11 Threat Management jobs in Australia

**Introduction**
As a Business Sales & Delivery Executive, you will support IBM's consistent growth by bringing to the table your business development, sales, account management, and delivery skills.
**Your role and responsibilities**
The ideal candidate will be responsible for managing a team of security professionals and ensuring the successful execution of managed security services for our clients. This role involves strategic planning, client engagement, and a thorough understanding of cybersecurity protocols and trends.
Picture yourself working with a highly motivated, highly successful team with a proven sales record in top technologies. If you're ready to bring insights and experience in cloud security, we are ready to offer you a best-in-class career development.
This role is a leadership role engaged in the sales, planning and implementation of threat management solutions in our services portfolio and as such you will be self-motivated and driven to build new and maintain existing client relationships, have proven track record of meeting your sales and utilisation targets.
* Work with clients to establish a vision, gather requirements, and lead the development of winning solutions which meet client requirements, and maximize IBM's strengths
* Lead and manage the Managed Security Services (MSS) team, ensuring high performance and adherence to service level agreements (SLAs).
* Work closely with colleagues to develop client presentations and Statement of Works (SOWs) based on internal processes for release
* Analyzing and defining a client's threat management strategy based on the business strategy
* Drawing from primary and existing IBM research on evolving market trends
* Identifying issues, creating hypotheses, and executing analysis, to develop decision-ready recommendations for our clients
* Analyse and interpret test results to provide actionable recommendations for remediation, mitigation, and security enhancements.
* Communicate findings and insights to technical and non-technical stakeholders through detailed and concise reports, presentations, and discussions.
* Stay up to date with the latest cybersecurity trends to continuously improve testing methodologies and approaches.
* Provide leadership in use case design and implementation, runbook design and implementation, policy, process, technology assessment and build, governance, or organisational areas.
* Mentor and provide guidance to junior members of the team, fostering skill development and knowledge sharing.
**Required technical and professional expertise**
You understand and how to build use-cases because you know what you're looking for. For example, you understand how ransomware and other malware, or threats technically works, which logs they write to, their IOCs, network flows, and behaviors; thus, you are adapt at building custom use-cases that hunt for early indicators. Additionally, you understand how to hunt for threats, the relationship it has with forensic investigations, and creating extracts that divulge targets and areas of interest. Also, you can design Threat Hunting programs which can be taught to other analysts, or even be automated using artificial intelligence. False positives are your sworn enemies.
You must have experience writing your own queries and scripts that will allow you to search through logs, network flows, and other areas to correlate security events of interest. You are able to de-construct attacks and threats.
* Strong financial acumen and proven sales experience in Micorsoft, Palo Alto or related security technology solutions.
* At least 8-10 years' related experience in design of enterprise security service solutions (advisory, systems integration, and/or managed security services);
* Should have depth of knowledge and experience in core security domains SOC Assessments, Use Cases, SOC Runbooks, SOC Processes, SOC Operations, SIEM, Threat Hunting, Threat Intelligence, IOC's.
* Hands on experience with SIEM solutions such as Microsoft Sentinel highly desired
* Hand on SOAR: Resilient and others (SOAR workflow and playbook skill set)
* Knowledge of Palo Alto Cortex solution and XSIAM
* Knowledge and working experience with EDR, Attack Surface Management, Threat Intelligence tools
* Expert knowledge of Mitre Framework, NIST framework and Cyber Kill Chain Process.
* Scripting and custom parser knowledge required for integrations.
* An understanding of Threat Intelligence and Threat Hunting
* Proficient in incident response processes - detection, triage, incident analysis, remediation, and reporting.
* Understanding of compliance issues (ISO 27001, PCI, COBIT, GDPR, POPII, etc.) and market regulations
* Knowledge of networking fundamentals (TCP/IP, network layers, Ethernet, ARP, etc)
* Knowledge of malware operation and indicators
* Knowledge of threat landscape (threat actors, APT, cyber-crime, etc
* Knowledge of Windows and Linux
* Knowledge in penetration techniques. Extensive experience in documentation and reporting.
* Well-developed presentation skills.
* Strong communications skills both oral and written, and solid organisational skills.
* University degree in computer science, natural sciences or mathematics, engineering or an equivalent activity
**Preferred technical and professional experience**
.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

Description
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure.
The AWS Personnel Security (PerSec) team is responsible managing security clearance and vetting activities for AWS employees supporting programs, including continual assessments on suitability. As a Personnel Security Analyst, you will join a team of industry-leading security experts working with customer representatives to operate and continuously improve industry-leading personnel security programs and processes.
