Cyber Security Analyst

Were entering a new chapter for Information Technology at Water Corporation as we deliver bold future-focussed solutions. With the launch of our new Information and Technology Group Operating Model were transforming how we deliver technology services making them faster more responsive and more aligned with the needs of our business and customers.

As part of this transformation were hiring multiple new positions. These roles are key to shaping a vibrant forward-thinking Information Technology Group - one that adds real value delivers better outcomes and works in smarter more agile ways. Its a strategic shift aligned with our organisational strategies designed to modernise systems embrace innovation and create a more flexible collaborative and customer-centric IT environment.

If youre equally excited about innovation transformation and making a meaningful impact now is the perfect time to join us.

Real benefits that matter

• Real flexibility with options to work from home flexible work hours
• An additional 2 well-being days each year
• Access to long service leave pro rata after 3 years of service
• Generous co-contribution superannuation scheme which offers up to 16%. This includes an 12% standard employer contribution plus an additional 2% employer co-contribution that matches your own 2% contribution
• Purchase additional leave of up to 12 weeks

Discover more benefits we offer to support the unique and individual ways our employees live.

About the role:

The Analyst Cyber Security (Threat Defence) plays a key role in safeguarding our environment through advanced threat detection incident response and vulnerability management. You will coordinate real-time identification analysis and remediation of security threats leveraging risk-based processes and automation to strengthen our cyber resilience. Working closely with stakeholders you will ensure security policies standards and controls are effectively implemented and continuously improved.

This role is integral to our Cyber Threat Defence function supporting initiatives such as threat hunting SIEM/SOAR optimisation vulnerability identification and analysis and governance activities. You will champion cyber awareness and contribute to operational improvement projects aligned with our improvement roadmap.

What the role will offer:

• Lead day-to-day analysis of security events and act as the primary contact for our Managed SOC provider.
• Coordinate incident response and recovery activities across resolver groups ensuring timely remediation.
• Operate and optimise SIEM and SOAR platforms (Splunk) for detection and automation.
• Conduct threat analysis vulnerability assessments and proactive threat hunting.
• Support continuous improvement initiatives such as dashboard development detection tuning and process automation.
• Collaborate on governance activities policy reviews and cyber awareness programs.
• Provide technical guidance for projects ensuring alignment with security standards and ACSC recommendations.

Key skills and experience:

• Tertiary qualifications in an IT or Cyber Security discipline and/or significant industry experience.
• Strong knowledge of security technologies frameworks (NIST ACSC) and MITRE ATT&CK.
• Hands-on experience with SIEM (Splunk) SOAR vulnerability management tools (Tenable) and EDR platforms (CrowdStrike).
• Demonstrated capability in incident management threat analysis and threat hunting.
• Familiarity with logging and monitoring strategies detection engineering and automation workflows.
• Excellent problem-solving and risk analysis skills with a proactive approach to continuous improvement.
• Strong interpersonal and stakeholder engagement skills with the ability to influence outcomes.
• Industry certifications highly regarded such as:
• GIAC certifications (e.g. GCIA GCIH GCFA)
• CompTIA Security or CySA
• Certified Ethical Hacker (CEH)
• Splunk Certified Power User / Admin
• AWS/Azure Security Specialty
• Cyber Defender Certification (CCD)

Apply: If you are interested in the above opportunity please submit a covering letter and resume that best demonstrates your ability to meet the requirements of the role.

As part of the recruitment process you may be required to complete pre-employment screening which may include a medical qualification check police clearance and Australian working rights check. There will also be additional security checks and due diligence checks be required for the nature of this role.

Applications close Tuesday 9th December 2025

Our commitment to a diverse and inclusive workplace

Diversity and inclusion are more than words. They guide us on building a thriving workforce that reflects the diversity of our customers and our community.

We encourage applications from every background including Aboriginal and Torres Strait Islander people people with disability women youth LGBTQIA folks and people from culturally and linguistically diverse backgrounds.

Applicants with disability who require adjustments or alternative methods of communication in the recruitment process can contact a Recruitment Officer or.

To read our diversity and inclusion statement please visit our website