Fed Gov Security Vulnerability Analyst

So, why Optus?

At Optus, we don’t sit back and let the future happen to us – we’re out there making it. By expanding into new technology and relentlessly improving every day, we’re creating a better tomorrow for all Australians. We believe in the strength of a vibrant, diverse and inclusive workforce where backgrounds, perspectives and life experiences of our people help us innovate and create strong connections with our customers.

About the role:

The Security Vulnerability Analyst/Administrator role performs assessments of managed systems and networks vulnerabilities and manages their remediation activities. Vulnerabilities will be identified by tools, e.g., Tenable Nessus, and specialist resources, e.g. Security and Technical Delivery managers, vendor security alerts. Remediation is undertaken by tasking the appropriate engineering support team and tracking their progress. Technical support is provided by the IT Security Manager and their team plus appropriate technical specialists. The role will:

• Manage security vulnerability remediation of applications, operating systems, network and hosting infrastructure
• Analyse Tenable Nessus scan outputs and vendor security alerts to determine applicable vulnerabilities, their priority, impacted Configuration Items (CIs), applicable patches, and the appropriate remediation team. Contextual risk ratings may be applied and like vulnerabilities/impacted CIs are to be grouped appropriately
• Investigate Tenable Nessus scan errors and work with appropriate support groups to resolve issues
• Identify and document false positive candidates then work with the IT Security Manager to action
• Identify and document exception candidates then work with the IT Security Manager to action
• Send vulnerability remediation tasks to the appropriate resolver group. This will be done via ServiceNow tickets or where necessary alternate tools/email
• Track progress of remediation activity and follow up actions to ensure Service Levels are met
• Escalate remediation tasks behind schedule or at risk of breaching Service Levels
• Onboard and offboard assets to/from scan schedules
• Report on vulnerability and remediation status
• Represent vulnerability management at internal and client meetings
• Maintain vulnerability management procedures, processes, work instructions, and reports
• Build and maintain a knowledge of applicable customer environments and security vulnerabilities, applicable security policies and procedures, relevant tools and service management processes.

This position is predominately self-managing and works closely with the security and delivery management teams on applicable accounts. It will liaise with internal Optus Security teams, be able to negotiate pragmatic outcomes for the customer, and leverage a multi-disciplinary technical team to achieve the effective operation of the delivery framework. The role will be required to work on-site at the client premise and at Optus Centre Canberra, and maintain a Federal Government Security Clearance.

Key requirements:

• 5+ years relevant ICT Industry or security delivery experience
• Managing outcomes in complex ICT environments and finding pragmatic, effective solutions to diverse and complex issues
• Coordinating security operations and/or Incident/ Service Request management experience
• Attention to detail, able to write effective documentation and produce accurate reports

Optus is a place where we let you do you. Whether you’ll be working in our corporate offices or in a retail store, we’re a highly collaborative workplace, and offer a range of perks such as:

• A competitive salary
• Discounts on products and services
• Ongoing training, mentoring and development opportunities
• Up to five days of Volunteer Leave per year
• Blended Ways of Working

We understand that flexibility means different things to different people. We’re proud to offer a variety of options to work in different ways, such as our Blended Ways of Working and job share. Our Blended Ways of Working lets our people work across home and our offices. Please talk to us about how we can make this role work for you.

Curious about our culture? Go behind the scenes with our people by searching #OptusLife on LinkedIn.