The AWS Security team requires innovative thinking that is balanced with a strong customer focus on quality and execution. You will have a strong track record of leading and supporting security programs, demonstrable program/project management experience, comprehensive knowledge of government clearance (e.g. AGSVA) process and reporting requirements, and a deep understanding of government security programs and processes (including securely on-boarding program staff). You will obsess over internal and external customers and successfully deliver support and services in an environment where priorities shift extremely fast. You must be able to operate independently to lead and manage personnel security projects, continuously triage and prioritise accordingly, communicate clearly and compellingly.
Key job responsibilities
- Process and review personnel security clearances and maintain all security documentation, files, and clearance and suitability rosters in accordance with government requirements.
- Contribute to the development and evolution of personnel security programs, ensuring they are operating in accordance with internal teams and external customers security policies and practices.
- Generate, track and report security metrics and activities.
- Monitor processes and drive improvements in efficiency and quality of our personnel security programs.
- Interface regularly with AWS stakeholders and government customers to support clearance activities.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
A typical day in the life of a Personnel Security Analyst begins with supporting the Personnel Security team by processing security clearances, travel notifications, and other PerSec activities, ensuring all necessary protocols are followed meticulously. Throughout the day, you will actively identifies ways to invent and simplify processes and procedures, streamlining operations for increased efficiency. You will also dedicate time to creating comprehensive reports on PerSec data and metrics, providing valuable insights to stakeholders for informed decision-making. Additionally, you will offer advice on straightforward PerSec issues to stakeholders, leveraging their expertise to address concerns effectively. You will conducts security briefings and training sessions to educate staff on best practices and compliance measures. Managing a PerSec mailbox is another crucial aspect of their day, ensuring timely responses and resolution of security-related inquiries and requests. Overall, the personnel security specialist plays a vital role in maintaining a secure and compliant environment while actively contributing to process improvement and stakeholder support.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of national security and private sector experience, providing a range of perspectives required for creative problem solving. We value diversity of thought, creativity, and a strong Bias for Action and Earn Trust. We believe that there are no "perfect" security solutions and we develop and iterate using a continuous improvement process.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Basic Qualifications
- Minimum 2 years of professional experience working on sensitive, high security programs, projects or environments
- Demonstrated experience as an analyst or similar in a government or commercial setting
- Proficient with government security frameworks, policies and standards (e.g. PSPF, ISM, DSPF. ASD Essential Eight
Preferred Qualifications
- Degree or equivalent experience in (Cyber Security, IT Security Management, Government Security, Personnel Security, Security Risk Management) a related security field
- Certificate IV in Government Security (Personnel Vetting)
- An entrepreneurial spirit; a passion to improve at every opportunity
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

Description
Amazon Web Services (AWS) is the leading cloud service provider, providing virtualised infrastructure, storage, networking, messaging, and many other services to customers all over the world, including government customers. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure.
AWS Security is looking for a highly talented and motivated Physical Security Analyst to work with our team, designing the secure facilities to maximize the effectiveness of the physical security program. The duties include extra-low voltage system design and engineering, working with the architectural and engineering teams to assure security best practices are observed, drafting new systems into the design teams build plans, and coordinating with physical security leaders to understand the new build and security system designs, adhering to an approved products list. A successful candidate will be responsible for interpretation of Risk Assessments and Threat Analysis and Physical Security Standards to assure the proper security technologies are selected to meet the unique challenges to be found in a sensitive security program.
Key job responsibilities
This role will be expected to provide in-depth security advice on the physical security architecture for the organisation. You will draw upon your strong knowledge as well as invent and innovate in the course of your duties. Key responsibilities may include:
* Lead the physical security architecture elements on a sensitive program.
* Create and communicate detailed physical security system designs and guidance to ensure compliance with government policies and frameworks.
* Subject matter expertise to support the AWS Security leadership and other security teams, with a focus on physical security.
* Physical / Protective Security Risk, Threat, and Vulnerability Management.
* Management and implement Physical security risk, threat, and vulnerability deliverables - e.g. internal and external audit items, security deliverables annual PSPF Self-assessment and ASD Cyber Survey.
* Preparation of executive level presentation packs, briefings, papers and reports to various internal and external governance bodies and stakeholders.
* Develop, oversee, and review protective security policies, procedures, processes, guidelines, forms and templates relating to protective security and day to day protective security operations.
* Identify vulnerable processes and systems and provide advice and support for the remediation of security risk and reduce exposure to security threats to support the rollout of new assets.
* Engage with and work collaboratively with stakeholders across AWS and externally, in relation to compliance obligations, e.g. PSPF and ISM.
Hold or be able to attain an Australian Government Security Vetting Agency clearance (see day in the life
Engineers in this role must show exemplary judgment in making technical trade-offs between short versus long term security and business goals. They must also demonstrate resilience and navigate difficult situations with composure and tact. Conflicts should be addressed by listening, finding the best way forward and persuading one's colleagues. Successful engineers in this role will regularly analyze their own performance with a critical eye. A broad understanding of the AWS business and its interconnections is required. This position will also provide training, advice, and mentorship to other engineers throughout AWS.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
The team is comprised of security professionals with a cross section of national security and private sector experience, providing a range of perspectives required for creative problem solving. We value diversity of thought, creativity, and a strong Bias for Action and Earn Trust. We believe that there are no "perfect" security solutions and we develop and iterate using a continuous improvement process.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Basic Qualifications
* Degree in Architectural, Electrical Engineering, or Physical Security or equivalent experience in a related security field.
* 2+ years' experience in physical security system design and engineering.
* Proficient with government security frameworks, policies and standards (e.g. PSPF, ISM, DSPF. ASD Essential Eight)
Preferred Qualifications
* Physical Security Design experience in corrections, military, government, or museum environments.
* PSP, CPP, PMP Certification
* CPTED Certification
* Proven ability to not only influence but lead business partners and supporting teams
Acknowledgement of country:
In the spirit of reconciliation Amazon acknowledges the Traditional Custodians of country throughout Australia and their connections to land, sea and community. We pay our respect to their elders past and present and extend that respect to all Aboriginal and Torres Strait Islander peoples today.
IDE statement:
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.

**Description**
+ Develop your leadership potential within the cyber domain as a shift lead.
+ Mentor your fellow team members in technical and professional skill.
+ Build and shape security tooling to defend critical national security infrastructure.
+ Challenge yourself by sinking your teeth into some wicked problem sets.
+ Help build the team culture that you have always wanted to work in.
+ Due to the nature of the role, **you must be an Australian Citizen and hold either a NV-1 or NV-2 Security Clearance.**
**Do Work That Matters**
Leidos Australia delivers IT and airborne solutions that protect and advance the Australian way of life. Our 2000 local experts, backed by our global experience and network of partners, are working to solve the world's toughest challenges in government, intelligence, defence, aviation, border protection and health markets.
Leidos Australia is expanding our 24x7x365 Central Processing Cyber Security Operations Centre (CP SOC) capability with the Department of Defence. CP SOC works collaboratively with the Defence Security Operations Centre (DSOC) to assist in defending one of the largest and most complex ICT networks in the southern hemisphere.
**Your New Role and Responsibilities**
We seek an experienced Senior Cyber Security Analyst to inspire, motivate, and mentor team members in achieving Defence mission outcomes.
This permanent role requires the successful applicant to work on a rotating shift roster (typically 12-hour shifts) onsite at HMAS Harman in Canberra.
**The roles and responsibilities extend to:**
+ Demonstrating leadership as the shift lead and within the broader team to meet mission and contractual outcomes.
+ Working collaboratively with stakeholders to triage, manage and report on security incidents.
+ Actively developing SOC tactics, techniques and procedures (TTPs) and security toolsets.
+ Develop custom signatures to Identify, Detect, Protect, Respond and Recover from adversaries' attacks.
+ Assist in threat hunt operations using known adversary TTPs and Indicators of Compromise (IOCs) to detect advanced threats.
+ Develop security operational documentation and Incident reportwriting.
+ Undertake management Service Level Reporting in line withcontractual requirements and emerging business needs on the security of theenvironment.
+ Identify and evaluate new sources of intelligence and integrate numerous types of cyber security data sources into cyber threat analysis products.
**What You'll Bring to Make an Impact**
This role is suited to a Senior Cyber Security Analyst who holds:
+ Industry ICT Security qualifications such as CompTIA Sec+, CISSP, GIAC, GCIHetc. (are desired but not essential).
+ Tertiary education (Bachelor's degree in Engineering, Computer Science or equivalent) desired, but not essential (equivalent work experience highly preferred).
+ Current NV-1 or NV-2 Security Clearance.
Additionally, you would also be able to demonstrate experience in:
+ Developing, maintaining and monitoring SIEM (Splunk) apps, rulesets, dashboards and workflows.
+ Intermediate to advanced Windows, Linux and Networking skills.
+ Intermediate to advanced Incident Response professional skills.
+ Trellix EPO, Tenable and Palo Alto platforms, or similar.
+ Scripting and automation technologies.
To be successful in this role, you will need:
+ Self-starting individual with the right attitude, aptitude and zeal to identify, take ownership of and solve challenging problems.
+ Interest in continual learning and development of the team and themselves.
+ Be prepared to upskill yourself and the team to respond to adversaries rapidly.
+ Strong communication and stakeholder management skills.
+ Clear working understanding of industry and government cyber security frameworks.
Don't worry if you don't tick all the boxes - if you meet most of them, we encourage you to submit your application. We're most interested in your strengths, what you want to learn and how far you want to go.
