Cyber Security Infrastructure Engineer
North Sydney, Australia
Company Description
Nine is Australia’s largest locally owned media company – the home of Australia’s most trusted and loved brands spanning News, Sport, Lifestyle, and Entertainment. We pride ourselves on creating the best content, accessed by consumers when and how they want – across Publishing, Broadcasting and Digital.
Nine’s assets include the 9Network, major mastheads such as The Sydney Morning Herald, The Age and The Australian Financial Review, radio stations 2GB, 3AW, 4BC and 6PR, digital properties such as nine.com.au, 9Now, 9Honey, Pedestrian.TV, Drive, subscription video platform Stan and a majority investment in Domain Group.
Our Purpose: We shape culture by sparking conversations, challenging perspectives, and entertaining our communities.
We bring people together by celebrating the big occasions and connecting the everyday moments. Australia belongs here. We bring our purpose to life via three shared values: We walk the talk, turn over every stone and keep it human.
Job Description
The Nine Cyber Security team is looking for a strong network focused cyber security engineer. This role plays a crucial role in safeguarding Nine’s critical systems and data by overseeing key controls that protect Nine’s data and content.
The Cyber Security Infrastructure Engineer will be delivering new capabilities such as network detection and response - including tuning detections and working closely with the SOC to deploy use cases to manage and treat the risks that Nine face. Other facets of the role will include auditing and improving cloud based web application firewalls and other cyber security capabilities related to large scale, high bandwidth networks.
The role will also work closely with the networking team, auditing and reviewing and improving firewall controls across the group. Class leading visualisation and audit tools such as Algosec are currently being deployed - experience here a plus!
This role will also gain exposure to security in AWS and GCP, working closely with Cloud Security engineers and other members of the Cyber team.
This role will also assist the cybersec team in performing other key security functions such as vulnerability management and other cyber security engineering tasks involving product evaluation and implementation, risk management and security incident response.
Key accountabilities:
Implement, configure, and maintain NDR solutions to securely manage, detect and respond to network events
Appropriately manage risk by balancing business needs with network security policies and other controls
Monitor and audit risky network activities, ensuring compliance with policies and promptly addressing any anomalies or security incidents.
Conduct regular reviews of firewall / application / network security policies
Prioritise network vulnerabilities based on risk and potential impact, working with relevant teams for resolution.
Collaborate with IT and security teams to facilitate the timely remediation of identified vulnerabilities.
Track and report on the progress of vulnerability remediation efforts to senior management.
Stay informed about emerging threats and vulnerabilities by monitoring security advisories, research reports, and threat intelligence sources.
Translate threat intelligence into actionable insights for managing risk
Report on the effectiveness of network security policies and controls
Qualifications
Bachelor's degree in cybersecurity, information technology, or a related field. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) or equivalent.
Proven experience in network security software or related cybersecurity software.
Excellent communication and interpersonal skills.
Analytical mindset with the ability to assess and address security risks.
Proven experience in vulnerability management, penetration testing, or related cybersecurity roles.
Strong understanding of vulnerability scanning tools, risk assessment methodologies, and best practices.
Knowledge of common vulnerabilities and exposure (CVE) databases and industry standards like Common Vulnerability Scoring System (CVSS).
Excellent communication and collaboration skills.
Analytical mindset with the ability to prioritise and address security vulnerabilities effectively.
Additional Information
Our Commitment to Diversity and Inclusion:
At Nine, we are committed to fostering a workforce that embraces all aspects of diversity and inclusion and where practices are equitable to ensure our people experience a sense of belonging. From day one, you'll be encouraged to bring your whole self to work and will be supported to perform at your best. Should you require any adjustments to the recruitment process in order to equitably participate, we encourage you to advise us at the time of application.
We encourage applications from Aboriginal and Torres Strait Islander people, people with disabilities, and of all ages, nationalities, backgrounds and cultures.
Disclaimer: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits AWS CISM CISSP Cloud Compliance CVSS Firewalls GCP Incident response Monitoring Network security Pentesting Risk assessment Risk management SOC Threat intelligence Vulnerabilities Vulnerability management
Perks/benefits: Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Officer jobs
- Open Information Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Penetration Tester jobs
- Open IT Security Analyst jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open IT Security Engineer jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Cybersecurity Specialist jobs
- Open Windows-related jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Pentesting-related jobs
- Open ISO 27001-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open IAM-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open Threat intelligence-related jobs
- Open SaaS-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open Java-related jobs
- Open Forensics-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs