desirable Qualifications and Skills:**
+ Bachelor's degree in a Computer Science, Computer Engineering, Information Security or Cyber/Digital Forensics related discipline; and/or
+ Digital Forensics and Incident Response Certification (i.e. EnCE or related SANS certification, such as GCFA); and/or
+ Cloud related qualification or certification, such as CompTIA Cloud+, or any other related qualification in respect of Microsoft Azure or Amazon Web Services (AWS); and/or
+ Linux Qualification or Certification, such as Red Hat Certified System Administrator (RHCSA); and/or
+ Scripting experience within Windows or Linux environments
**What you will do:**
Not one day is the same for the Cyber Threat Defence (CTD) team and this is especially true for Digital Forensics (DF). Anyone working within the Digital Forensics team can expect the following:
+ Utilising your Digital Forensics and Incident Response skills to participate in incidents or investigations.
+ Discovering unfamiliar technology or data during the midst of an incident or investigation and assessing its relevance to the issues at hand, i.e. stored information, auditing capability, evidential value etc.
+ Leveraging upon your ability to communicate, either written or verbally, in a clear, concise and inclusive manner to technical and non-technical audiences with colleagues, peers and stakeholders.
+ Embracing new or upcoming technologies, and assessing how they could apply or improve upon the way in which the team responds to incidents or investigations.
+ Working alongside a global team with colleagues in the USA, Europe, and Asia-Pacific Region, whilst placing emphasis on collaboration, sharing of ideas or methodologies.
+ Willingness to undertake and share responsibilities through the participation of an on-call schedule.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Vice President, Cyber Incident Response Manager, Global Information Security, Australia
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**What you can expect**
Cyber Incident Response and Management is part of the Cyber Response & Recovery division who provides a globally coordinated and managed response capability for information security events and incidents that may impact the confidentiality, integrity, and/or availability of the Bank's information and information systems or has privacy implications.
The role of the Senior Incident Manager is to coordinate the response and recovery activities from information security incidents. This includes collaboration with appropriate response, assist with determining the root cause of incidents and work with stakeholders and responsible parties to remediate any identified control gaps or failures; Escalate issues to management in a timely manner with appropriate information regarding severity, exposure, and action items; this role requires critical thinking and investigative mindset coupled effective written, and verbal communication skills.
This is a senior role on the team with high visibility at the global level including interacting with and providing direct updates to executives and senior leadership stakeholders. A Senior Incident Manager provides their knowledge and expertise in incident response to lead, mentor, and challenge associates on the team. The team conducts follow-the-sun (FTS) operations which you will work closely with AMRS and APAC regions.
**What you will do**
+ Establish oversight of information security events and cyber incidents and communicate analysis, containment and remediation efforts to all business partners.
+ Cyber incident response and recovery plans will be available to use and should be maintained by the team. Any issues that require management escalation will be expected to be completed in a timely manner including all appropriate information in relation to risk and action times.
+ The Cyber Incident Manager will be expected to provide status updates and post-incident findings for executives and stakeholders in non-technical terms encompassing risk, impact, likelihood, containment and remediation activities and threat actors.
+ Risk management including briefing and recommending actions to executive leadership within Global Information Security and other business partners on events and incidents.
**Your background**
+ Proven experience handling Information Security related events and incidents.
+ Experience in an operations focused role with an emphasis on cyber incident response.
+ Demonstrable experience in the coordination of containment activities related to cyber security incidents.
+ Familiarity with security vulnerabilities exploits and APT tools, techniques, and procedures.
+ Familiarity with network security vulnerabilities, exploits, malware, and digital forensics desirable.
+ An excellent verbal and written communicator who can adapt to their audience.
+ Decisive and can make difficult decisions in what can be a high-pressure environment.
+ Exercise independent judgment in methods, techniques, and evaluation criteria for obtaining results.
+ Able to handle multiple competing priorities in a fast-paced environment and act without causing an undue delay.
+ Supportive and can work well as part of a team as well as independently.
+ Ability to remain calm under pressure.
+ Ability to work in a strong team-orientated environment with a sense of urgency and resilience.
+ Must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks whilst remaining risk and objective focused, with an investigative mindset.
+ Security+ or equivalent certification.
+ GCIH or equivalent certification required within six months of employment.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.