What Jobs are available for Information Security in Australia?

Vice President, Cyber Incident Response Manager, Global Information Security, Australia
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being an inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**What you can expect**
Cyber Incident Response and Management is part of the Cyber Response & Recovery division who provides a globally coordinated and managed response capability for information security events and incidents that may impact the confidentiality, integrity, and/or availability of the Bank's information and information systems or has privacy implications.
The role of the Senior Incident Manager is to coordinate the response and recovery activities from information security incidents. This includes collaboration with appropriate response, assist with determining the root cause of incidents and work with stakeholders and responsible parties to remediate any identified control gaps or failures; Escalate issues to management in a timely manner with appropriate information regarding severity, exposure, and action items; this role requires critical thinking and investigative mindset coupled effective written, and verbal communication skills.
This is a senior role on the team with high visibility at the global level including interacting with and providing direct updates to executives and senior leadership stakeholders. A Senior Incident Manager provides their knowledge and expertise in incident response to lead, mentor, and challenge associates on the team. The team conducts follow-the-sun (FTS) operations which you will work closely with AMRS and APAC regions.
**What you will do**
+ Establish oversight of information security events and cyber incidents and communicate analysis, containment and remediation efforts to all business partners.
+ Cyber incident response and recovery plans will be available to use and should be maintained by the team. Any issues that require management escalation will be expected to be completed in a timely manner including all appropriate information in relation to risk and action times.
+ The Cyber Incident Manager will be expected to provide status updates and post-incident findings for executives and stakeholders in non-technical terms encompassing risk, impact, likelihood, containment and remediation activities and threat actors.
+ Risk management including briefing and recommending actions to executive leadership within Global Information Security and other business partners on events and incidents.
**Your background**
+ Proven experience handling Information Security related events and incidents.
+ Experience in an operations focused role with an emphasis on cyber incident response.
+ Demonstrable experience in the coordination of containment activities related to cyber security incidents.
+ Familiarity with security vulnerabilities exploits and APT tools, techniques, and procedures.
+ Familiarity with network security vulnerabilities, exploits, malware, and digital forensics desirable.
+ An excellent verbal and written communicator who can adapt to their audience.
+ Decisive and can make difficult decisions in what can be a high-pressure environment.
+ Exercise independent judgment in methods, techniques, and evaluation criteria for obtaining results.
+ Able to handle multiple competing priorities in a fast-paced environment and act without causing an undue delay.
+ Supportive and can work well as part of a team as well as independently.
+ Ability to remain calm under pressure.
+ Ability to work in a strong team-orientated environment with a sense of urgency and resilience.
+ Must be able to think outside the box and develop solutions to accomplish seemingly impossible tasks whilst remaining risk and objective focused, with an investigative mindset.
+ Security+ or equivalent certification.
+ GCIH or equivalent certification required within six months of employment.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Cloud Security Operations Senior Analyst, Global Information Security
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**Job Description:**
As a Senior Cloud Operations Specialist, you will play a pivotal role in our organization's growth and evolution. You will be responsible for modernizing our existing and future cloud operations workflows to simplify, optimize and ensure consistency in quality and urgency of investigations within our organization and a well-defined decision matrix for escalations to our partner organizations. You will also collaborate with partner teams to continually identify opportunities to reduce event volume, to increase event fidelity, and to engineer detections for new threats and risks.
Additionally, you will support development and maintenance of innovate training programs to quickly upskill existing cybersecurity operations professionals to operate in an Azure cloud operations environment as well as to be a representative for the organization on cloud related operations in any audit or regulatory examinations.
**Key Responsibilities:**
+ Investigate security events and incidents within cloud environments, utilizing advanced tools and techniques to identify threats and vulnerabilities.
+ Design and implement comprehensive workflows for handling security events, ensuring timely and effective response procedures.
+ Collaborate with cross-functional teams to develop and refine security policies, procedures, and best practices tailored to Azure cloud security operations.
+ Provide guidance and mentorship to junior team members, fostering their professional development and enhancing overall team capabilities.
+ Stay abreast of emerging threats, vulnerabilities, and industry trends, continually updating skills and knowledge to maintain expertise in cloud security.
**Qualifications:**
+ Extensive experience (7+ years) in cybersecurity operations, with experience onmulti-cloud (AWS, Azure and Google) environments.
