Cancer Council NSW is Australia’s leading cancer organisation and our vision is to change the path of cancer and make sure no one walks alone. We are dedicated to meaningful careers where you will not only change the lives and futures of people affected by cancer, but you will work in a multi-award awarding winning culturally connected environment.

About us

Cancer Council NSW (CCNSW) is a community funded and focused not for profit. We are the largest cancer charity in NSW and our point of difference is that we work across every area of every cancer, from research right through to support.

At CCNSW we understand that nothing feels better than doing work you really care about. As Australia’s leading organisation supporting all people impacted by all cancers, we understand how good it feels to make a difference. We know that almost 1 in 2 Australians are affected by cancer during their lifetime, by joining the passionate team at CCNSW you’ll know that each day the work you’re doing will positively impact people in your life and Australia.

Together, we will work towards our goal of a cancer free future, while at the same time encouraging you to get the most out of your life with a supportive environment anchored in flexibility, physical and mental wellbeing to bring out the best of what makes you uniquely you. CCNSW we’re here for meaningful careers that feel good.

About the team

The IT Security and Infrastructure team is responsible for securing and supporting the organisation across a wide range of platforms. We ensure that cybersecurity best practices are adopted and adhered to, so we can hopefully eliminate harmful cybersecurity incidents, that could affect our donors and people living with cancer.

About the role

The Cloud Security Engineer will be responsible for responding to security incidents, ensuring the security of cloud environments, protecting the organisation against cyber threats, identifying and recommending opportunities to deliver continuous improvement, and ensuring we always deliver the most secure outcomes in line with industry best practices.

Key responsibilities of the role

• Responsible for the administration, security and monitoring of all cloud services, virtual servers and software used to support organisational requirements.
• Responsible for the management, configuration and monitoring of all Microsoft Defender products – XDR, Endpoint, Office 365, Identity, Cloud Apps and Vulnerability Management.
• Responsible for Sentinel including connectors, analytic rules and hunting notebooks.
• Assess and remediate vulnerabilities in applications, endpoints, servers and cloud services.
• Manage and monitor on-premises wireless networks, firewalls and network security devices.
• Monitor and respond to security alerts for both on-premises and cloud infrastructure.
• Conduct threat hunting by searching logs and events for IOCs and determining impact.
• Comply with ACSC Essential 8, NIST and PCI DSS cybersecurity frameworks.
• Perform third-party technology risk assessments for new and current vendors.
• Manage small projects or elements of larger projects to assist with the delivery of new initiatives.
• Work with various vendors to ensure effective security posture is maintained.
• Maintain the necessary documentation of all security configurations and changes.

• Contribute to the maintenance and improvement of personal and team technical skills and knowledge of relevant, current, and future cybersecurity trends.

About you

Essential:

• 3+ years’ experience as a security engineer in an Azure Cloud environment.
• 5+ years’ experience in any relevant security role

• 5+ years’ experience in any Cloud or Senior Systems engineering role
• Current experience with Microsoft Sentinel and Defender products
• Demonstrated experience with Microsoft technologies including Azure, Entra ID, Active Directory, Group Policy, PowerShell, KQL queries and Windows Server.
• Demonstrated knowledge and experience in supporting LAN, WAN, and Wireless LAN networks as well as network security devices.

• Strong analytical and problem-solving skills

• A positive, proactive, and 'service-orientated' approach to IT Security and project delivery.
• Experience in working effectively with a diverse range of internal and external stakeholders and vendors.
• Excellent verbal and written communication skills.

Desirable:

• Microsoft Azure certifications – SC-200, SC-300, AZ-900, AZ-500
• Relevant Cyber Security industry certification – CISSP, CISM, CISA, CEH
• Experience in securing and monitoring Exchange Online and email quarantine.
• Experience with Intune and Defender for Endpoint policy configuration.
• Experience in securing Entra ID identities with Conditional Access policies.
• Experience in implementing SLDC practices in Azure DevOps.

• Tertiary qualifications in a relevant discipline.

About the benefits

• Generous salary packaging options that can increase your take home pay by paying certain expenses using pre-tax dollars up to $15,900 a year.
• Recognised for Voice Project's 2021 and 2023 "Best Workplace" Award.
• A balanced organisational approach to WFH and office
• Additional performance-based leave available.
• Work for purpose and know that your work fosters an engaged, diverse and culturally aware organisation.
• Discounts available for everyday expenses such as private health, retail and fitness

CCNSW is an inclusive place to volunteer and work. We embrace diversity, celebrate our differences, and inspire each person to be their authentic self at work. As we strive to represent the communities we serve, we welcome and actively encourage applications from Aboriginal and Torres Strait Islander people and other diverse groups.

If you require any adjustments to submit your application, please get in touch with us at [email protected] using the subject line: Cloud Security Engineer enquiry via EthicalJobs.

Apply online by visiting our website directly, click the "Apply Now" button then click on the role title and submit your cover letter and resume.

Please note, the health and safety of our people is a priority for us, our employees and volunteers are strongly recommended to be up to date with their COVID vaccination.