Cyber Security Analyst

Job Description

Cyber Security Analyst

At BAE Systems Australia

• Do interesting work that MATTERS
• ENJOY what you do
• GROW your career
• Be YOU

We work in a thriving sector – one that puts us at the forefront of exciting and meaningful work. Every day we push boundaries to produce some of the world’s most innovative and ground breaking technology. Individually we all contribute to our success. Collectively we make the impossible possible.

Recognised for delivering projects of global and national significance that help keep Australia safe, it is our shared passion that shapes our culture, and our people that make it a great place to work.

About the OPPORTUNITY

We have a great opportunity for a Cyber Security Analyst to join our Central Functions line of business. This position will be located at Melbourne / Adelaide.

We embrace flexible work arrangements at BAE Systems Australia, such as working a 9-day fortnight and Hybrid working.

Reporting to the Cyber GRC Lead, you will play a critical role in safeguarding our organisation and ensuring the confidentiality, integrity and availability of our systems and data. With expertise in cyber security principles, technologies, and practices, you will provide guidance across multiple domains, with a key focus on cyber security and technology policy, risk, compliance and assurance.

You will use your experience and knowledge to mature our practices, improve our cyber security posture, help defend against evolving cyber threats and ensure compliance with regulatory requirements and industry standards.

Key responsibilities include:

• Facilitate risk assessments and developing comprehensive risk mitigation strategies, considering the evolving threat landscape and business priorities
• Prepare accreditation documentation and compliance reports, ensuring accuracy, completeness, and adherence to regulatory mandates
• Develop and review security policies, procedures, and guidelines, ensuring alignment with industry standards and regulatory requirements
• Ensure the completion of GRC activities for IT Systems (classified and unofficial), including compliance audits, documentation, reviews and tracking/reporting of remediation activities associated with internal and external regulatory frameworks and compliance regimes. This may include the ISM, Defence Industry Security Program (DISP), Defence Federal Acquisitions Regulations (DFARS), Cyber Essentials Plus, Cybersecurity Maturity Model Certification (CMMC) and others as required
• Support and maintain the IT Risk Register, ensuring risks from tactical (Cyber and IT Systems risks) to strategic (Enterprise and Organisation risks) are appropriately managed within the GRC tool through the risk lifecycle

About YOU

• Cyber Security, ICT or Engineering related degree or equivalent
• 2-4 years in a Cyber GRC role, with a strong understanding of security principles, technologies, and practices
• Significant knowledge of security frameworks and standards (e.g., NIST, ISM, PSPF) and their application in enterprise environments.
• CRISC, CISM, CISSP or other relevant certification is highly desirable
• Excellent analytical and problem-solving skills, with the ability to assess complex security issues and recommend effective solutions
• Strong communication and interpersonal skills, with the ability to collaborate effectively with technical and non-technical stakeholders
• Defence security clearance NV1 or eligibility to obtain
• Eligibility to be cleared for International Traffic In Arms (ITAR) regulations

We believe in hiring for potential, we know that some candidates hesitate if they don’t tick all the boxes. If this role interests you, but you don’t meet all the criteria, we still encourage you to apply.

About US

You will be joining a workplace that truly cares about your wellbeing.

Our people are diverse and we value the variety of perspectives this brings, we know that a culture that is inclusive and fosters a sense of belonging is a place we can all make the most of our unique talents and be our best.

As Australia’s largest defence company in a rapidly growing sector, you will be connected into a global team and encouraged to explore where your career might take you whether that is a traditional career path or squiggly one, there are infinite possibilities for you at BAE Systems Australia.

BAE Systems recognises the sacrifices of those who have served our Nation and their families. We support our veteran community through our internal veteran network (VetNet Australia) and strong charitable partnerships, internal offerings including reserve service leave, a Veteran Mentoring Program and other exclusive offerings available through our strategic partners.

We welcome applicants from all people regardless of sex, gender identity, race, ethnicity, disability, pregnancy, age, or other lived experience; and strongly encourage applications from Aboriginal and Torres Strait Islander people for all positions.

We are proud to be recognised as an employer of choice for women by WORK180.

Awarded the 2024 Quarter 1 Benchmarcx Triple R- Excellence In Candidate Experience Certification. As a member of the Circle Back Initiative we commit to respond to every applicant.

To learn more about our competitive employee benefits, flexibility, other employment opportunities and what to expect from our recruitment process please visit: www.baesystemscareers.com.au

Clearances

As a Defence security clearance is required for this role, applicants must be Australian citizens and either possess or be eligible to obtain and maintain appropriate clearances. Further information regarding security clearances.

International Traffic In Arms Regulations (ITAR) are applicable and as such, your nationality may be a factor in determining your suitability for this role. Please visit this webpage for more information.