_Due to the nature of the role, you must be an Australian Citizen and hold and active NV-1 or NV-2 security clearance._
**Diverse Team Members, Shared Values and a Common Purpose**
_Providing our customers with smarter solutions takes an incredible team with diversity of thought, experience and perspectives driving innovation. Inclusion is at the heart of our culture and is one of our core values. It's about creating a workplace where everyone can do important work, feels welcome, valued, and respected, and has equal access to opportunities to thrive. Paul Chase - Chief Executive, Leidos Australia._
Leidos Australia is an equal opportunities organisation and is committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islanders, culturally and linguistically diverse people, people with disabilities, veterans, neurodiverse people, and people of all genders, sexualities, and age groups.
Our five Advocacy Groups (Women and Allies Network,Young Professionals, Defence & Emergency Services, Action for Accessibility and Abilities and Pride+) provide an opportunity for team members to connect and collaborate on shared interests, and work to support and celebrate our diverse community.
**Next Steps**
+ To apply for this role, follow the links or apply via our Careers page.
+ Recruitment process - 1 virtual interview and/or 1 face-to-face & background checks.
+ Applicants may also need to meet International Traffic in Arms Regulations (ITAR) requirements. In certain circumstances this can place limitations on persons who hold dual nationality, permanent residency or are former nationals of certain countries as per ITAR 126.1.
+ We are committed to making our recruitment process accessible to all candidates. Please get in touch with our Careers team if you'd like to discuss any additional support during your application or throughout the recruitment process.
**Original Posting:**
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
**Pay Range:**
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
REQNUMBER: R-00156415
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.

**Description**
+ Gain hands on work experience whilst completing your studies
+ Support Federal Government security frameworks
+ Excellent career development in a culture that embraces flexible work arrangements
Our team feel Leidos is a great place to work. Learn more about our culture and benefits by visiting us here Work That Matters**
Leidos Australia delivers IT and airborne solutions that protect and advance the Australian way of life. Our 2000 local experts, backed by our global experience and network of partners, are working to solve the world's toughest challenges in government, intelligence, defence, aviation, border protection and health markets.
**Your New Role and Responsibilities**
This opportunity is for students currently studying an IT related degree, diploma or certification.
We are looking for an entry level Security Operations Admin to support a range of tasks in a new program within our Digital Modernisation Division. If you are considering a role in IT security - this is the role for you!
This role will involve helping to understand the current system, identifying areas that need improvement, and working on plans to achieve the desired changes. You will assist with evaluating, designing, planning, and carrying out updates to the system. Additionally, you will help maintain both the current system and the new system after changes are made, ensuring everything meets Australian standards and best practices.
An average week for an Intern Security Operations Analyst could incorporate wide range of activities, including:
+ Support Federal Government security frameworks.
+ Help create and update important security documents to reflect changes in the environment.
+ Contribute to auditing Leidos Managed systems against the Essential Eight framework, ensuring compliance with security standards.
+ Support the development of Access Management designs, security policies, procedures, and practices for event logging and auditing.
+ Assist in security design reviews, manage risks proactively, ensure software patching and security updates, enforce security during operations, and support ongoing security testing and accreditation processes.
**What You'll Bring to Make An Impact**
Along with your education and any practical experience, Leidos values individuals who use their initiative and seek to understand the business and develop relationships based on respect.
+ Currently studying IT related Degree or Certification.
+ Strong communication and teamwork skills, with a user-focused approach?
+ Willingness to learn and assist across diverse support functions
+ Proactive problem-solving skills and a commitment to continuous learning
Don't worry if you don't tick all the boxes - if you meet most of them, we encourage you to submit your application. We're most interested in your strengths, what you want to learn and how far you want to go.
_This role does require the successful applicant to be an Australian Citizen and be_ ? _willing to obtain and hold a NV-1 or greater security clearance._
**Diverse Team Members, Shared Values and a Common Purpose**
_Providing our customers with smarter solutions takes an incredible team with diversity of thought, experience and perspectives driving innovation. Inclusion is at the heart of our culture and is one of our core values. It's about creating a workplace where everyone can do important work, feels welcome, valued, and respected, and has equal access to opportunities to thrive. Paul Chase - Chief Executive, Leidos Australia._
Leidos Australia is an equal opportunities organisation and is committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islanders, culturally and linguistically diverse people, people with disabilities, veterans, neurodiverse people, and people of all genders, sexualities, and age groups.
Our five Advocacy Groups (Women and Allies Network,Young Professionals, Defence & Emergency Services, Action for Accessibility and Abilities and Pride+) provide an opportunity for team members to connect and collaborate on shared interests, and work to support and celebrate our diverse community.
**Next Steps**
+ To apply for this role, follow the links or apply via our Careers page.
+ Recruitment process - application screening, interview, and background checks.
+ Applicants may also need to meet International Traffic in Arms Regulations (ITAR) requirements. In certain circumstances this can place limitations on persons who hold dual nationality, permanent residency or are former nationals of certain countries as per ITAR 126.1.
+ We are committed to making our recruitment process accessible to all candidates. Please contact our Careers team if you'd like to discuss any additional support during your application or throughout the recruitment process.
