Logo for ITE1/ITE2 Cyber Security Operations

ITE1/ITE2 Cyber Security Operations

Australian Security Intelligence Organisation
Canberra, ACT
A$15.40 p/h
Information & Communication Technology → Security
Full-time
On-site

Posted 2 days ago

The Organisation

The Australian Security Intelligence Organisation (ASIO) protects Australia and Australians from threats to their security. In a complex, challenging and changing security environment, our success is built on the imagination and intelligence of our team. ASIO’s people are ordinary Australians but they do extraordinary things – they are our most important asset. To be successful in our mission, we need talented people who are highly capable, dedicated, adaptable and resilient.

We seek to reflect the diversity of the community we protect. ASIO is committed to fostering a diverse and inclusive environment, where all staff are valued and respected. We welcome applications from all eligible candidates, irrespective of gender, sexual orientation, ethnicity, religious affiliation, age or disability. Aboriginal and Torres Strait Islander Peoples are encouraged to apply. We are secretive about what we do, not what we value.The opportunity

ASIO employs a diverse range of cyber security specialists across offensive and defensive functions. As a Cyber Security Specialist, you could be involved in the protection of ASIO from insider and cyber threats, or directly contribute to operational activities. At ASIO, you have the opportunity to develop, expand and apply your skills across the full breadth of its cyber security functions.

We are seeking cyber security technologists across multiple levels to fill vacancies in our Cyber Security Operations Centre (SOC) and Cyber Security Assurance teams. This includes roles that specialise in:

  • Protective monitoring.
  • Incident response.
  • Platform and detection engineering.
  • Cyber threat intelligence.
  • Threat hunting.
  • Red teaming/attack modelling.
  • Vulnerability assessment.
  • Governance, Risk and Compliance (GRC).
  • Cyber Security Advisor.

These roles are critical to ensuring that ASIO is effectively mitigating cyber security threats through the delivery of cyber security monitoring and response capabilities, vulnerability management, cyber security awareness campaigns, and the delivery of technical capabilities to support the cyber security functions.

These positions may attract an additional technical skills allowance.

A merit pool may be created to fill future vacancies which have the same or similar requirements to this position. This merit pool will be valid for up to 18 months.

Role responsibilities

As a Cyber Security Operations Centre Analyst (ITE1/ITE2) in ASIO, you will:

  • Leverage your understanding of emerging cyber-attacks to develop mechanisms to monitor and detect malicious activity on ASIO systems.
  • Analyse security event logs, network traffic, and system activity to identify and understand security threats.
  • Respond to security incidents by investigating and resolving malicious activity.
  • Ingest and implement threat intelligence to improve threat detection and contribute to the creation of tactical and strategic intelligence.
  • Undertake threat hunts to proactively detect malicious activity on systems.
  • Develop and maintain documentation of security incidents, including root cause analysis and lessons learned.
  • Maintain up-to-date technical knowledge on the latest cyber security threats, technologies, and developments.

As a Cyber Security Operations Centre Detection Engineer (ITE1/ITE2) in ASIO, you will:

  • Assess and determine detection requirements for each monitored environment using relevant frameworks, policies, system and application risks, business risk and threat intelligence.
  • Develop, test and deploy new and updated detection content across the monitored estate with support from the threat intelligence, protective monitoring and incident response teams.
  • Review and update existing detection content to ensure it remains relevant and appropriate to the monitored estate.
  • Provide operational support for a number of cyber security technologies such as endpoint security, network security, cloud security and vulnerability management to ensure they address detection requirements.
  • Maintain accurate documentation on deployed detection content to ensure the SOC has an accurate view of content coverage across the monitored estate.
  • Investigate and maintain up-to-date knowledge on the latest cyber security technologies, with particular focus on detection and security automation technologies, to contribute to Continuous Service Improvement efforts.

As a Cyber Security Operations Centre Platform Engineer (ITE1/ITE2) in ASIO, you will:

  • Design, configure and manage complex infrastructure and security technologies across both cloud and on-premise environments in collaboration with internal SOC teams and external stakeholders.
  • Maintain the operational performance, availability, capacity and security of SOC platforms and infrastructure.
  • Conduct routine maintenance of SOC tooling and platforms to ensure they remain fully operational and fit-for-purpose.
  • Work with appropriate stakeholders to act on requests for changes to platforms, systems and configurations to ensure the on-going effective of SOC platforms.
  • Assist with maintaining and updating knowledge base articles associated with the SOC’s use of technology including virtual and physical network/service diagrams, data flows, interfaces and build/configuration guides across the monitored estate.
  • Investigate and stay abreast of technological advancements that would be applicable to SOC operations and contribute to Continuous Service Improvement efforts.