+ Proven expertise in investigating security events and incidents within cloud environments, demonstrating strong analytical and problem-solving skills.
+ Solid understanding of regulatory compliance requirements, particularly in highly regulated industries (e.g., healthcare, finance, government).
+ Experience in designing and implementing workflows for security event investigation and response.
+ Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and mentor junior team members.
+ Ability to thrive in a fast-paced environment, managing multiple priorities and deadlines effectively.
**Required Skills:**
+ Understanding ofmulti-cloud (AWS, Azure and Google) environmentsand its associated technologies, both from Security and Cloud Ops perspective.
+ 8+ years relevant Cyber Security experience with at least five (5) years in Cloud SOC and/or Purple Team roles.
+ Experience designing and implementing technical solutions to enhance visibility, alerting capabilities, and reduce risk within Cloud IaaS, PaaS, and M365 environments.
+ Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities.
+ Experience with a range of Azure native services and tools.
+ Experience writing and modifying Analytic Rules.
+ Experience designing and implementing SOAR capabilities within Azure.
+ Deep understanding of Cyber Security control environments and their relationship to zero-trust networks.
+ Understanding of Terraform.
+ Understanding of threat frameworks, such as MITRE ATT&CK for Cloud and D3FEND.
+ Understanding of Risk Management principles.
+ Experience in building, configuring, operating and/or securing cloud infrastructure and applications with either native cloud service provider capabilities or 3rd party vendor tools.
+ Proven ability to leverage Cloud native capabilities to build custom reports and dashboards.
+ Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
+ Ability to perform root cause analyses.
+ Experience partnering with incident response teams, threat intelligence researchers, Red/Purple teams, and/or HUNT researchers.
+ Ability to support 24x7x365 global support through rotational on-call.
+ Highly organized and motivated self-starter who can deliver results with minimal direction.
+ Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation.
+ Excellent verbal and written communication skills with ability to distill key data points and effectively present information.
**Preferable Certifications:**
+ AZ-500: Azure Security Engineer Associate
+ CISSP
+ CISM
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Vice President, Insider Threat Investigations, Global Information Security, Australia
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**What you can expect**
The Cyber Security Operations (CSO) function within Global Information Security enables the various businesses of Bank of America to conduct operations in a secure, trusted, and safe manner by defending the organization and our customers from cyberattacks. Insider Threat Investigators (ITI) within CSO investigates risks and protects against threats posed to the bank by insiders and works closely with peer teams across the enterprise to ensure comprehensive and proactive controls and monitoring are in place to detect and mitigate insider risks.
Insider Threat Investigator is responsible for conducting data analysis of insider threat auditing and monitoring software resources to detect and identify insider risk activities. In addition, they will be required to complete investigations by analyzing and verifying information through various investigative techniques, internal resources, and conversations/interviews with persons of interest. The role will also require regular collaboration with experts in and out of the team, both in country and in other regions, where excellent communication skills will also be necessary.
**What you will do**
+ Conduct investigations by analyzing and verifying information through various investigative techniques, internal resources, and conversations/interviews with persons of interest;
+ Complete written reports in compliance with current reporting procedures and policies. Must have the ability to write detailed, concise, and accurate reports;
+ Ability to manage high risk regional information security incidents by working in conjunction with response partners and other risk teams;

+ Utilizing next generation tools and technology to conduct deep behavioral analytics assessments/ investigations with a focus on mitigating information security related insider threats;
+ Ability to collect and analyze data from various applications to fulfill an investigation/support request(s)
+ Document each stage of the investigation with clear & concise notes
+ Effectively pivot communication style & verbiage based on audience (i.e. non-technical)
+ Ability to collaborate well with other teams to drive resolution to an investigation, across multiple regions/countries
+ Ability to effectively multi-task between several competing efforts
+ Maintain an awareness of industry challenges and advancements to add value to enhancing processes & technologies
**Your background**
+ 5+ years' work experience with an insider threat focus or technical background that could be applied to understand key insider risk components
+ Curiosity, diversity of thought, critical thinking, willingness to learn, and persistence to identify risk
+ Methodical and systematical approach to utilizing technical tools, applications, etc.