Come break things (in a good way). Then build them smarter.
We're the tech company everyone calls when things get weird. We don't wear capes (they're a safety hazard), but we do solve high-stakes problems with code, caffeine, and a healthy disregard for "how it's always been done."
**Original Posting:**
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
**Pay Range:**
The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
REQNUMBER: R-00163295
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.

**Our Purpose**
_Mastercard powers economies and empowers people in 200+ countries and territories worldwide. Together with our customers, we're helping build a sustainable economy where everyone can prosper. We support a wide range of digital payments choices, making transactions secure, simple, smart and accessible. Our technology and innovation, partnerships and networks combine to deliver a unique set of products and services that help people, businesses and governments realize their greatest potential._
**Title and Summary**
Lead, Technology Risk Management
Overview
The Mastercard Technology Regulatory Relations & Market Compliance Team is looking for a Manager (Lead) Technology Risk Analyst to be part of the controls' assurance program supporting various requirements to meet customer and regulatory obligations for the related region. The focus of the role would be around providing compliance support, monitoring, and reporting of the on-going operating effectiveness of Mastercard's internal control environment while ensuring compliance with regulatory requirements, internal policies and industry standards.
Mastercard is committed to balancing innovation while protecting the internal control posture. The team assesses internal controls to proactively identify risks, define remediation actions and track remediation efforts. We are looking for someone to join our team and help us meet these compliance goals. This person will be a technically savvy person who likes to solve issues and drive outcomes.
The ideal candidate will have the ability to think and act both strategically and tactically while ensuring that the corporation remains compliant with required security, technology, and financial standards, as well as industry best practices.
Job Responsibilities
- Act as an advisory, a focal point for security and compliance-related activities and responsibilities that includes implementation of ISO 27001 standards within the organization.
- Identify and evaluate technology risks and any related potential security weaknesses through risk and control assessments across systems, application, infrastructure and processes in accordance with industry standards
- Establish and track remediation internally and externally through to resolution whilst improving design and operational effectiveness of controls.
- Collaborate with key internal stakeholders from Technology and Business to ensure required deliverables are accurate, complete, timely and within the level of expectations required.
- Proactive in providing suggestions in process related improvements and constantly be informed of evolving regulatory and cybersecurity related requirements
- Proficient in providing risk insights to the leadership team through risk dashboards for key initiatives, plans and audit tracking of the current processes as per management requirements.
About You:
- Experience in working with digital and technology functions ideally in a technology and/or cybersecurity related compliance role including managing complex technology / cyber security related audit / regulatory projects.
- Strong understanding of IT general controls and technology and/or cybersecurity risk management frameworks such as NIST, ISO 27001/27002, GDPR, data privacy related regulations,
- Bachelor's degree or equivalent combination of education and experience/Bachelor's degree in Computer Science, Information Technology or related field preferred
- Possess one or more professional certifications (i.e. CISA or CISSPISO 27001 LEAD AUDITOR /Implementer (Desirable)
- Demonstrate proficiency in information security domains technical background in IT processes and systems related risks.
- Self driven with strong organizational and time management skills
- Experience in managing complex projects related to information security
**Corporate Security Responsibility**
All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working for, or on behalf of, Mastercard is responsible for information security and must:
+ Abide by Mastercard's security policies and practices;
+ Ensure the confidentiality and integrity of the information being accessed;
+ Report any suspected information security violation or breach, and
+ Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines.

Title:
System Engineer - Risk Management
Belong. Connect. Grow. with KBR!
KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. In this position, your work will have a profound impact on the country's most critical role - protecting our national security.
Why Join Us?
+ Innovative Projects: KBR's work is at the forefront of engineering, logistics, operations, science, program management, mission IT and cybersecurity solutions.
+ Collaborative Environment: Be part of a dynamic team that thrives on collaboration and innovation, fostering a supportive and intellectually stimulating workplace.
+ Impactful Work: Your contributions will be pivotal in designing and optimizing defense systems that ensure national security and shape the future of space defense.
This is a contingent position based upon contract award
Who We AreKBR Government Solutions delivers full life cycle professional and technical solutions that improve operational readiness and drive innovation. Our solutions help ensure mission success on land, air, sea, space and cyberspace for the Department of Defense, Intelligence Community, NASA and other federal agencies. KBR's areas of expertise include engineering, logistics, operations, science, program management, mission IT and cybersecurity. KBR strives to create a safer, more secure and sustainable world by bringing together the best and brightest to deliver technologies and solutions that help our customers accomplish their most critical missions and objectives.
