Senior Security Operations Analyst

Job Description

The Story

You’ll be joining a major national transformation program focused on delivering a new generation of secure, user-centric digital services. This multi-year initiative is building a modern platform capable of supporting trusted digital interactions across multiple regions and jurisdictions, with strong emphasis on privacy, data minimisation and secure information exchange.

The work spans a highly complex, multi-vendor environment with shared responsibilities across organisations, requiring tight coordination, robust security controls and deep operational discipline.

As the program evolves, its capabilities will expand to support a broader ecosystem of high-trust digital services—making this a rare opportunity to contribute to a high-profile, security-critical initiative shaping the future of digital enablement across the country.

The Role

In this newly elevated role, you’ll be the go-to security operations specialist embedded within a major digital transformation project—working at the intersection of technology, governance, and real-world security operations.

You won’t be sitting in a dark room staring at dashboards all day; instead, you’ll be hands-on responsible to design, implement and run the security operational processes that keep new systems safe from day one. From defining monitoring and response workflows, to shaping operational models with multiple vendors, to ensuring everything is audit-ready and truly secure, you’ll bring clarity, structure and calm to a fast-moving environment.

You'll work closely with both the Data & Technology team—who champion data stewardship, modern engineering and innovation—and the New Programs & Services group, who deliver new products and large-scale implementations. Together, you’ll help embed security into new solutions, transition them into steady-state operations, and maintain ongoing operational excellence.

If you enjoy a mix of incident leadership, operational rigour, and building things from the ground up, this is where you’ll thrive.

Key Responsibilities :

This role goes far beyond typical SOC analysis. You’ll lead and coordinate security incidents end-to-end, working across multiple vendors, cloud environments, SOC partners and internal teams—translating technical chaos into clear actions and crisp communication. You’ll keep day-to-day security operations running smoothly through vulnerability management, monitoring, compliance checks and stakeholder engagement.

Within the project, you’ll build the operational security foundations for new services : defining requirements, documenting runbooks, designing procedures, tuning security tools, onboarding logs, validating controls and guiding engineering teams on how security needs to work in practice.

You’ll navigate shared-ownership environments with confidence, quickly working out who owns what, identifying gaps and ensuring operational readiness for go-live.

Most importantly, you’ll bring a calm, methodical presence under pressure—providing steady leadership during incidents, collaborating across a wide stakeholder set, and operating independently as the main security operations representative within the project, supported by (but not reliant on) the broader security team.

What You Bring To The Role

• You’re an experienced security operations specialist with at least five years’ hands-on experience in IT security operations or cybersecurity roles, vulnerability management, monitoring, and day-to-day operational security practices.
• You’ve coordinated incidents from first alert to final debrief, can dive into technical detail with vendors, and can effectively and comfortably brief executives.
• Your background spans both BAU operations and project delivery, meaning you can run established processes—but you’re equally comfortable building them from scratch.
• You understand cloud environments (Microsoft and AWS), SIEMs, endpoint tools, identity and access management, vulnerability scanners, zero trust technologies, firewalls and cloud security platforms.
• You’re familiar with frameworks like MITRE ATT&CK, NIST, ISO 27001 and the Essential Eight, and you appreciate the art of collecting evidence that actually satisfies auditors.
• On the personal front, you’re adaptable, mature, self-driven, steady and composed—able to function confidently in evolving project landscapes while still being a collaborative team player.
• Certifications such as CISSP, CISM, GCIH or cloud security specialisations are a bonus, as is experience in organisations where you’ve worn many hats.
• A strong grasp of PKI, identity, digital trust services or emerging encryption tech (including QRE) will also earn you extra points.

What's In It For You?

Joining this organisation offers the opportunity to contribute to work that directly improves the safety, efficiency and reliability of transport networks across Australia and New Zealand.

You’ll be part of a collaborative, values-driven environment that prioritises professionalism, innovation and integrity, while giving you the freedom to take initiative and shape meaningful outcomes.

The culture celebrates diverse perspectives, continuous learning and genuine inclusion, providing strong support for your professional growth.

It’s an ideal environment for someone who thrives in a dynamic setting, enjoys building strong relationships across an enterprise, and wants their work to contribute to broader societal benefit.