Cyber Security Support Engineer

Company Description

Nine is Australia’s largest locally owned media company – the home of Australia’s most trusted and loved brands spanning News, Sport, Lifestyle, and Entertainment. We pride ourselves on creating the best content, accessed by consumers when and how they want – across Publishing, Broadcasting and Digital.

Nine’s assets include the 9Network, major mastheads such as The Sydney Morning Herald, The Age and The Australian Financial Review, radio stations 2GB, 3AW, 4BC and 6PR, digital properties such as nine.com.au, 9Now, 9Honey, Pedestrian.TV, Drive, subscription video platform Stan and a majority investment in Domain Group.

Our Purpose: We shape culture by sparking conversations, challenging perspectives, and entertaining our communities.

We bring people together by celebrating the big occasions and connecting the everyday moments. Australia belongs here. We bring our purpose to life via three shared values: We walk the talk, turn over every stone and keep it human.

Job Description

This position is a Cyber Security Support Engineer role managing Netskope DLP and other security engineering tools. This is an important role within the cyber security team and will provide an opportunity for someone to contribute to a significant uplift in Nines security posture. 

Primary focus will be the uplift of DLP controls, including supporting DLP rules, processes, as well as managing DLP incidents. This will involve working with other members of the Cyber Security team, as well as other teams including Service Desk, People and Culture and managers and users throughout the business.

This role will also be exposed to other Cyber Security tools, including endpoint privilege, vulnerability management and identity tools amongst others.

The Cyber Security Support Engineer plays a crucial role in safeguarding Nine’s critical systems and data by overseeing key controls that protect Nine’s data and content.  This role involves maintaining and tuning robust policy settings that control access to key applications and portals, managing access to applications, troubleshooting cyber security application issues and responding to service interruptions and incidents. 

This role will also assist the team in performing other key security functions such as vulnerability management, help coordinate vulnerability remediation efforts, and ensure continuous improvement of security posture. Other cyber security engineering tasks involve product evaluation and implementation, risk management and security incident response.

Key accountabilities:

• Implement, configure, and maintain DLP solutions to securely manage, monitor, and control access.

• Define and enforce policies and procedures for the management of DLP ensuring compliance with industry standards and regulations.

• Conduct regular reviews and assessments to identify and remediate security risks related to DLP.

• Monitor and audit privileged activities, ensuring compliance with policies and promptly addressing any anomalies or security incidents.

• Conduct regular vulnerability assessments, penetration tests, and security scans on systems, networks, and applications to identify vulnerabilities and weaknesses.

• Prioritise vulnerabilities based on risk and potential impact, working with relevant teams for resolution.

• Collaborate with IT and security teams to facilitate the timely remediation of identified vulnerabilities.

• Track and report on the progress of vulnerability remediation efforts to senior management.

• Stay informed about emerging threats and vulnerabilities by monitoring security advisories, research reports, and threat intelligence sources.

• Translate threat intelligence into actionable insights for vulnerability management.

• Maintain comprehensive records of vulnerability assessments, remediation actions, and compliance status.

• Prepare and present reports to senior management and auditors on vulnerability management program effectiveness and risk reduction.

Qualifications

• Bachelor's degree in cybersecurity, information technology, or a related field. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) are preferred.

• Proven experience in DLP or related cybersecurity roles.

• Excellent communication and interpersonal skills.

• Analytical mindset with the ability to assess, prioritise, and address security risks, vulnerabilities, and threats.

• Proven experience in vulnerability management, penetration testing, or related cybersecurity roles.

• Strong understanding of vulnerability scanning tools, risk assessment methodologies, and best practices.

• Knowledge of common vulnerabilities and exposure (CVE) databases and industry standards like Common Vulnerability Scoring System (CVSS).

• Excellent communication and collaboration skills.

Additional Information

Our Commitment to Diversity and Inclusion:

At Nine, we are committed to fostering a workforce that embraces all aspects of diversity and inclusion and where practices are equitable to ensure our people experience a sense of belonging. From day one, you'll be encouraged to bring your whole self to work and will be supported to perform at your best. Should you require any adjustments to the recruitment process in order to equitably participate, we encourage you to advise us at the time of application.

We encourage applications from Aboriginal and Torres Strait Islander people, people with disabilities, and of all ages, nationalities, backgrounds and cultures.

Disclaimer: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes.