The University of New South Wales (UNSW Sydney)UNSW Kensington Campus, Sydney, NSWSimilar Jobs
Closing: 14-Jan-2025
Job Summary
Dates
Opening Date: 16-Dec-2024
Closing Date: 14-Jan-2025
Location
UNSW Kensington Campus, Sydney, NSW
Salary
Starting salary $143,007 plus 17% superannuation and leave loading
Responsibilities
Lead the development and implementation of application security best practice processes that ensure security throughout the application lifecycle.
Provide expert guidance and leadership on secure development practices and technologies to IT teams and stakeholders across UNSW to embed security practices.
Collaborate with the Cyber Security team to establish and advance sustainable secure coding processes, platforms, tools, monitoring, and automation including hands-on set-up and management of application security tooling.
Lead a capability uplift and embed a culture of security across application teams through the development of standards, guidelines and identifying team needs and opportunities.
Develop and deliver application development training with respect to security and guide the team autonomously on department strategy and approach.
Mentor and support application development team to develop technical skills and ensure security compliance.
Support the independent audit of cyber security controls on behalf of the University, including statutory audits completed by the Audit Office of NSW.
Continually stay up to date and aware of legal, regulatory compliance and contractual obligations that are relevant to the University’s management of cyber security risk.
Promote awareness of the University’s internal and external environment for emerging cyber security threats.
Develop and improve metrics that drive security best practice and outcomes.
Align with and actively demonstrate the UNSW Values in Action: Our Behaviours and the UNSW Code of Conduct.
Cooperate with all health and safety policies and procedures of the university and take all reasonable care to ensure that your actions or omissions do not impact on the health and safety of yourself or others.
Requirements
Preferably 10+ years work experience in software engineering or related roles, at least 2 of which within a similar role focused on application security.
In-depth understanding of the most common application security risks and demonstrated experience in secure development practices required to mitigate those risks (e.g., OWASP Top 10).
Hands-on experience in designing, implementing, and managing secure software delivery pipelines by integrating application security tooling (such as SAST, DAST and dependency vulnerability management) into CI/CD pipelines.
Understanding of architecture and security concerns specific to web technologies and frameworks (e.g., secure password storage, encryption, security headers, content security policy, CSRF, OIDC, oAuth2, hash algorithms, one-time codes, password reset, rate limiting, security logging, etc), API security and identity and authorisation standards.
AWS and Azure security knowledge and experience desirable.
Strong problem-solving and analytical skills, with the ability to translate data into valuable information for management.
Strong cyber security GRC fundamentals and knowledge of cyber security principles and practices.
Excellent understanding of industry-wide security standards and compliance frameworks such as ISO 27001, NIST 800-53, CSA, Essential 8, PCI DSS, COBIT 5, Mitre ATT&CK etc.
Relevant industry certification(s) such as SANS certifications, CEH, OSCP, CompTIA Security+, and cloud platform certification.
Benefits
Flexible hybrid working
Additional 3 days of leave over the Christmas Period
Access to lifelong learning and career development
Progressive HR practices
Discounts and entitlements
Notes
The University reserves the right not to proceed with any appointment.
Enable Monash Cyber Operation teams to protect networks, systems, and data using security orchestration and automation tools.
Improve the efficiency, effectiveness, and accuracy of security controls within the Monash environment.
Collaborate with internal and external stakeholders to enhance security measures and resolve security-related incidents.
Provide actionable intelligence and advice to incident response teams to remediate and prevent cyber security incidents.
Requirements
Highly developed technical understanding of Internet security issues, automation or software engineering technologies, cloud architectures, and threat landscape concepts.
Experience architecting, automating, maintaining, and securing Cloud Computing Platforms, including Amazon Web Services (AWS).
Experience analysing security telemetry for signs of malicious activity and working with Security Information Event Management (SIEM) products.
Sound knowledge of ICT risk and security practices, networks, computer operating systems and application platforms.
High-level project management skills with a record of successfully coordinating and/or supporting projects.
Knowledge of operational impacts of cybersecurity lapses and cybersecurity and privacy principles.
Security-related certificate(s) such as CISSP, GIAC, vendor-specific etc.; and ITIL Foundation certification or above.
Demonstrated ability to scripting/coding experience with one or more languages - Python, Rust, PowerShell, and/or C#.
Benefits
Flexible and hybrid working arrangements.
Support for parents and personal commitments.
Notes
Your employment is contingent upon the satisfactory completion of all pre-employment and/or background checks required for the role.
Diversity is one of our greatest strengths at Monash. We encourage applications from diverse backgrounds.
The University of QueenslandSt Lucia CampusSimilar Jobs
Closing: Not specified
Job Summary
Dates
Opening Date: Not Available
Closing Date: Not Available
Location
St Lucia Campus
Salary
$42.09 per hour plus 11% Superannuation (including 25% casual loading)
Responsibilities
Attend all responses to alarms, medical emergencies, fire emergencies, or other matters as they arise under supervision.
Operate the Central Security Monitoring Station (CSMS).
Respond to enquiries/complaints of public/staff/students.
Lock, patrol and provide access for authorised personnel to University buildings.
Notify the Security Supervisor of any matters of priority or emergency.
Enforce parking and traffic regulations and control.
Conduct preliminary investigations into all incidents as directed.
Prepare detailed reports by the end of each shift of all incidents that occurred during the shift using standard formats.
Perform other duties as reasonably directed by the Manager Security (MS), the Deputy Manager Security (DMS), or the Security Supervisor (SS) or delegate.
Requirements
Current Queensland Certificate II in Security Operations including Security Officer Unarmed, Crowd Control, Bodyguard and Monitoring modules.
Current St John, Red Cross or Qld Ambulance First Aid Certificate.
Current Queensland Manual Open Drivers Licence.
Well-developed knowledge of security methodologies and concepts as applied to the Security industry.
Sound interpersonal skills, including effective communication with a large variety of individuals, both internal and external to the University.
Demonstrated proficiency with security software and programs and the ability to produce and analyse reports in a timely manner.
Ability to work with minimum supervision and efficiently organise work under strict deadlines.
Ability to exercise tact and restrain in the face of provocation or criticism.
Experience effectively dealing with emergency situations arising during the course of duty.
Benefits
Opportunities to work alongside the brightest minds in a prestigious university environment.
Involvement in a community focusing on a better world and excellence.
Access to a range of benefits and rewards as part of the UQ community.
Notes
Successful applicants must have full availability to attend 6 weeks of full-time training.
Work rights: Unrestricted work rights in Australia are required for the duration of this appointment. Visa sponsorship is not available.
Background checks may be necessary; applicants with criminal records are not automatically barred from applying.