Cyber Threat Intelligence Specialist

Job Description

The Australian Security Intelligence Organisation (ASIO) protects Australia and Australians from threats to their security. In a complex, challenging and changing security environment, our success is built on the imagination and intelligence of our team. ASIO’s people are ordinary Australians but they do extraordinary things – they are our most important asset. To be successful in our mission, we need talented people who are highly capable, dedicated, adaptable and resilient. We seek to reflect the diversity of the community we protect. ASIO is committed to fostering a diverse and inclusive environment, where all staff are valued and respected. We welcome applications from all eligible candidates, irrespective of gender, sexual orientation, ethnicity, religious affiliation, age or disability. Aboriginal and Torres Strait Islander Peoples are encouraged to apply. The opportunity Cyber threat and intelligence specialists work on and enhance ASIO’s existing cyber threat intelligence (CTI) capability which involves refining and expanding the processes, tools, and expertise used to collect, analyse, and disseminate threat intelligence. This may include integrating new data sources, such as open-source intelligence (OSINT) feeds or internal security logs, to improve the accuracy and completeness of threat information. Additionally, enhancing ASIO’s CTI capability may involve implementing advanced analytics and machine learning techniques to automate threat analysis and identification, as well as developing more effective dissemination and communication channels to ensure that threat intelligence is actionable and accessible to key stakeholders. Role responsibilities Leverage your understanding of cyber threat intelligence (CTI), technical analysis and automation to enhance and improve ASIO’s CTI platform and tools enabling technical analysis automation on malware. Maintain and enhance cloud-native solutions using containerisation and orchestration tools. Manage the backend infrastructure, including cloud infrastructures, data storage and backups. Support the front-end development and user access, including roles and permissions. Engage with partners to gather ideas about data feeds, applications, and support for the tools. Troubleshoot various complex technical issues. Collaborate with internal teams to support the management of these tools. What you will bring We invite applications from people with the following attributes: Strong analytical and problem-solving skills, with the ability to work under pressure. Demonstrated ability to work closely with stakeholders, including internal technology teams, external managed service providers, vendor professional services and domestic and international partners. Proven track record and professional history in systems engineering to deliver secure, trustworthy, sustainable and cyber resilient ICT enabled capabilities. Solid understanding of AWS and/or Azure security architecture concepts and knowledge and experience with cloud services such as containers, CI/CD pipelines, secure code management and S3 storage. Understanding of the design, implementation, and/or maintenance of enterprise applications such as Kafka, RabbitMQ, Redis and Keycloak. An ability to handle large data sets, preferably with experience in using NiFi, ELK (Elasticsearch, Logstash, Kibana) and OpenSearch. Familiarity with enterprise operating systems e.g. Ubuntu and Red Hat. Experience with API management using REST APIs. Strong ability to communicate effectively both orally and in writing – including effectiveness in negotiation, consultation and representation both internally and externally. Demonstrated skills in time management and handling competing priorities. What we offer you ASIO provides a number of benefits to its staff including: A competitive salary, including a 7.5% allowance for maintaining a TOP SECRET-Privileged Access security clearance. Employer superannuation contributions of 15.4%. A variety of leave options, in addition to the standard 4 weeks annual leave to ensure your work-life balance. Flexible working arrangements to assist you to maintain your work-life balance. Please note: due to our unique working environment, work from home options are generally not available. Study assistance, including financial support and study leave for tertiary education. Access to 7 staff-led diversity and inclusion networks. Access to an Employee Assistance Program (EAP). Significant training and development opportunities. To be eligible for the role, you must be assessed as suitable to hold and maintain a TOP SECRET-Privileged Access security clearance. Location: The position is located in Canberra. Relocation assistance is provided to successful candidates where required. How to apply Click on ‘Apply online’ to commence your application. Your application must be complete and include the following: A written pitch of up to 800 words using examples to demonstrate how your skills and experience meet the requirements of the role. A current CV, no more than 2 pages in length, outlining your employment history, the dates and a brief description of your role, as well as any academic qualifications or relevant training you may have undertaken. Details of 2 referees, which must include a current or previous manager. Closing date and time: 24 February 2025 at 5:00pm AEDT . No extensions will be granted and late applications will not be accepted. #J-18808-Ljbffr