The Mission AheadThis role is with KBR's Government Solutions U.S. division. At KBR Government Solutions, we don't just envision a world that's safer, more secure, and sustainable - we create it. Our legacy of delivering advanced full life cycle professional and technical solutions is matched only by our commitment to operational readiness and innovation. As stewards of critical missions for the Department of Defense, Intelligence Community, NASA, and other key federal entities, we excel in engineering, logistics, operations, science, program management, mission IT, and cybersecurity. United in our quest for excellence, KBR stands at the vanguard, ready to transform possibilities into impactful realities for a better tomorrow.
Who You AreYou're a strategic and detail-oriented Systems Engineer: Risk Manager with a strong background in identifying, assessing, and mitigating risks within complex systems and projects. Your expertise in risk management, system architecture, and engineering principles allows you to develop robust strategies that minimize potential threats and ensure system resilience. You excel at balancing technical requirements with risk mitigation strategies, ensuring that projects are both secure and successful.
At KBR, you bring a proactive mindset and a strong ability to anticipate and manage risks, safeguarding critical systems and operations. Known for your analytical thinking, problem-solving skills, and ability to collaborate across teams, you thrive in environments where your strategic input ensures the continued success and stability of mission-critical systems.
What You'll DoIn the role of Systems Engineer: Risk Manager, your duties will include:
+ Lead risk assessments and develop risk management plans for systems and projects across various domains.
+ Identify potential risks, threats, and vulnerabilities within system designs and operations.
+ Collaborate with engineering teams to create and implement risk mitigation strategies and solutions.
+ Conduct regular risk reviews and ensure compliance with safety, security, and regulatory standards.
+ Use data analysis tools to evaluate system performance and identify areas for improvement.
+ Communicate risk assessments and mitigation plans to stakeholders and senior leadership.
+ Assist in the development of system architectures and designs with a focus on minimizing risks.
+ Support the creation of contingency plans and disaster recovery procedures to address critical system failures.
+ Stay up to date with industry best practices, standards, and regulatory requirements related to risk management.
Requirements:
+ Must be a US or Australian citizen
+ Must Possess an active US Top Secret/SCI w/ Polygraph or AUS PV Clearance.
+ Bachelor's degree in Systems Engineering, Risk Management, or a related field.
+ Must have 7 years of related experience supporting large systems and sub-systems.
+ Experience in Model Based Systems Engineering (MBSE)
+ Proven experience in systems engineering and risk management.
+ Strong understanding of risk analysis tools and techniques.
+ Expertise in system architecture and lifecycle management.
+ Ability to assess and mitigate technical, operational, and financial risks.
+ Excellent communication and interpersonal skills, with the ability to present technical information to non-technical stakeholders.
+ Detail-oriented with strong analytical and problem-solving skills.
+ Ability to work collaboratively with cross-functional teams and senior leadership.
This role will be located in Alice Springs. This position is expected to be onsite 100%.
#SF
Belong, Connect and Grow at KBRAt KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together.
KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

Azure Cloud Security Operations Sr Analyst, Global Information Security
Sydney, Australia
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge
Refer a friend
**To proceed with your application, you must be at least 18 years of age.**
Acknowledge ( Description:**
At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.
Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates' physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.
At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!
**Job Description:**
As an Azure Senior Cloud Operations Specialist, you will play a pivotal role in our organization's growth and evolution. You will be responsible for modernizing our existing and future cloud operations workflows to simplify, optimize and ensure consistency in quality and urgency of investigations within our organization and a well-defined decision matrix for escalations to our partner organizations. You will also collaborate with partner teams to continually identify opportunities to reduce event volume, to increase event fidelity, and to engineer detections for new threats and risks.
Additionally, you will support development and maintenance of innovate training programs to quickly upskill existing cybersecurity operations professionals to operate in an Azure cloud operations environment as well as to be a representative for the organization on cloud related operations in any audit or regulatory examinations.
**Key Responsibilities:**
+ Investigate security events and incidents within cloud environments, utilizing advanced tools and techniques to identify threats and vulnerabilities.
+ Design and implement comprehensive workflows for handling security events, ensuring timely and effective response procedures.
+ Collaborate with cross-functional teams to develop and refine security policies, procedures, and best practices tailored to Azure cloud security operations.
+ Provide guidance and mentorship to junior team members, fostering their professional development and enhancing overall team capabilities.
+ Stay abreast of emerging threats, vulnerabilities, and industry trends, continually updating skills and knowledge to maintain expertise in cloud security.
**Qualifications:**
+ Extensive experience (7+ years) in cybersecurity operations, with a focus on Azure.
+ Proven expertise in investigating security events and incidents within cloud environments, demonstrating strong analytical and problem-solving skills.
+ Solid understanding of regulatory compliance requirements, particularly in highly regulated industries (e.g., healthcare, finance, government).
+ Experience in designing and implementing workflows for security event investigation and response.
+ Strong communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and mentor junior team members.
+ Ability to thrive in a fast-paced environment, managing multiple priorities and deadlines effectively.
