The Information Technology (IT) team plays a key role in providing business enablement throughout ResMed. We are focused on application, infrastructure, and user productivity solutions, with innovation, efficiency and security. Our goal is providing customer oriented agile delivery, effective business partnership and state-of-the-art technology solutions.
Let’s Talk About The Team
The ResMed Enterprise Security Operations team is focused on building a high performing Security Operations Center to monitor our diverse environment. Combining cutting edge tools, existing and newly developing processes, and a security focused business, this provides an exciting environment to really make an impact. As an ever evolving company, there’s a lot of opportunity to learn new tools, collaborate with other teams to solve problems, and have some freedom to investigate events. The ResMed security team is a supportive environment that encourages learning, investing in new skills and asking questions. We strive to create an environment where every team member is empowered to do the best work of their careers.
Let’s talk about the role
The primary role of Information Security Analyst is to work with our Global team of Security Analysts to monitor our security tools, investigate unusual findings, and respond to incidents within the business.
- Keeps up to date on the latest security news and monitors for threats and zero day or other exploits followed by action and communication
- Monitors information security related websites (US-CERT, SANS, Internet Storm Center, etc.) and other sources to stay up to date on current attacks and trends
- Work with DevOps teams to provide Security guidance and feedback
- Monitors and works Security Operations ticket queue
- Monitors and investigates alerts generated from ResMed’s security appliances, cloud services and various technologies
- Works with Infrastructure teams and other internal business units as required to promote Secure computing standards and monitoring
- Compiles and analyzes data for management reporting and metrics
- As an active member of the team, monitor and process response for security events on a 24x7 basis.
- Analyzes potential impact of new threats and communicates risks to stakeholders
- Assist with incident response as events are escalated, including triage, remediation and documentation.
- Investigate and document events to aid incident responders, managers and other SOC team members on security issues and the emergence of new threats.
- Evaluate SOC policies and procedures and recommend updates to management as appropriate.
- Partner with the security operations engineering team to improve tool usage and workflow, as well as with the advanced threats and assessment team to mature monitoring and response capabilities.
- Provides investigation findings to relevant business units to help improve information security posture
- Contributes to security related business and InfoSec projects in both an advisory and hands on capacity
- Continually innovates on existing security posture, finding and identifying gaps, and defining a plan to close the identified gaps
- Leverage knowledge in multiple security disciplines, such as Windows, Unix, Linux, data loss prevention (DLP), endpoint controls, databases, wireless security and data networking, to offer global solutions for a complex heterogeneous environment.
Let’s talk about you
- A passion for Security is more important than experience to us. We can teach the Security side of the role, we can’t teach someone to be curious, inquisitive and wonder "why is that thing that way?"
- Demonstrates the ability to work extremely well under pressure while maintaining a professional image and approach
- Able to perform independent analysis and distill relevant findings and root cause
- Strong analytical writing skills to articulate complex ideas clearly and effectively
- Team player with proven ability to work effectively with other business units, IT management and staff, vendors, and consultants
- Strong communication skills such as planning and leading effective meetings and conducting structured interviews to collect information
- Advanced presentation skills to provide relevant and timely information to stakeholders and/or decision makers in an effective and professional manner
- Minimum of 3 years IT Experience
- AWS, Cloud or Software Development Experience
- Incident Response experience (either "General IT" or Security related)
- Experience with EDR, SIEM or CASB Tools
- Experience working with security regulatory requirements and standards (such as NIST 800 series, ISO 2700x series, GLBA, FFIEC)
Joining us is more than saying “yes” to making the world a healthier place. It’s discovering a career that’s challenging, supportive and inspiring. Where a culture driven by excellence helps you not only meet your goals, but also create new ones. We focus on creating a diverse and inclusive culture, encouraging individual expression in the workplace and thrive on the innovative ideas this generates. If this sounds like the workplace for you, apply now! We commit to respond to every applicant.