Manager - Network Threat Detection, Protection and Analytics

Control Manager Network Threat Detection, Protection and Analytics        

• You are a cybersecurity risk and control professional with a background in network security control design and implementation.

• We are one of the best and most advanced Cybersecurity teams in Australia.

• Together we can build the Cyber Controls Chapter Area and contribute to protecting the Group, its customers and the community.

See yourself in our team:
The Cyber Controls Chapter Area plays a crucial function within the Group Security division being responsible for designing and deploying effective cyber control capabilities and overseeing continuous improvement of the Group’s cyber risk profile.

As an organisation with a large IT estate servicing millions of customers every day, we need to ensure effective mitigations are in place to defend our assets against an ever-evolving cyber threat environment. The Control Manager Network Threat Detection, Protection and Analytics will be tasked with ensuring control capabilities are in place to identify and remediate security weaknesses across the Group in a timely and effective manner.

We support our people with the flexibility to balance where work is done, with at least half your time each month connecting in the office. We also have many other flexible working options available including changing start and finish times, part-time arrangements and job share to name a few. Talk to us about how these arrangements might work for you.
Do work that matters:

Working with the Control Lead Network Threat the Control Manager will focus on:

• Establishing and maintaining control standards and guidelines to align with changes in industry standards, technology strategy and threat intelligence. Support the Control Lead Network Threat in monitoring the Group’s compliance with network security control requirements.
• Conduct annual Network Threat Detection, Protection and Analytics effectiveness assessments and plan appropriate risk remediation activities to address identified control weaknesses.
• Assist key stakeholders achieve their goals, who are responsible for the operation of network security capabilities across the Group’s critical applications and infrastructure.
• Execute on the procedures and processes that are formulated to ensure that network detection, prevention and analytics controls are complied with, continuously review, and enhance our network security policies, and contribute towards ensuring that plans exist to understand our networks to drive better secure outcomes.
• Generate regular reports on the effectiveness of the controls, including an analysis of threat trends.
• Remain current with emerging threats and share knowledge with colleagues to drive continuous improvement.

We are interested in hearing from people who:

• Embody the leadership principle of ‘Curious and Humble’ by being willing to speak up and challenge the status quo, and continually expanding their skills and knowledge.

• Experience in SOC or Incident Response highly desirable

• Are knowledgeable about cyber threats and network security.

• Can analyse threat intelligence, identify potential risks and recommend appropriate mitigations.

• Have experience working with network intrusion detection/protection systems (NIDS/NIPS), DDoS, Web Application Firewall (WAF), Web Application API Protection (WAAP) enterprise solutions and implementing management programs in large and complex IT environments.

• Can operate effectively in an agile working environment exemplifying high degrees of autonomy and self-initiative to achieve target outcomes.

Technical Skills that will benefit you in the role:

• Applied knowledge of ASD ISM, NIST, CIS and Essential Eight cyber mitigation strategies.

• Proficiency in network security tools (e.g., Corelight, Palo Alto, Suricata, Akamai, Cloudflare, etc.).

• Experience with data visualization tools (e.g., Splunk, Tableau) and proficiency in creating executive-level dashboards and reports.

• Experience in analyzing security logs to detect threats and identify anomalies.

• Familiarity of Python and scripting is beneficial.

• Security certifications regarded not necessary: CISSP, CISM, or CRISC.

Advertising End Date: 12/05/2025