As a Cyber Security Technologist, Cyber Security Assurance (ITE1/ITE2) in ASIO, you will:

  • Promote, enable and provide specialist security advice on the design, architecture of new and emerging systems in alignment with industry and community best practices.
  • Collaborate with project teams in the development of securely designed systems through the development of supporting security documentation and risk assessments.
  • Lead and support compliance assessments of ASIO’s systems against relevant Australian Government policies, standards and best practices such as: Protective Security Policy Framework (PSPF) and Information Security Manual (ISM).
  • Lead and facilitate cyber threat modelling and risk workshops, collaborating with stakeholders to identify, assess, and prioritise security threats and risks, and provide support and guidance to implement mitigation strategies.
  • Develop and maintain IT security policies.
  • Perform staff security awareness maturity assessments and deliver curated and interactive cyber security awareness campaigns to increase awareness.
  • Maintain up-to-date technical knowledge on the latest cyber security threats, technologies and developments.

What you will bring

We invite applications from people with some or all of the following attributes:

  • Relevant degree or equivalent experience working in a cyber security operations, engineering or assurance role with a strong curiosity to learn from subject matter experts. You will have some experience working in a role related to the field that you are applying for (i.e. operations, engineering and/or assurance).
  • Relevant certifications within cyber security (e.g. SANS GIAC certifications, CISSIP, CISM).
  • Experience with security technologies such as Security Information and Event Management (SIEM) systems (preferably Splunk and/or Sentinel), vulnerability management tools (e.g. Tenable), endpoint and network security tools, threat intelligence platforms (e.g. OpenCTI), incident response tools, and cloud environments (e.g. AWS Guard Duty and Microsoft Defender).
  • Experience in the design, implementation, and maintenance of on-premise and/or cloud enterprise systems using some or all relevant technologies such as the VMware ecosystem, enterprise operating systems, AWS services (EC2, ECS, CloudFormation, CodePipeline) and platform automation tools such as Ansible and Puppet.
  • Knowledge of security frameworks and standards such as the Information Security Manual (ISM).
  • Previous experience working in a Security Operations Centre would be highly desirable.
  • Strong analytical and problem-solving skills, with the ability to work under pressure.
  • Demonstrated ability to work closely with stakeholders, including internal technology teams, external managed service providers, vendor professional services, and domestic and international partners.
  • Excellent collaboration skills and demonstrated ability to lead the delivery outcomes.
  • Strong security awareness and risk management skills.

What we offer you

ASIO provides a number of benefits to its staff including:

  • A competitive salary, including a 7.5 per cent allowance for maintaining a TOP SECRET-Privileged Access security clearance.
  • Employer superannuation contributions of 15.4 per cent.
  • A variety of leave options, in addition to the standard 4 weeks annual leave to ensure your worklife balance.
  • Flexible working arrangements. (Please note: due to our unique working environment, work from home options are generally not available.
  • Study assistance, including financial support and study leave for tertiary education.
  • Access to 7 staff-led diversity and inclusion networks.
  • Access to an Employee Assistance Program (EAP).

Eligibility

To be eligible for the role, you must:

  • Be an Australian citizen.
  • Be assessed as suitable to hold and maintain a TOP SECRET-Privileged Access security clearance.
  • Have relevant tertiary qualifications and/or equivalent work experience in the cyber security industry.

ASIO is committed to fostering a diverse and inclusive environment, where all staff are valued and respected. We welcome and value applications from all eligible candidates, irrespective of gender, sexual orientation, ethnicity, religious affiliation, age or disability. Aboriginal and Torres Strait Islander peoples are encouraged to apply.

Reasonable adjustments

ASIO is committed to fostering a diverse and inclusive environment for candidates to participate within at all stages of the selection process. These opportunities may include reasonable adjustment to assessment methodologies to enable full participation. Please let us know if you require any additional assistance or reasonable adjustments during any stage of the recruitment process in order to fully participate in the recruitment process or the workplace.

