Security Analyst (Hybrid Working)

Company Description

About SEEK

At SEEK, we serve a noble purpose: to help people live more productive and fulfilling working lives and to help organisations succeed.

By joining us, you’ll be part of a multinational technology business that is far-reaching with a start-up working culture that focuses on a set of collaborative values and appreciates dynamic cultures. SEEK is a place where potential meets possibility – it’s where your career aspiration and our purpose can make great things happen.

Why join us?

Be part of a multinational tech company with strong core values to help us solve complex challenges while building a flexible, exciting career – one that could take you anywhere. We’re looking for people who thrive in dynamic teams and enjoy tackling regular new challenges in a large-scale, modern, and agile environment.

As one of Asia Pacific’s largest tech companies, you’ll contribute to multilingual systems, solving high-impact problems to the benefit of millions of people within the region. Be part of a fast-growing company with a strong culture and clear purpose, innovation and strong investment in responsible AI. SEEK offers you the opportunity to be involved in impactful work and be part of a great team.

Expect a great investment in your career development with access to workshops, conferences & courses while you work alongside seasoned experts.

Job Description

The Team

SEEK’s Cyber Security team is a multi-disciplinary team with a wide variety of security skills and responsibilities across a broad range of areas. While we do have separate security sub-teams, we have adopted a focus on cross-functional security expertise development, allowing team members to continue to grow professional expertise proficiency in a wide range of security concentrations. The team is positioned well within the company to execute quickly and against things that matter. Team members are empowered to identify security control gaps or risks within the organisation and work toward effective mitigation. We have executive support, and you will have the ability to influence the security posture of our infrastructure and products helping progress SEEK’s purpose of helping people live more fulfilling and productive working lives and helping organisations succeed.

About the role

SEEK is looking for a well-rounded Security Analyst with a primary focus on third-party risk and vendor security. In this role, you’ll join a talented, highly collaborative team working to reduce risk across the company by further developing SEEK’s third-party risk, vendor security assessment program and supporting client reviews. You will also contribute to the development and execution of SEEK’s overall Cyber Security strategy by focusing on collaboration across the organisation and liaising with key stakeholders to help bring insight into SEEK’s security posture.

Responsibilities

• Perform third-party risk assessments of SEEK’s vendors and suppliers to identify security control deficiencies aligned to business criticality, data sensitivity and minimum-security requirements. Where discrepancies are noted, further investigate and present recommendations for next steps.
• Identify emerging trends in the industry and establish guidance related to best practice approaches for addressing those trends as they relate to SEEK and its third- parties.
• Advise and provide stakeholders with security recommendations for projects/initiatives that adheres to SEEK’s principles and requirements.
• Provide advisory support to technical/business partners on the evaluation of risks, and work with stakeholders to define and implement process enhancements.
• Partner with Procurement to embed security in the vendor selection and supplier lifecycle at SEEK.
• Support client assessment questionnaires/ reviews to address security requirements from customers.
• Inspire and support a security culture across the organisation to ensure security, trust, and privacy are embedded in our ways of working.

Qualifications

Essential Skills, Experience and Competencies

The ideal candidate for this role will be a security practitioner well versed in governance, risk and compliance. Even if you do not meet all these requirements but feel that you have a unique skill set that you could bring to the team and are highly motivated to grow in other areas, we strongly encourage you to apply

• 4+ years of experience in information security, governance, risk and compliance space. (University degree, online courses, side projects, work experience, etc).
• Deep understanding of information security specifically around security policy, industry accepted frameworks and security standards such as ISO 27001/27002, CIS Controls, COBIT, NIST and other regulatory compliance requirements such as SOC2.
• Strong ability to manage and report on multiple initiatives, prioritising efforts, managing time effectively, and requiring minimal supervision in the execution
• Experience in facilitating discussions and information gathering exercises to help identify weaknesses in a vendor’s security program.
• Strong ability to synthesise large amounts of information into clear, concise recommendations on courses of action or mitigation to both technical and non-technical audiences

Desirable Skills, Experience and Qualifications

• Strong understanding of statutory laws and cyber security regulations for the countries that SEEK operates in.
• Familiarity with common third-party security assessment frameworks, such as CAIQ, VSA, and SIG.
• Passion for continued professional development and ongoing learning.
• Desire to participate within the security community through events and conferences, supporting the sharing of information security knowledge and expertise.
• Prior experience working in an audit and compliance capacity with fundamental understanding of risk and privacy is an added advantage

Additional Information

Perks and benefits

Permanent Perks
At SEEK we offer:

• Support of flexible working, including a mix of office and work from home days depending on your role.
• The opportunity to work from anywhere for up to 4 weeks per financial year
• Casual dress – every day

At SEEK, we are passionate about fostering a culture of inclusion and wellbeing that embraces and values the diversity of our people. We are a purpose driven business that works with heart.

We know teams with diverse ideas, experiences and perspectives are more creative and are critical to ensuring effective delivery and innovating to enable our future success. As such, we welcome applications from people with diverse backgrounds and life experiences, especially as they relate to gender, sexual identity, culture, faith, disability and life stages. If you have the skills, curiosity and an adaptable mindset but don't meet every responsibility or qualification listed in this advertisement, please still get in touch with us.

Should you require any specific support or adjustments throughout the recruitment process and beyond, please advise us and we will be happy to assist.

For this role, only those with eligible right to work will be considered.

SEEK kindly requests no unsolicited resumes or approaches from recruitment agencies and will not be responsible for any associated fees.