Associate Security Analyst is a critical role and member of the Security Operations team tasked with protecting the Department's digital environment, including schools by monitoring systems and identifying potential security threats at an early stage. This role serves as a foundation in cybersecurity, requiring strong attention to detail, basic technical knowledge, and a willingness to continuously learn while supporting the overall security operations of the Department.
About the role:
Associate Security Analyst is a critical role and member of the Security Operations team tasked with protecting the Department's digital environment, including schools by monitoring systems and identifying potential security threats at an early stage.
Working in a fast-paced, high-volume, and complex environment, the role is responsible for analysing alerts generated by security tools such as SIEMs, firewalls, and endpoint protection platforms, performing initial investigations, and working closely with Senior Security Analysts on escalated incidents. In addition to threat monitoring, the role will assist with incident response activities, maintain detailed documentation, and help improve security processes and detection capabilities. This role serves as a foundation in cybersecurity, requiring strong attention to detail, basic technical knowledge, and a willingness to continuously learn while supporting the overall security operations of the Department.
The role also develops and provides inputs to high-quality reporting and data insights for internal and external stakeholders on cyber incidents, threats, and vulnerabilities including performance, recovery, and remediation activities. The role works closely with multi-disciplinary ICT teams, school technical teams, other divisions, and external agencies including the Victorian Government Cyber Incident Response Service (CIRS), the Australian Signals Directorate (ASD), and the Office of the Victorian Information Commissioner (OVIC).
Key Responsibilities
-
Performs monitoring, triage and analysis of cybersecurity events
-
Provides incident response as part of cyber security incident response team and coordinate containment, eradication, and recovery activities
-
Provides input to and perform investigations and threat hunting activities
-
Performs basic security platform administration activities like health checks
-
Maintains accurate incident records, artefacts and case notes and supports the preparation of incident reports
-
Develop reporting and data insights on incidents, threats and vulnerabilities, to support security operational and regulatory reporting.
-
Work closely with schools and corporate technical teams to achieve required security outcomes
-
Perform other security operational activities as delegated to maintain and enhance the Department's security posture.
Required Skills
-
Strong expertise in operating systems, networks and security concepts
-
Hands-on experience in the usage of the below tools to support incident response:
-
SIEM: Microsoft Sentinel and/or Splunk
-
EDR: Microsoft Defender
-
ServiceNow
-
Vulnerability Management: Tenable
-
Understanding of NIST Cybersecurity Framework, incident response frameworks, MITRE ATT&CK and threat modelling
-
Have an aptitude for security threat investigations and scripting
-
Excellent oral and written communication skills
Qualifications & Experience
-
Bachelor's degree /Diploma (or studying towards) in Cyber Security or a related field.
-
1+ years of experience in cyber related fields preferably in a large and complex environment
Desirable Certifications
-
Industry certifications (or studying towards) CC, CISSP, CEH, SANS, Security+
Further Information
For more details regarding this position please see attached position description for the capabilities to address in application.
The department values diversity and inclusion in all forms - gender, religion, ethnicity, LGBTIQ+, disability and neurodiv ersity. Aboriginal and Torres Strait Islander candidates are strongly encouraged to apply. For more information about our work, working for the Department, diversity and inclusion, and our employment conditions visit the Department website and our Diversity and Inclusion page
Applicants requiring adjustments can contact the nominated contact person.
Information about the Department of Education's operations and employment conditions can be located at www.education.vic.gov.au.
For further information pertaining to the role, please contact Ashok Sangra -
[email protected]
Preferred applicants may be required to complete a police check and may be subject to other pre-employment checks. Information provided to the Department of Education will be treated in the strictest confidence.
Please let us know via phone or email if you require any adjustments to ensure your full participation in the recruitment process or if you need the ad or any attachments in an accessible format (e.g. large print) due to any viewing difficulties or other accessibility requirements.
Applications close 11:59pm on 15-07-2026