Cyber Security Infrastructure Engineer

Description:

The Nine Cyber Security team is looking for a strong network focused cyber security engineer. This role plays a crucial role in safeguarding Nine’s critical systems and data by overseeing key controls that protect Nine’s data and content.

The Cyber Security Infrastructure Engineer will be delivering new capabilities such as network detection and response - including tuning detections and working closely with the SOC to deploy use cases to manage and treat the risks that Nine face. Other facets of the role will include auditing and improving cloud based web application firewalls and other cyber security capabilities related to large scale, high bandwidth networks.

The role will also work closely with the networking team, auditing and reviewing and improving firewall controls across the group. Class leading visualisation and audit tools such as Algosec are currently being deployed - experience here a plus!

This role will also gain exposure to security in AWS and GCP, working closely with Cloud Security engineers and other members of the Cyber team.

This role will also assist the cybersec team in performing other key security functions such as vulnerability management and other cyber security engineering tasks involving product evaluation and implementation, risk management and security incident response.

Key accountabilities:

• Implement, configure, and maintain NDR solutions to securely manage, detect and respond to network events

• Appropriately manage risk by balancing business needs with network security policies and other controls

• Monitor and audit risky network activities, ensuring compliance with policies and promptly addressing any anomalies or security incidents.

• Conduct regular reviews of firewall / application / network security policies

• Prioritise network vulnerabilities based on risk and potential impact, working with relevant teams for resolution.

• Collaborate with IT and security teams to facilitate the timely remediation of identified vulnerabilities.

• Track and report on the progress of vulnerability remediation efforts to senior management.

• Stay informed about emerging threats and vulnerabilities by monitoring security advisories, research reports, and threat intelligence sources.

• Translate threat intelligence into actionable insights for managing risk

• Report on the effectiveness of network security policies and controls