1. Work within a hybrid cyber security operating model that includes both internal and external cyber security team members.
2. Undertake cyber offence assurance activities that align with industry best practice. This will include undertaking system penetration testing of QCS assets, systems and networks after appropriate stakeholder consultation and approvals have been sought.
3. Undertake cyber security incident response that aligns with industry best practice, including monitoring, investigating, containing, eradicating, recovering, documenting and reporting on security events and incidents.
4. Undertake threat hunting based on actionable cyber threat intelligence.
5. Lead the identification, management, and monitoring of cyber security threats, vulnerabilities, and risk.
6. Develop and implement best practice cyber security controls and processes that comply with the legislative and regulatory environment in which QCS operates (e.g., IS18, ISO/IEC 27001, ASD Essential Eight Strategies to Mitigate Cyber Security Incidents, ASD Information Security Manual (ISM).
7. Manage and maintain QCS cyber security infrastructure and services including departmental firewalls, antivirus, internet proxy servers, email gateways, intrusion prevention systems, SIEM (splunk/sentinel), cloud security, vulnerability t