Principal Security Analyst, CORIE

• Unique and dynamic environment
• Exciting time of growth
• Sydney CBD location with consideration for remote work

The Reserve Bank of Australia is hiring for a Principal Security Analyst, CORIE to join a skilled team on a permanent basis. This is an outstanding chance to take a lead role in a unique team. The job holder will provide a balance between technical and non-technical cyber resilience expertise. They will work within a team that is responsible for day-to-day operations of the Cyber Operational Resilience Intelligence-led Exercises (CORIE) program and framework.

The RBA's unique position as Australia's central bank means you will gain exposure to an exciting and fast-paced environment with opportunities to apply your security expertise to new and diverse problems affecting the entire country.

Your Team

Reporting to the Manager, CORIE Program & Industry, you will join a small, cross-skilled team of cybersecurity program experts, part of a larger multi-disciplinary security services team, sitting across the full spectrum of cybersecurity roles. There is a strong culture for collaboration, innovation and celebrating personal successes. The team is constantly looking to improve and welcomes fresh perspectives and ideas.

While positioned within the RBA’s cybersecurity team, you will work closely with individuals from other agencies within the Council of Financial Regulators.

About the role

• Serve as CORIE technical subject matter expert leading internal alignment and external engagements with regulated financial institutions.
• Take a lead role in defining what cyber resilience looks like for Australian financial institutions, working to align the broader approach to operational resilience.
• Lead cyber intelligence-led Red-Team exercises, providing the Council of Financial Regulators (CFR) with expertise and reporting on financial institutions' cyber resilience.
• Oversee exercises and serve as the interface to participating companies involved.
• Support participating companies throughout the entire duration of an exercise.
• Support program leads / colleagues as required and jointly oversee the exercise.
• Help lead and uplift community engagements within industry. 
• Contribute to strategic control and management of the CORIE program and guiding framework.
• Help lead the internal and external program management groups.
• Perform thematic analysis of cyber assessments and present results.
• Contribute to embed cyber resilience within the CFR's broader operational resilience approach and frameworks.
• Stay informed on the evolving regulatory landscape and emerging operational resilience challenges facing Australia’s financial sector, with a focus on cyber resilience.
• Contribute actively to the development of new cyber tools and practices to maintain their relevance for the CORIE program and framework.
• Lead the preparation, submission and presentation of reports related to the progress of cyber resilience assessments, as required.
• Draft papers for regulatory groups on cyber resilience trends and changes.
• Maintain effective working relationships with government agencies including APRA, ASIC, ACSC, and Home Affairs.
• Develop and maintain effective relationships with industry service providers, supporting the growth of resource availability and capability in country.
• Lead and contribute to thought leadership on cyber matters including leading activities to upskill colleagues and peers and efforts of the Australian regulators to maintain and enhance the cyber supervisory approach.
• Develop and maintain effective working relationships with peers in overseas central banks and industry governing organisations.
• Represent the RBA/CFR in industry forums, working groups, and external engagements to share insights and contribute to the advancement of cyber resilience regulatory initiatives.

About you

We are looking for a candidate that is passionate about cybersecurity and technology and enjoys sharing that passion with others.

• At least 5 years dedicated technical and non-technical experience in a Cyber Threat Intelligence, Red-Teaming or cyber regulatory role.
• At least 5 years’ experience in other IT Security functions, project/program/risk management, or leadership.
• Significant operational knowledge of CORIE and other similar frameworks.
• Significant experience of delivering cyber risk and resilience reviews and assessments, including scenario-based testing in the context of intelligence-led Red-Teaming or penetration testing, threat modelling or simulation exercises.
• Significant knowledge of attack techniques, exploit development, and vulnerability assessment.
• Significant knowledge and experience pertaining to threat intelligence and adversary emulation (including TTPs from MITRE ATT&CK framework), social engineering and physical security bypass, and Red Teaming tools.
• Significant experience working with Blue Teams, Purple Teams, and other security stakeholders.
• Understanding of ethical responsibility ensuring engagements are conducted professionally and within ethical guidelines.
• Significant knowledge of cyber threat landscape and technology trends.
• A significant understanding of general cybersecurity and information technology topics and principles relevant to a modern enterprise environment. 
• Significant knowledge of relevant cyber security standards, best practice, and guidelines.
• Experience with Purple Exercise and Gold Team practices.
• Excellent project management skills (planning, resource management, risk management) including delivery of complex projects.
• Extensive leadership, influencing skills, and the ability to collaborate on work to produce the best outcomes for stakeholders.
• Excellent analytical and problem-solving skills able to turn analysis into relevant output.
• Ability to provide subject matter expertise confidently at executive level using appropriate judgement.
• Excellent communication skills, both verbal and written, with the ability to draft and present briefings for senior stakeholders and to present clear conclusions and recommendations.
• Be a highly motivated and pragmatic thinker, capable to challenge confidently in new environments.

Desirable Criteria

• Bachelor's degree in a relevant field, and/or equivalent practical experience.
• Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM), offensive security certifications, or Certified Red Team Professional / Expert.
• Understanding and knowledge of cyber and/or information security related regulations, guidelines, and standards particularly in relation to the Australian financial industry (e.g. CORIE, CPS234) and the international regulatory landscape (e.g. TIBER-EU, EU DORA, CBEST, iCAST, AASE).
• Experience with relevant industry service providers.

Travel may be required, as is occasional working irregular hours. The successful candidate will hold or be required to undertake a Negative Vetting Level 2 security clearance, and as a result we can only accept applications from Australian citizens.

Why RBA?

The RBA makes an important contribution to the Australian economy through the pursuit of national economic policy objectives and associated activities in financial markets and banking. We also issue Australia's banknotes and operates infrastructure critical to the payments system, all of which contribute to the welfare of the Australian people.

Made up of specialists across a wide range of fields, our people have a critical role to play in achieving these objectives. Our people conduct themselves with a high degree of integrity, while striving for excellence in the work they perform and the outcomes they achieve. We encourage intelligent inquiry, and we treat one another with respect while promoting the public interest through our efforts.

We know it is the growth and success of our people that drives the Bank forward. Come and make a bigger contribution while you build and develop your own skills too, because being more means you can do more, for yourself and for Australia.

The Reserve Bank of Australia is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and encourage applications from experienced candidates seeking workplace flexibility.

Application Close :

.