**Required Skills:**
+ Understanding of Azure and its associated technologies, both from Security and Cloud Ops perspective.
+ 8+ years relevant Cyber Security experience with at least five (5) years in Cloud SOC and/or Purple Team roles.
+ Experience designing and implementing technical solutions to enhance visibility, alerting capabilities, and reduce risk within Cloud IaaS, PaaS, and M365 environments.
+ Experience reviewing applications, infrastructure, and architectural designs to identify threats and vulnerabilities.
+ Experience with a range of Azure native services and tools.
+ Experience writing and modifying Analytic Rules.
+ Experience designing and implementing SOAR capabilities within Azure.
+ Deep understanding of Cyber Security control environments and their relationship to zero-trust networks.
+ Understanding of Terraform.
+ Understanding of threat frameworks, such as MITRE ATT&CK for Cloud and D3FEND.
+ Understanding of Risk Management principles.
+ Experience in building, configuring, operating and/or securing cloud infrastructure and applications in Azure with either native cloud service provider capabilities or 3rd party vendor tools.
+ Proven ability to leverage Azure native capabilities to build custom reports and dashboards.
+ Ability to independently assess risks and identify vulnerabilities in infrastructure with an eagerness to suggest new processes, policies, and overall improvements to internal security controls.
+ Ability to perform root cause analyses.
+ Experience partnering with incident response teams, threat intelligence researchers, Red/Purple teams, and/or HUNT researchers.
+ Ability to support 24x7x365 global support through rotational on-call.
+ Highly organized and motivated self-starter who can deliver results with minimal direction.
+ Ability to navigate and collaborate effectively within a geographically complex and dispersed global corporation.
+ Excellent verbal and written communication skills with ability to distill key data points and effectively present information.
**Preferable Certifications:**
+ AZ-500: Azure Security Engineer Associate
+ CISSP
+ CISM
Bank of America and its affiliates consider for employment and hire qualified candidates without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote the concept of equal employment opportunity, in accordance with all applicable federal, state, provincial and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our teammates.
To view the "Know your Rights" poster, CLICK HERE ( .
View the LA County Fair Chance Ordinance ( .
Bank of America aims to create a workplace free from the dangers and resulting consequences of illegal and illicit drug use and alcohol abuse. Our Drug-Free Workplace and Alcohol Policy ("Policy") establishes requirements to prevent the presence or use of illegal or illicit drugs or unauthorized alcohol on Bank of America premises and to provide a safe work environment.
To view Bank of America's Drug-free Workplace and Alcohol Policy, CLICK HERE .
Bank of America is committed to an in-office culture with specific requirements for office-based attendance and which allows for an appropriate level of flexibility for our teammates and businesses based on role-specific considerations. Should you be offered a role with Bank of America, your hiring manager will provide you with information on the in-office expectations associated with your role. These expectations are subject to change at any time and at the sole discretion of the Company. To the extent you have a disability or sincerely held religious belief for which you believe you need a reasonable accommodation from this requirement, you must seek an accommodation through the Bank's required accommodation request process before your first day of work.
This communication provides information about certain Bank of America benefits. Receipt of this document does not automatically entitle you to benefits offered by Bank of America. Every effort has been made to ensure the accuracy of this communication. However, if there are discrepancies between this communication and the official plan documents, the plan documents will always govern. Bank of America retains the discretion to interpret the terms or language used in any of its communications according to the provisions contained in the plan documents. Bank of America also reserves the right to amend or terminate any benefit plan in its sole discretion at any time for any reason.

Quality Engineer, Safety Management System Manager & Site Risk Representative
Company : Safran Helicopter Engines
Job field : Quality
Location : Bankstown , New South Wales , Australia
Contract type : Permanent
Contract duration : Full-time
Required degree : Certificate / Diploma / Advanced Diploma
Required experience : More than 5 years
Professional status : Professional, Engineer & Manager
# QESMSR0725-160089
Apply with one click Any questions ?
**Job Description**
At Safran Helicopter Engines Australia, we are proud to be at the forefront of the helicopter industry, supporting essential emergency services, government bodies, and ensuring people can get to their holiday destinations safely and on time. Our work goes beyond engines - we are part of a system that saves lives, supports communities, and makes unforgettable experiences possible for travellers across the globe.
We are looking for a passionate Quality Engineer, Safety Management System (SMS) & Risk Manager with exceptional communication skills to join our Quality Department at Bankstown Airport. Reporting to the Director of Quality & Industrial Services, the successful candidate will be responsible for supporting internal and external stakeholders by providing expert coaching in Quality and Continuous Improvement, with a strong emphasis on Process Excellence.
In addition, the role encompasses leadership of Safran Helicopter Engines Australia's Safety Management System (SMS) and Risk Programs, with a particular focus on the proactive identification, analysis, and mitigation of operational risks to enhance organisational resilience and safety performance.
