Vulnerability and Threat Manager

PRIMARY DETAIL

Lead the management of vulnerabilities and threats across the IT environment for Macquarie University and entities. Hybrid working arrangement.
• From $180,537 to $190,569 per annum (HEW Level 10 - Band 2), plus 17% employer's superannuation and annual leave loading.
• Full-time, fixed-term role for 2 years. Based at Wallumattagal campus, North Ryde.
• Newly created & critical role within our Cyber Security team. Hybrid working arrangement.

THE ROLE

Our Cyber Security team within MQ IT is seeking an expert in vulnerability and threat management to join the team to proactively lead the end-to-end management of these potential risks across the IT environment for Macquarie University and entities.

Reporting to the Chief Information Security Officer, you will:

• Lead and manage the investigation, identification and reporting of security vulnerabilities, including recommending the prioritisation of vulnerabilities, across the Macquarie’s IT ecosystem; providing subject matter expertise and delivering solutions that remediate and/or reduce risks that align with compliance requirements, industry’s best practices and current technologies.
• Manage the configuration and orchestration of systems and scripts to automate the identification and processing of systems weaknesses/vulnerabilities. 
• Develop dashboards and reports for MQ IT as well as preparation of reports, insights and presentations for key stakeholders to inform risks and remediation progress for greater organisational visibility and informed decision making.
• Develop and maintain documentation of Vulnerability Management processes and practices to drive knowledge sharing across IT and stakeholders across the University and entities to build understanding, capability and adoption.
• Partner with IT systems owners to provide expert advice and support the identification and remediation of systems weaknesses/vulnerabilities including tracking remediation works via the relevant ticketing system.
• Build adequate coverage of notifications from vendors to ensure that common vulnerabilities and exposures (CVEs) and patches that are made available are received and processed by the Cyber Security team in a timely manner.
• Work closely with MQ IT and internal/external stakeholders to evaluate the configuration of a solution to ensure robust security practices.
• Build and maintain effective and collaborative relationships with internal and external stakeholders.

About You

You will have strong working knowledge of vulnerability management lifecycle right from notification of a vulnerability through to timely resolution.

In order to build in new checks into the vulnerability management framework, you will have competency in scripting and coding to enable you to build custom checks for vulnerability identification.

You have a knack for seeing things through to completion, which may involve assisting the system owner or stakeholder with technical guidance in order to fix the vulnerabilities for their system.

You will possess a keen and discernible eye for what is a material security concern versus what is simply an informational/low level security concern.

About Us

Macquarie is a university engaged with the real and often complex problems and opportunities that define our lives. Since our foundation 60 years ago, we have aspired to be a different type of university. Over the years, we have grown to become the centre of a vibrant local and global community. Connect with us today .

We rank amongst the top employers in the Australian Workplace Employers Index, having recently earned a five-star rating in the QS World Rankings with the highest rating for employability. Take a look at the staff benefits on offer.

To Apply

To be considered for this position, please apply online and attach your resume and a separate cover letter that addresses how you meet the below selection criteria (maximum 2 pages). Please use bullet points to address the below, not paragraphs.

• Qualification in IT or a related discipline.
• Experience in running vulnerability assessment tools to identify weaknesses across web applications and infrastructure.
• Scripting experience across automating manual tasks and integrating with Application Programming Interfaces (APIs) across various systems to extract or push data.
• Experience in developing documentation for solutions and technical processes.
• Excellent interpersonal and communications skills (written and verbal) with demonstrated ability to develop and maintain effective relationships with clients and internal/external stakeholders, as well as the ability to influence for desired outcomes.
• Demonstrated ability to work autonomously and as part of a team to achieve shared goals.
• Strong organisational and prioritisation skills with the ability to manage competing demands to meet deadlines.

Desirable

• Experience using tools and techniques required to perform penetration testing on systems.

* This position requires a qualification check and criminal record check.

Role-specific Enquiries: Shad Thakkar, Interim Chief Information Security Officer via [email protected] .

General Enquiries: Lizzy Nguyen, HR Consultant via [email protected] .   

Applications Close: Sunday, 2 June 2024 at 11:59pm (AEST).

If you're already part of the Macquarie Group (MQ University, U@MQ, MQ Health, MGSM), you'll need to apply through your employee Workday account. To apply for this job: Login to Workday and go to the Careers App > Find Jobs.

Applications Close:

02/06/2024 11:59 PM

Diversity and Inclusion

Innovation and ingenuity thrive at Macquarie University when diversity, equity and inclusion take centre stage. At the University, we embrace a culture where diversity of background, experience and perspective are fundamental to our success.

We do not discriminate on gender identity, age, culture, disability, sexuality, Indigeneity, family and caring responsibilities or religion. See our journey towards leadership in Equity, Diversity and Inclusion in Higher Education.

Flexible Work
 

At Macquarie, we believe by providing flexibility in when, where and how work is done, we can support our staff to manage their personal commitments, while optimising their work performance and contributions to the University. See how we lead in flexible work to enable an outcome focused and inclusive workplace. To learn more about our culture and hiring process, explore our Candidate Resource Hub .