Security Analyst Hybrid Working

The Team

SEEKs Cyber Security team is a multidisciplinary team with a wide variety of security skills and responsibilities across a broad range of areas. While we do have separate security subteams we have adopted a focus on crossfunctional security expertise development allowing team members to continue to grow professional expertise proficiency in a wide range of security concentrations. The team is positioned well within the company to execute quickly and against things that matter. Team members are empowered to identify security control gaps or risks within the organisation and work toward effective mitigation. We have executive support and you will have the ability to influence the security posture of our infrastructure and products helping progress SEEKs purpose of helping people live more fulfilling and productive working lives and helping organisations succeed.

About the role

SEEK is looking for a wellrounded Security Analyst with a primary focus on thirdparty risk and vendor security. In this role youll join a talented highly collaborative team working to reduce risk across the company by further developing SEEKs thirdparty risk vendor security assessment program and supporting client reviews. You will also contribute to the development and of SEEKs overall Cyber Security strategy by focusing on collaboration across the organisation and liaising with key stakeholders to help bring insight into SEEKs security posture.

Responsibilities

• Perform thirdparty risk assessments of SEEKs vendors and suppliers to identify security control deficiencies aligned to business criticality data sensitivity and minimumsecurity requirements. Where discrepancies are noted further investigate and present recommendations for next steps.
• Identify emerging trends in the industry and establish guidance related to best practice approaches for addressing those trends as they relate to SEEK and its third parties.
• Advise and provide stakeholders with security recommendations for projects/initiatives that adheres to SEEKs principles and requirements.
• Provide advisory support to technical/business partners on the evaluation of risks and work with stakeholders to define and implement process enhancements.
• Partner with Procurement to embed security in the vendor selection and supplier lifecycle at SEEK.
• Support client assessment questionnaires/ reviews to address security requirements from customers.
• Inspire and support a security culture across the organisation to ensure security trust and privacy are embedded in our ways of working.

Qualifications :

Essential Skills Experience and Competencies

The ideal candidate for this role will be a security practitioner well versed in governance risk and compliance. Even if you do not meet all these requirements but feel that you have a unique skill set that you could bring to the team and are highly motivated to grow in other areas we strongly encourage you to apply

• 4 years of experience in information security governance risk and compliance space. (University degree online courses side projects work experience etc).
• Deep understanding of information security specifically around security policy industry accepted frameworks and security standards such as ISO 27001/27002 CIS Controls COBIT NIST and other regulatory compliance requirements such as SOC2.
• Strong ability to manage and report on multiple initiatives prioritising efforts managing time effectively and requiring minimal supervision in the
• Experience in facilitating discussions and information gathering exercises to help identify weaknesses in a vendors security program.
• Strong ability to synthesise large amounts of information into clear concise recommendations on courses of action or mitigation to both technical and nontechnical audiences

Desirable Skills Experience and Qualifications

• Strong understanding of statutory laws and cyber security regulations for the countries that SEEK operates in.
• Familiarity with common thirdparty security assessment frameworks such as CAIQ VSA and SIG.
• Passion for continued professional development and ongoing learning.
• Desire to participate within the security community through events and conferences supporting the sharing of information security knowledge and expertise.
• Prior experience working in an audit and compliance capacity with fundamental understanding of risk and privacy is an added advantage

Additional Information :

Perks and benefits

Permanent Perks
At SEEK we offer:

• Support of flexible working including a mix of office and work from home days depending on your role.
• The opportunity to work from anywhere for up to 4 weeks per financial year
• Casual dress every day

At SEEK we are passionate about fostering a culture of inclusion and wellbeing that embraces and values the diversity of our people. We are a purpose driven business that works with heart.

We know teams with diverse ideas experiences and perspectives are more creative and are critical to ensuring effective delivery and innovating to enable our future success. As such we welcome applications from people with diverse backgrounds and life experiences especially as they relate to gender sexual identity culture faith disability and life stages. If you have the skills curiosity and an adaptable mindset but dont meet every responsibility or qualification listed in this advertisement please still get in touch with us.

Should you require any specific support or adjustments throughout the recruitment process and beyond please advise us and we will be happy to assist.

For this role only those with eligible right to work will be considered.

SEEK kindly requests no unsolicited resumes or approaches from recruitment agencies and will not be responsible for any associated fees.

Remote Work :

No

Employment Type :

Fulltime