Cybersecurity Education Analyst

Melbourne, AU

Xero logo
Apply now Apply later

Posted 1 month ago

Xero is a beautiful, easy-to-use platform that helps small businesses and their accounting and bookkeeping advisors grow and thrive. 
At Xero, our purpose is to make life better for people in small business, their advisors, and communities around the world. This purpose sits at the centre of everything we do. We support our people to do the best work of their lives so that they can help small businesses succeed through better tools, information and connections. Because when they succeed they make a difference, and when millions of small businesses are making a difference, the world is a more beautiful place.
Due to ongoing growth, we are looking for a Cybersecurity Education Analyst to join our wider Security team and be responsible for security awareness and education programs at Xero!
Who’s the team?
Although part of the wider Security domain, this role will work closely with our Xero Ecosystem team who help build the next generation of platform business for Xero. This is a fast growing team creating new initiatives and products who are focused on enabling success on the Xero platform by exposing core functionality through APIs.
The Ecosystem team ensures third party developers are able to connect with Xero easily and securely. We do this via our OAuth 2 gateway, webhooks, and other services that enable our customers to make great apps on our platform. We also enable internal teams to build features that we expose publicly, which help App Partners make the most of their integrations with us. 
What’s the role?
The Cybersecurity Education Analyst is responsible for security awareness and education programs at Xero. This position is key to the reduction of risk to our organisation by ensuring all employees and contractors can access, understand and implement our security requirements. 
You will collaborate with subject matter experts across Xero to develop informative and engaging educational content. Ensuring that all Xero staff have access to the cybersecurity related training material they need, you will help to grow an informed and security aware organisation.

What you'll do:

  • Contribute to the planning, development and implementation of our security education and awareness programme to increase organisational understanding of Xero’s security best practices.
  • Create and deliver material to product teams on security best practices to enable product teams to take responsibility for the security of their products
  • Engage with Xero security teams to gather content and understand Xero’s security requirements
  • Create training material to share content and requirements created by our specialist security teams
  • Design and deliver engaging security events like CTFs, hackathons, etc
  • Contribute to our customer education programme to improve their security awareness
  • Foster a culture of security across Xero and our customers

What you'll bring:

  • Experience working in the information security field
  • Experience creating and delivering training and educational material
  • Working knowledge of web applications, common web application vulnerabilities and web application penetration testing
  • Working knowledge of secure development processes in an Agile/DevOps environment
  • Good grasp of modern software development practices and lifecycle
  • Familiarity and knowledge of security frameworks (NIST, CIS, ISO)
  • Information security certifications, such as CISSP, CCSP, CISM
  • Excellent written and verbal communication skills with the ability to interact with a variety of individuals at different levels
  • Takes initiative and a passion for all things security and a willingness to go the extra mile

Why Xero?
At Xero we support many types of flexible working arrangements that allow you to balance your work, your life and your passions. We offer a great remuneration package including shares plus a range of leave options to suit your well-being. Our work environment encourages continuous improvement and career development and you’ll get to work with the latest technology.  
Our collaborative and inclusive culture is one we’re immensely proud of. We know that a diverse workforce is a strength that enables businesses, including ours, to better understand and serve customers, attract top talent and innovate successfully. We are a member of Pride in Diversity, in recognition of our inclusive workplace. So, from the moment you step through our doors, you’ll feel welcome and supported to do the best work of your life.
Job tags: CISM CISSP DevOps Go NIST Penetration testing Vulnerabilities
Job region(s): Asia/Pacific
Job stats:  14  2  0
  • Share this job via
  • or

More Information Security position highlights