Website Afilias Australia Pty. Ltd.

Afilias (www.afilias.info) is the leader in providing global Internet infrastructure solutions, powering key pieces of the Internet’s infrastructure. In fact, you are most likely using our DNS infrastructure on a daily basis, just by accessing .org, .info, .mobi., .me, and many other websites. With our second-to-none reputation for performance, we currently support many Top-Level Domains with over 22 million domains – that’s 10% of all the domain names globally, making us the second largest registry services provider in the world. We are growing too, and we are now supporting .au ccTLD.

 

The everyday responsibility for a Security Specialist at Afilias is multi-faceted and involves monitoring, adapting, and responding to various security challenges. Your job will consist of actively analysing external and internal data sources for patterns and inconsistencies. You will identify trends and relationships in data related to domain and cyber security threats. In addition, you will contribute to our internal business intelligence; establish, monitor and maintain security controls to adhere to standards

being followed; and participate in security audits and risk analysis. You will also have the opportunity to collaborate with other organizations (e.g. CERT) and individuals within the Internet security community as well as law enforcement involved in combating cyber-security threats. You will prepare cyber threat profiles and assessments with extensive research work. You will help to ensure all AU data, hardware and software is safeguarded.

 

Requirements and qualifications:

● Bachelor’s degree (in Computer Science, Intelligence, information Security), or other relevant field highly desired

● 2+ years of experience working in security analysis, fraud/abuse desk, compliance, audit, risk management; a Security Operations Centre (SOC); or a Computer Emergency Response Team (CERT); or equivalent

● Analyses information security systems and applications and identifies the vulnerabilities

● Designs, implements, and enforces security policies in accordance with the established standards to protect confidentiality, integrity and availability of systems and data

● Creates and maintains procedures for data access, protection, and backup

● Audit controls related to information systems, platforms, and operating procedures to ensure compliance with security standards

● Investigates security violations and suggest modifications to tools and procedures

● Strong understanding and knowledge in risk assessment processes, threat modelling, link and gap analysis and methodologies

● Participates in security and privacy impact assessments

● Experience distilling and correlating raw information from multiple data sources into actionable intelligence, validating accuracy and reliability of information

● Strong data analytics and research skills to identify unexpected patterns and occurrences

● Excellent research skills to keep abreast of latest security issue and trends

● Help with process documentation and training to internal and external users related to domain anti-abuse program and other security services

● Ensure timely customer outreach and follow-up on abuse mitigation efforts

● Prepare customer and management reports as required

● Research and investigate regulatory compliance requirements and assist in resolving compliance, audit and regulatory issues

● Collaborate with other team members to provide guidance in security related areas

● Recognize and deal appropriately with confidential and sensitive information

● Perform day to day tasks as it relates to Information Security

 

Interpersonal Skills Required:

● Good judgment and independent decision-making skills

● Process-oriented with originality and creativity in problem solving

● Ability to deal effectively with constant change and conflicting priorities

● Self-motivated and enthusiastic team player

● Outstanding written and oral communication skills

● Detail oriented with strong analytical skills

 

Desired Skill Sets:

● Familiarity with ISO standards 27001 and 22301 an asset

● Familiarity with security guidance provided by Australian Signals Directorate (ASD) for example: Essential Eight, and OWASP Top 10 an asset

● Forensic analysis and familiarity with cyber-crime and techniques

● Familiarity with data analysis tools and methods

● Knowledge of Linux and scripting (Shell, PERL or similar) an asset

● Knowledge of security controls for network, database, application and operating systems

● Familiarity with tools like Nessus/Qualys, Burp, Splunk, SIEM systems

● Knowledge of security controls for network, database, application and operating systems an asset.

● Recognized security certification an asset – CCNA, Security+, Network+, CEH, CISM, ISO 27001 LI or similar

To apply for this job email your details to careersaustralia@afilias.com.au.