Federal Government Security Vulnerability Analyst

At Optus, we don’t sit back and let the future happen to us - we’re out there making it. By expanding into new technology and relentlessly improving every day, we’re creating a better tomorrow for all Australians.

We believe in the strength of a vibrant, diverse and inclusive workforce where backgrounds, perspectives and life experiences of our people help us innovate and create strong connections with our customers.

The Cybersecurity Specialist – Vulnerability Management is responsible for providing industry-leading vulnerability management services to Optus Enterprise and Business customers as part of a customized security managed service solution. This role involves

1. operational ownership of vulnerability identification, assessment, patching, and risk prioritisation
2. coordinating remediation activities
3. reporting and communication
4. compliance and policy enforcement, and
5. contributing to the development of vulnerability management standards and policies.

In addition to managing vulnerability services above, the Cybersecurity Specialist will lead or participate in projects related to assist in incident response events and exercises, threat management, penetration testing, and conduct user training to improve cybersecurity awareness. They will ensure that risk, compliance and validation activities are accurately documented and communicated to various business partners. As this is a customer-facing role, regular meetings with internal and external partners are required, along with strong written and oral communication skills to influence and engage effectively. In this role you closely work with Associate Director, Security Management, and may support other cybersecurity teams when needed.

The day to day

• Manage daily operations of Tenable (Nessus) and other vulnerability management tools, ensuring adequate scans and assessments across Optus and its customers as per contracts.
• Collaborate with technology owners to ensure timely patching and remediation of vulnerabilities and issues.
• Conduct large-scale vulnerability scanning, and participate in automated and manual penetration testing exercises, develop remediation plans with system owners and track progress.
• Develop and maintain a reporting framework for communicating key vulnerability and risk data through dashboards, spreadsheets, and customer-specific formats.
• Participate in security incident response, red team exercises, and process reviews to improve security practices.

Why you are our next Federal Government Security Vulnerability Analyst

• Extensive hands-on experience in cybersecurity operations, with a background in IT infrastructure, cloud, or applications, and preferred certifications in Vulnerability Management or other cybersecurity disciplines.
• Demonstrable experience with vulnerability assessment tools such as Tenable Nessus (preferred), or Qualys, familiarity with ServiceNOW, conducting detailed vulnerability assessments, risk prioritisation, vulnerability remediation, reporting and penetration testing.
• Solid grasp of networking technologies, cloud, servers and applications, good understanding of the OSI model and IP networking, and the ability to explain security issues to both technical and non-technical audiences.
• Extensive expertise in managing and configuring vulnerability management systems (e.g. Nessus, Qualys), exposure to risk management frameworks (e.g. ISO31010, NIST Risk Management Framework), with a deep understanding of security issues across Cisco, Windows and Linux systems.
• Experience in implementing security audits, assessments, and processes, exposure to SIEM solutions (e.g. SPLUNK, ArcSight) and developing security strategies and mitigation plans.
• Outstanding problem-solving, communication, and troubleshooting skills, with a demonstrable ability to prioritise urgent work tasks, meet deadlines under pressure, and collaborate effectively with multi-functional teams.

What’s in it for you?

• 3 days in the office, 2 days remote – with flexible hours to suit!
• Inclusive paid parental leave, up to 14 weeks for the primary care giver
• All Optus employees have access to resources, webinars and support via the ‘Parents at Work portal’
• Own your own growth by accessing an extensive online and facilitator led learning catalogue – even earn a MBA micro-credential via OptusU (University)
• Connect at work through one of our employee-led volunteer groups: Culture Connect, Elevate Women, Disability Network, Express Yourself (LGBTQIA+), United Veterans and Yarn Network

Keen to see what it’s really like to work at Optus? Search #OptusLife on LinkedIn to go behind the scenes!

At Optus, we are strengthened by others and that means valuing diversity and saying ‘yes’ to embracing individual differences. We are committed to ensuring that our application process provides an equal employment opportunity to all job seekers, including individuals from diverse gender, cultural and linguistic backgrounds, individuals with a disability, individuals identifying as being part of the LGBTQIA+ community, individuals who may have served in the armed forces or who identify as Aboriginal and/or Torres Strait Islander. If you require any adjustments or accessibility support to participate fairly and equitably in the recruitment process, please email AccessibleRecruitment@optus.com.au along with your preferred method of contact and we will be in touch.

For more information on Diversity, Inclusion & Belonging at Optus, please visit https://www.optus.com.au/about/inclusion-diversity.

#LI-DD1