+ Familiarity with Splunk, ENCASE, CrowdStrike and other similar investigative and/or monitoring tools
+ Exceptional written and verbal communication skills to various audiences
+ Mindset of curiosity: not afraid to learn new things
+ Excellent organizational skills to manage caseload, projects and ad hoc requests
+ Experience in conducting complex investigations with an Insider Threat emphasis
+ Knowledge in how to conduct computer forensics
+ Familiarity with participating/driving incident response events
**Desired Skills**
+ An understanding of human behavior / human psychology or investigative background
+ Technical experience with information security / data loss prevention tools or controls such as Intrusion Detection & Prevention technologies (IDS/IPS) and/or SIEM systems and other data correlation engines.
+ Extensive experience in Splunk, ENCASE, CrowdStrike and other similar investigative and/or monitoring tools
+ Certifications - Security+, Network+, CEH, CISSP, CCNA, CCNP, EnCE other cyber security related certifications
+ Familiarity with sleuthing in OSINT
+ Familiarity with working in cloud
+ Networking/System administration experience
+ Experience in scripting languages for databases
+ Bachelor's in computer science or related fields
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Assistant Vice President / Vice President, Digital Forensics, Global Information Security
Sydney, Australia;#02-01, Singapore
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day.
One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We're devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being.
Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization.
Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us!
Bank of America is seeking to expand and diversify the Digital Forensics and Incident Response (DFIR) capability with adaptable and resilient individuals from a range of different backgrounds and experience.
This role is open to **individuals with up to/between 3 to 5 years of Digital Forensics experience** .
**Required Background and Experience:**
+ Identify, analyse, and present evidential data from workstation orientated systems, including but not limited to systems installed with Microsoft Windows; and
+ Such candidates will have experience in investigating specific facets or workstreams of various incident scenarios/investigations as part of a broader DFIR/investigative team; and
+ This selected candidate will have accumulated some form of generalist or broad knowledge in computing and networking, together with at least a generalist understanding of information security technologies, techniques, and processes; and
+ The ability to participate unsupervised on incidents/investigations from commencement to cessation.
**Knowledge in one or more of the following Digital Forensics, and Incident Response (DFIR) background(s) will be advantageous, though not required:**
+ Knowledge of operating system artefacts, file systems, and inner workings of the following:
+ Microsoft Windows; and/or
+ Apple MacOS; and/or
+ Linux/Unix distributions (distros) with particular focus on RedHat.
+ Cloud and/or containerization technologies (i.e. Docker and Kubernetes) within an enterprise environment.
**Desirable Qualifications and Skills:**
+ Bachelor's degree in a Computer Science, Computer Engineering, Information Security or Cyber/Digital Forensics related discipline; and/or
+ Digital Forensics and Incident Response Certification (i.e. EnCE or related SANS certification, such as GCFA); and/or
+ Cloud related qualification or certification, such as CompTIA Cloud+, or any other related qualification in respect of Microsoft Azure or Amazon Web Services (AWS); and/or
+ Linux Qualification or Certification, such as Red Hat Certified System Administrator (RHCSA); and/or
+ Scripting experience within Windows or Linux environments
**What you will do:**
Not one day is the same for the Cyber Threat Defence (CTD) team and this is especially true for Digital Forensics (DF). Anyone working within the Digital Forensics team can expect the following:
+ Utilising your Digital Forensics and Incident Response skills to participate in incidents or investigations.
+ Discovering unfamiliar technology or data during the midst of an incident or investigation and assessing its relevance to the issues at hand, i.e. stored information, auditing capability, evidential value etc.
+ Leveraging upon your ability to communicate, either written or verbally, in a clear, concise and inclusive manner to technical and non-technical audiences with colleagues, peers and stakeholders.
+ Embracing new or upcoming technologies, and assessing how they could apply or improve upon the way in which the team responds to incidents or investigations.
+ Working alongside a global team with colleagues in the USA, Europe, and Asia-Pacific Region, whilst placing emphasis on collaboration, sharing of ideas or methodologies.
+ Willingness to undertake and share responsibilities through the participation of an on-call schedule.