If you are ready to contribute to an exciting and meaningful industry, this is the opportunity for you
Key Responsibilities:
- Attend and act as coach at assigned Quick Response Quality Control (QRQC) ritual meetings to ensure the QRQC methodology is being practiced as intended.
- Promote the dedicated Problem-Solving Methodology, by assisting and training employees daily
- Fulfill a coaching and mentoring role by supporting the implementation of corrective actions through the application of established problem-solving methodologies
- Support process owners and their teams with the creation and maintenance of their associated One Safran process documentation (Procedures, Instructions, templates etc.) as required.
- Conduct audits in accordance with the established annual audit plan, and where necessary, issue Corrective Action Requests (CARs), Opportunities for Improvement (OFIs), and electronic QRQCs (e-QRQCs), while providing guidance to pilots in the application of appropriate problem-solving methodologies.
- Perform Basic Audits as per the annual schedule and as directed.
- Deliver Aviation Safety and Part 145 & MOE training in the capacity of a Trainer. The role also requires flexibility to provide instruction on a range of additional topics as needed, in alignment with organisational training requirements.
- Lead, coordinate and advocate the activities related to SMS implementation
- Manage the documentation specific to SMS in agreement with the SMS Corporate manual.
- Promote two-way communication regarding safety issues at all levels of the organisation.
- Make sure that the necessary means to implement the SMS on the site are sufficient
- Prepare and lead the site SMS reviews.
**Job Requirements**
- Analyse trends relating to hazards, events and occurrences and implement the measures necessary for the treatment of safety problems.
- Ensure the reporting of SMS specific KPI's both internally at Safran HE Australia and to the Corporate SMS Manager
- Contribute to the development of the Safran group safety policy.
- Coordinate with the SafranHE Australia Pty Ltd WH&S committee to participate in site safety reviews audits.
- Ensure requirements of the Safran HE Charter of SMS Managers is complied with.
- Lead, coordinate and advocate the activities related to Risk Management
- Actively oversee the Business Continuity Planning and implementation. Coaching and mentoring other Quality Engineers and Process owners through this process will be required.
- Assist with the management and maintenance of the Inspection and Test Equipment calibration process and system database as directed.
We are looking for:
- Minimum of five years engineering experience in either the aviation or automotive industry.
- Minimum tertiary qualifications - Certificate IV Aero skills (Mechanical) or equivalent.
- Leadership skills
- Green Belt and/ or Black Belt certification will be well regarded but not essential.
- French language skills will be well regarded but are not essential.
- Internal Auditor and/ or Lead Auditor qualification will be well regarded.
- Knowledge of Airworthiness Regulations will be well regarded.
- A qualification gained as a Certificate IV Workplace Trainer and Assessor will be highly regarded but is not essential.
Our Ideal Candidate:
- A self-motivated individual who thrives in an independent, results-oriented environment.
- A team-oriented mindset, with the ability to collaborate across departments and regions.
- Strong interpersonal skills with a proven ability to build and maintain relationships at local and global levels.
- High attention to detail, with excellent organizational and problem-solving abilities.
- A proactive work ethic with a commitment to follow up on inquiries until a satisfactory solution is achieved.
- Demonstrated leadership qualities with a commitment to continuous learning and professional growth.
How to Apply
If you are a highly motivated, results-driven professional looking for an exciting challenge, we would love to hear from you.
Candidates must currently have the legal right to work in Australia to be eligible to apply for this position.
Please note all final applicants for this position will be asked to complete a national police check and each application will be considered on its merits.
All applications should include a covering letter and up to date CV and be submitted to the attention of Human Resources quoting reference number QESMSR0725.
To submit your application on our website it is best to use Chrome, Firefox or Internet Explorer on a desktop. If you have any issues submitting your application please contact Tara on 02 9796 6600.
**Company Information**
Safran is an international high-technology group, operating in the aviation (propulsion, equipment and interiors), defense and space markets. Its core purpose is to contribute to a safer, more sustainable world, where air transport is more environmentally friendly, comfortable and accessible. Safran has a global presence, with 100,000 employees and sales of 27.3 billion euros in 2024, and holds, alone or in partnership, world or regional leadership positions in its core markets.
Safran is in the 2nd place in the aerospace and defense industry in TIME magazine's "World's best companies 2024" ranking.
Safran Helicopter Engines is the world's leading manufacturer of helicopter engines, with more than 75,000 produced since being founded. It offers the widest range of helicopter turboshafts in the world and has more than 2,500 customers in 155 countries.
**Locate your future workplace**
115 Wackett Street2200
Bankstown
New South Wales Australia
100,000
employees worldwide
27
Number of countries where Safran is located
35
business area families
+ Maps are available under theOpen Database Licence ( .
+ © OpenStreetMap ( contributors.
+ © Safran
Safran is an Equal Opportunity Employer
All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, or other legally protected status.