Cybersecurity Analyst

The Cybersecurity Analyst protects the university's digital environment by monitoring, detecting, and responding to threats across on‐premises and cloud systems. By ensuring compliance and safeguarding critical data, this role enables secure, uninterrupted operations that support the university's mission of delivering quality education and research. Responsibilities Security Operations & Monitoring Monitor ICT systems and services for vulnerabilities, malware, and suspicious activities using advanced tools. The role involves proactive threat detection, triage of security events, and leveraging automation to streamline alert handling. Continuously review and enhance monitoring processes to strengthen detection capabilities and minimise risk. Incident Management & Response Act as the designated point of contact for cybersecurity incidents. Triage, analyse, and escalate incidents in line with established policies and procedures. Track remediation efforts for security gaps, audit findings and conduct post‐incident reviews, implement lessons learned to strengthen response processes. Vulnerability Management & Risk Management Design and integrate security systems to reduce exposure to threats. Perform regular vulnerability scans across critical and high‐value assets, including applications. Track remediation progress and provide timely status reports to management and work with developers to remediate application‐level vulnerabilities promptly. Identify and assess cybersecurity risks, including application security risks and coordinate mitigation measures with relevant stakeholders. Update risk registers monthly, ensuring new risks are assessed and mitigation plans documented within two weeks of identification. Security Reporting, Metrics and Continuous Improvement Collect, log, and organise cybersecurity events, incidents, and vulnerability data in a centralised system. Analyse data to identify trends and provide actionable insights for management. Evaluate the effectiveness of security standards and procedures regularly, review post‐incident actions, and incorporate improvements into processes. Promote secure development practices, security awareness across teams and encourage participation in security initiatives across divisions. Requirements Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related discipline (Master's degree preferred). Relevant professional certifications such as CISSP, CISM, CISA, CompTIA Security+, CEH. Global Information Assurance Certification such as GIAC, GSEC ,GIAC or GCIH. Cloud Security Certifications such as AWS Certified Security – Speciality or Microsoft Certified: Azure Security Engineer Associate. Additional desirable skills: Knowledge of secure coding practices, application security frameworks (e.g., OWASP Top 10), and experience integrating security into the Software Development Lifecycle (SDLC). Strong understanding of cybersecurity principles, concepts, threats, and best practices from both defensive and incident response perspectives. Hands‐on experience in: Cloud security (AWS, Azure, GCP) and hybrid environments Security monitoring, analytics, and reporting using SIEM and EDR tools Vulnerability assessments and management across infrastructure and applications Network and infrastructure security, including firewalls and endpoint protection Web and application security, including OWASP Top 10 and secure coding practices Advanced knowledge in: - Incident response and escalation, including coordination with technical and business stakeholders. -Vulnerability management frameworks and use of MITRE ATT&CK for threat analysis. -Able to develop and improve of security playbooks, post‐incident reviews, and lessons learned. Preferred experience: Working with development teams to embed security in the software development lifecycle, conducting secure code reviews, and using automated scanning tools. Desirable Characteristics Strong communication skills and able to explain complex technical concepts in clear, simple terms to both technical and non‐technical stakeholders. Critical thinking and problem‐solving, capable of analysing situations, anticipating risks, and making sound decisions under pressure. Proactive mindset, takes initiative to identify risks, suggest improvements, and drive security awareness. High adaptability and continuous learning , comfortable with change, and committed to staying current with evolving threats and technologies. Attention to detail, meticulous in monitoring, analysis, and documentation to ensure accuracy and compliance. Able to collaborate and work as a team and works effectively with colleagues across different departments to implement security measures. Closing date: 26 December 2025Please apply via We thank you for your interest and shortlisted candidates will be notified. The Singapore campus of James Cook University (registered as James Cook University Pte Ltd in Singapore) is a wholly owned company of James Cook University Australia. The University offers Bachelor & Master Programs in Business, Psychology, Information Technology & Education at the Singapore campus of James Cook University. #J-18808-Ljbffr