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Urgent requirement of Security Architect  - Perm/ Contract  - Sydney RequirementsMust Oversee RegStar 26's end-to-end security architectureSkilled in enterprise security frameworks, cloud identity Azure AD, encryption and network segmentationEstablish security patterns, assess risk, and ensure alignment with Transport's Cyber Security Policy, standards, and architectural governanceVery Good Communication SkillsDuration: Permanent / 6 Months   and possible extension Eligibility:  Australian/NZ Citizens/PR Holders only Email:

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services.
We are seeking a skilled and motivated Security Operations Engineer with a strong background in network security, cloud infrastructure, and automation. If you have a passion for security and a keen interest in securing enterprise environments through modern tools and practices, including Azure DevOps, Microsoft Defender, and OT/ICS security, we want to hear from you.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Manage and optimize network security infrastructure including NGFWs (e.g., Palo Alto Networks), IDS/IPS, and segmentation.
+ Develop and maintain secure Azure cloud environments using Infrastructure-as-Code (IaC) tools such as Terraform or ARM templates.
+ Build and maintain CI/CD pipelines in Azure DevOps with integrated security controls.
+ Collaborate with SOC and engineering teams to enhance detection capabilities and automate response workflows.
+ Integrate and tune Microsoft Defender solutions including Defender for Endpoint, Identity, and Cloud.
+ Support OT/ICS security initiatives through monitoring, protocol analysis, and segmentation.
+ Contribute to detection engineering efforts and SIEM content development.
+ Document processes, playbooks, and technical configurations.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
+ Strong background in Firewalls or Intrusion detection or prevention systems
+ Experience working in hybrid cloud environments and securing enterprise infrastructure.
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ DevOps & Automation: Proficiency in CI/CD pipeline development, secure deployment practices, and automation scripting (PowerShell, Python).
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent.
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security and/or Security+ certification.
+ Hands on experience with SIEM/SOAR platforms and Microsoft Defender suite
+ OT/ICS Security: Any experience with industrial control systems is preferred (not mandatory)
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Microsoft's Cloud Operations & Innovation (CO+I) is the engine that powers our cloud services.
We are seeking a skilled and motivated Security Operations Engineer with a strong background in network security, cloud infrastructure, and automation. If you have a passion for security and a keen interest in securing enterprise environments through modern tools and practices, including Azure DevOps, Microsoft Defender, and OT/ICS security, we want to hear from you.
Microsoft's mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond.
Do you want to empower billions across the world? Come and join us in CO+I and be at the forefront of the action!
**Responsibilities**
**Responsibilities:**
+ Manage and optimize network security infrastructure including NGFWs (e.g., Palo Alto Networks), IDS/IPS, and segmentation.
+ Develop and maintain secure Azure cloud environments using Infrastructure-as-Code (IaC) tools such as Terraform or ARM templates.
+ Build and maintain CI/CD pipelines in Azure DevOps with integrated security controls.
+ Collaborate with SOC and engineering teams to enhance detection capabilities and automate response workflows.
+ Integrate and tune Microsoft Defender solutions including Defender for Endpoint, Identity, and Cloud.
+ Support OT/ICS security initiatives through monitoring, protocol analysis, and segmentation.
+ Contribute to detection engineering efforts and SIEM content development.
+ Document processes, playbooks, and technical configurations.
**Other**
+ Embody our culture ( and values ( .
**Qualifications**
**Required Qualifications:**
+ 3+ years of experience in software development lifecycle, large-scale computing, modeling, cyber security, anomaly detection, Security Operations Center (SOC) detection, threat analytics, security incident and event management (SIEM), information technology (IT), and operations incident response
+ OR Bachelor's Degree in Statistics, Mathematics, Computer Science or related field.
+ Strong background in Firewalls or Intrusion detection or prevention systems
+ Experience working in hybrid cloud environments and securing enterprise infrastructure.
**Other Requirements:**
+ Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to, the following specialized security screenings: Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
**Background Check Requirements:**
Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. These requirements include, but are not limited to the following specialized security screenings:
+ Microsoft Cloud Background Check: This position will be required to pass the Microsoft Cloud background check upon hire/transfer and every two years thereafter.
While not required, we also look for the following **Preferred Qualifications:**
+ DevOps & Automation: Proficiency in CI/CD pipeline development, secure deployment practices, and automation scripting (PowerShell, Python).
+ Relevant cloud infra certifications such as SC-200, AZ-500, or equivalent.
+ CISSP, CISA, CISM, SANS, GCIA, GCIH, OSCP, PCCSE, PCNSE, PCSAE, CCNP Security, CCIE Security and/or Security+ certification.
+ Hands on experience with SIEM/SOAR platforms and Microsoft Defender suite
+ OT/ICS Security: Any experience with industrial control systems is preferred (not mandatory)
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

Title:
Information Assurance Manager
Belong. Connect. Grow. with KBR!
KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role - protecting our national security.
Why Join Us?
+ Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
+ Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace.
+ Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.
This is a contingent position based upon contract award.
Who We AreKBR Government Solutions delivers full life cycle professional and technical solutions that improve operational readiness and drive innovation. Our solutions help ensure mission success on land, air, sea, space and cyberspace for the Department of Defense, Intelligence Community, NASA and other federal agencies. KBR's areas of expertise include engineering, logistics, operations, science, program management, mission IT and cybersecurity. KBR strives to create a safer, more secure and sustainable world by bringing together the best and brightest to deliver technologies and solutions that help our customers accomplish their most critical missions and objectives.
The Mission AheadThis role is with KBR's Government Solutions U.S. division. At KBR Government Solutions, we don't just envision a world that's safer, more secure, and sustainable - we create it. Our legacy of delivering advanced full life cycle professional and technical solutions is matched only by our commitment to operational readiness and innovation. As stewards of critical missions for the Department of Defense, Intelligence Community, NASA, and other key federal entities, we excel in engineering, logistics, operations, science, program management, mission IT, and cybersecurity. United in our quest for excellence, KBR stands at the vanguard, ready to transform possibilities into impactful realities for a better tomorrow.
Who You AreYou're a highly skilled and proactive Information Assurance Manager with a strong background in safeguarding information systems, managing cybersecurity risks, and ensuring the integrity of sensitive data. With expertise in security frameworks, regulatory compliance, and risk management, you excel at developing, implementing, and maintaining robust information security strategies. Your leadership and technical expertise make you a key player in protecting an organization's digital assets and infrastructure.
At KBR, you bring a deep understanding of information security protocols, along with the ability to lead teams and collaborate across departments to identify and mitigate cybersecurity risks. Known for your attention to detail, strong analytical skills, and ability to stay ahead of emerging threats, you ensure that KBR's systems and data remain secure and compliant with industry standards. Your commitment to safeguarding information aligns with KBR's mission to provide innovative and reliable solutions that support mission success.
What You'll DoIn the role of Information Assurance Manager, your duties will include:
+ Recommends connection approval/disapproval/modification based on security risks/system vulnerabilities.
+ Provides systems administration and information assurance support for classified systems
+ Configures/validates information system compliance using DISA STIGs, SCAP Compliance Checker (SCC), and STIG Viewer.
+ Initiates, and follows through to completion, RMF packages for enterprise architectures in accordance with NISPOM/DAAPM, ICD 503/CNSSI 1253, JSIG, NIST 800-53 and NIST 800-171.
+ Creates/maintains Assessment and Authorization (A&A) packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs), and Plans of Action & Milestones (POA&Ms).
+ Establishes appropriate security systems/policies/standards/procedures in compliance with applicable Government and corporate directives/guidelines/contractual obligations.
+ Conducts analysis/assessment of the security control assessment guidance/procedures/templates to ensure correct implementation of the new RMF assessment processes.
+ Identifies/contains/investigates/reports data spills to the Government ISSM.
+ Coordinates containment and device sanitization at affected locations and provides an assessment/mitigation strategy addressing the data spill.
+ Provide technical oversight for classified system compliance and conducts self-assessments.
+ Other duties as required.
Requirements:
+ Must be a US or Australian Citizen
+ Must Possess a US TS/SCI with Polygraph or AUS PV Clearance.
+ Must have a minimum of a BA/BS from an accredited institution.
+ Must have a minimum of five years of experience as an IT systems administrator.
+ Must possess a DoDD .1-M) IAT Level 2 certification.
+ Must have experience with Windows operating systems and Active Directory.
+ Must have experience with NIST 800-53 and RMF accreditations and DISA Security Technical Implementation Guides (STIG), SCAP Compliance Checker (SCC), and STIF Viewer
+ Attention to Detail: Precision and attention to detail to ensure high-quality service delivery and compliance with safety standards.
