Who we are PM&C's Digital Security and Workplace Operations Division (DSWOD) is in the exciting stage of establishing a new dedicated Cyber Security Operations Centre (SOC) to uplift our cyber defence capabilities and enhance our ability to proactively detect and respond to cyber threats. The Cyber Operations team forms part of the Digital, Security, and Workplace Operations Division. Our division delivers workplace and business services that support PM&C and our shared service partners to operate effectively and deliver business outcomes. Our services span property, security, digital and information communications technology. What you will do Cyber Security Operations Centre (SOC) will serve as the central hub for monitoring, triage, and incident response across our ICT environments, providing real time situational awareness and threat intelligence to protect PM&C's digital systems and data. We are looking for team members who are passionate about being part of a high-performing team and establishing scalable and modern SOC functions. As a new capability this is a unique opportunity to shape how the SOC is built and operated. You will: Provide guidance to junior team members Monitor security events and coordinate the triage, investigation and response to cyber incidents Proactive system monitoring Assist the SOC Team Lead with continuous improvement of SOC processes, tooling, and service delivery Analyse cyber threat intelligence feeds to identify and respond to relevant indicators Collaborate with ICT, cyber governance, executive and external stakeholders to ensure effective security operations. The key duties of the position include: What you will bring As an APS 5 Cyber Security Analyst, you have: Experience working in an IT support or junior security role, specifically handling high volumes of data. Follow playbooks in response to events and incidents Familiarity with Security Event and Information Management (SIEM) applications, Endpoint Detection and Response (EDR) tools and email security gateways. Basic ability to read/edit YARA, Python, PowerShell, or KQL Provide guidance and technical assistance to junior analysts and end users Understanding of the ISM and Essential Eight maturity assessments. Relevant qualifications or industry certifications would be highly regarded. As an APS 6 Cyber Security Analyst, you will have: Demonstrated experience with monitor security events and coordinate the triage, investigation and response to cyber incidents Experience developing and exercising playbooks Experience in conducting investigation into security incidents escalated by Level 1 analysts to determine the root cause Experience providing technical guidance to junior staff and assisting in the "upskilling" of the Tier 1 cohort Basic ability to read/edit YARA, Python, PowerShell, or KQL Practical application of the ISM and Essential Eight maturity assessment to improve organisational resilience. Relevant qualifications or industry certifications would be highly regarded. Eligibility Under section 22(8) of the Public Service Act 1999, employees must be Australian citizens to be employed in the APS unless the Agency Head has agreed otherwise, in writing. At PM&C to be eligible for this position you should be an Australian Citizen by the completion of the recruitment process, except under exceptional circumstances. The successful candidate must be able to obtain and maintain a security clearance, or hold a current security clearance of an appropriate level. The successful candidate will be assessed through our pre-employment screening checks, such as an Australian Criminal History Check, and will normally be subject to a six-month probation period if new to the APS or has not yet completed their probation period elsewhere in the APS. Notes Ongoing & Non-ongoing (for a period of up to 24 months) This role is being advertised as both ongoing and non-ongoing, with the employment type to be determined in negotiation with the preferred candidate and the PM&C delegate. Where a non-ongoing specified term is offered, this would be for a maximum period of two (2) years. If the initial contract is for less than 2 years, it may be extended or renewed once, up to the 2 year limit. A non-ongoing offer may result in conversion to an ongoing offer of employment, however this must occur within 18 months from the opening date of this advertisement. Getting to know the Department of the Prime Minister and Cabinet The Department of the Prime Minister and Cabinet (PM&C) advances Australia’s national interests through high quality support to the Prime Minister and the operations of Cabinet. PM&C supports the Prime Minister as leader of the Government and of Cabinet and as leader of the country. This positions us both to provide visibility of Government priorities and influence outcomes across all Commonwealth portfolios, state jurisdictions, the Australian Public Service (APS) as an institution, and on the international stage. Our role is to provide fresh thinking and creative advice to government as stewards for the APS. We contribute ideas on the many and varied issues facing Australia, taking into consideration the views and opinions of a range of stakeholders across the private, public, not-for-profit and community sectors. The PM&C team provides pragmatic advice and finds solutions to problems so that Government policies can be effectively designed and implemented. We give particular weight to issues that are important to the Prime Minister. Our focus, put in its simplest terms, is to find new ways to improve the lives of all Australians.