+ Adaptability: Flexibility to adapt to changing conditions, technologies, and requirements.
+ Decision-Making Ability: Strong decision-making skills to resolve issues quickly and effectively under pressure.
This role will be located in Alice Springs. This position is expected to be onsite 100%.INCLUSION AND DIVERSITY AT KBRAt KBR, we are passionate about our people, sustainability, and our Zero Harm culture.These inform all that we do and are at the heart of our commitment to and ongoing journey toward being a more inclusive and diverse company. That commitment is central to our team of teams philosophy and fosters an environment of real collaboration across cultures and locations. Our individual differences and perspectives bring enhanced value to our teams and help us develop solutions for the most challenging problems. We understand that by embracing those differences and working together, we are more innovative, more resilient, and safer.We Deliver - Together.BENEFITSKBR offers a best-in-class total compensation and benefits package including a 401k plan with company match, medical, dental, vision, life insurance, AD&D, flexible spending account, disability, paid time off, or flexible work schedule. We also support career advancement through professional training and development. Learn more about our benefits. ( KBR EQUAL OPPORTUNITY EMPLOYER STATEMENTKBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.
#SF
Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

Description
Amazon Web Services (AWS) Physical Security is seeking a highly talented and motivated Protective Security Program Manager to join our team. As the Regional Manager of the Cleared Escort Program, you will manage a crucial internal security service that ensures construction and operations activities comply with strict government security regulations. Your primary focus will be providing and managing cleared security escorts for both new data center developments and existing facility expansions, maintaining the delicate balance between operational efficiency and security compliance.
This role is instrumental in implementing and overseeing security protocols that safeguard sensitive areas while facilitating necessary work by uncleared personnel. You will coordinate cleared escorting services across a multifaceted organisational landscape. Your role involves interfacing with diverse technical teams, while also
collaborating with supply chain experts, construction personnel, security specialists, and operations managers. You will serve as the primary representative for the Cleared Escorting team in strategic contract discussions, with dual responsibilities in managing both supply and demand aspects. On the supply side, you will oversee escort vendor relationships and management and establish a centralised pool of escorting resources. On the demand side, you will engage with various stakeholders throughout the matrix organization to assess, fulfill and coordinate their cleared escort support requirements, ensuring alignment between business operations and security protocols.
The ideal candidate for the role will be willing and able to work autonomously with minimal guidance or supervision, build relationships across peer teams, stakeholders, and partner organisations, at all levels, and to be able to influence cooperation in order to achieve program and project progress and completion. You will have an in depth knowledge of security practices and technology, be innovative, highly organised and know how to deliver results on time and on budget. You are able to solve ambiguous problems, proactively identify existing or imminent requirements, and apply mitigation strategies to reduce overall risk to project completion. You may be asked to use your knowledge to assess processes, program plans, and operations requirements to find solutions or to meet project deadline.
Key job responsibilities
- Lead the regions cleared escort program from construction for new data centers, data center expansions and operations.
- Communications (Stakeholder, Customer, and Vendor)
- Resource vendor management
- Demand forecasting and utilization
- Escort clearance processing,
- Training and delivery
- Resource prioritization and scheduling
- Escalation reporting and management
- Reporting (financial, business analytics and voice of the customer) in written format.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
Partner with all infrastructure and service Technical Infrastructure Program Managers and Project Managers to manage escort requirements across the lifecycle of the region. Work directly with cleared escort vendors, personnel security partners to clear, onboard/train, schedule and deliver the resource to customers. Maintain routine communication with stakeholders for daily escort utilization. Measure, assess and report out program analytics and voice of the customer feedback in support of business reviews.
About the team
Diverse Experiences
Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship and Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Basic Qualifications
- 5+ years in program or project management.
- 3+ years working with physical security.
- 3+ years working implementing government regulations and requirements.
- Proficient in Microsoft Office applications.
- Ability to interpret and execute program objectives and the compilation of and adherence to project timetables.
Preferred Qualifications
- BA/BS degree or higher in related field.
- PMP Certification or familiarity with continuous improvement, project management principles, Kaizen Six Sigma.
- Excellent oral and written communication skills.
- Experience in the delivery of physical security projects or programs within an enterprise setting.
- Experience working cross-functionally leading both technical and non-technical teams.
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.