Location

These positions are located in Canberra, ACT, and Sydney, NSW. Relocation assistance is provided to successful applicants when relocating.

We advertise positions nationally to give everybody the opportunity to apply. Please refer to the above locations before applying.

How to apply

Click on ‘Apply online’ to commence your application. Your application must be complete and include the following:

  • A written pitch of up to 500 words using examples to demonstrate how your skills and experience meet the requirements of the role. Please clearly indicate the position and level that you are interested in within your pitch.
  • A current CV, no more than 2 pages in length, outlining your employment history, the dates and a brief description of your role, as well as any academic qualifications or relevant training you may have undertaken.
  • Details of 2 referees, which must include a current supervisor.

Before applying you should familiarise yourself with the ASIO People Capability Framework and Core Capability Guide, both available on the ASIO website. To increase your chances of success, tailor your

application responses to align with the relevant capabilities and levels outlined in these frameworks.

ASIO holds all employment applications in the strictest of confidence. It is essential that you do the same. Please do not discuss your application with others as doing so may adversely affect your potential employment.

Closing date and time

Monday 1st September 2025, at 5:00pm AEST

No extensions will be granted and late applications will not be accepted.

Employment conditions

Employment is under the Australian Security Intelligence Organisation Act 1979. Conditions of service are similar to those applying in the Australian Public Service. We recognise entitlements accrued under the Public Service Act 1999 and provide for continuation of superannuation under the Commonwealth schemes. Salary packaging arrangements are also available.

Australian Workplace Equality Index

In 2024, ASIO achieved the Australian Workplace Equality Index (AWEI) Gold Standard, recognising ASIO’s inclusion work and positive culture. ASIO was one of only 7 public sector employers, and the first Australian intelligence agency, to achieve this status. ASIO has proudly retained AWEI Gold Standard in 2025.

The ASIO Diversity and Inclusion Strategy reflects ASIO’s commitment and recognises the benefits of being a diverse and inclusive organisation. For further information about ASIO’s Diversity and Inclusion networks, please visit: www.asio.gov.au/about/diversity-and-inclusion.

Enquiries

If you require further information after reading the selection documentation, please contact ASIO Recruitment at [email protected] or phone 02 6263 7888.

More information

For more information about ASIO, please visit: www.asio.gov.au

About Australian Security Intelligence Organisation

Sydney, NSW, Australia

ASIO was established in 1949 as Australia's national security intelligence service. ASIO operates under the direction of the Director-General of Security who is responsible to the Attorney-General.

ASIO's role is to identify and investigate threats to security, wherever they arise, and to provide advice to protect Australia, its people and its interests. ASIO's functions are set out in the the Australian Security Intelligence Organisation Act 1979 (the ASIO Act).

Security is defined in the ASIO Act as espionage, serious threats to Australia's territorial and border integrity, sabotage, politically motivated violence, the promotion of communal violence, attacks on Australia's defence system, and acts of foreign interference. It also includes the carrying out of Australia's responsibilities to any foreign country in relation to threats to security with a particular focus on politically motivated violence.

Source: this is an extract from the company’s own website.

Looking for More Opportunities?

Explore more jobs with upfront salary details that respect your worth.

Security Officer

Mondiaux Pty Ltd

Canberra, ACT
A$27-$41 p/h
Full-time
On-site

Non-cleared Security Officer - US Embassy

MSS Security

Logo for Non-cleared Security Officer - US Embassy
Canberra, ACT
A$28.38-$28.86 p/h
Full-time
On-site

Machine Operator

Terra Mater Group

Canberra, ACT
A$30-$40 p/h
Full-time
On-site

Construction Worker & Plant Operator

Pacblue Constructions

Logo for Construction Worker & Plant Operator
Canberra, ACT
A$30-$50 p/h
Full-time
On-site

Excavator Operator/ Earthworks Foreman

First Sheds

Logo for Excavator Operator/ Earthworks Foreman
Canberra, ACT
A$40-$50 p/h
Full-time
On-site

Trainee Mobile Speed Camera Operator - Fyshwick

G4S

Logo for Trainee Mobile Speed Camera Operator - Fyshwick
Fyshwick, ACT
A$33.96 p/h
Casual
On-site

Truck Driver/Excavator Operator (Collection Unit Operator)

ACCESS RECYCLING

Logo for Truck Driver/Excavator Operator (Collection Unit Operator)
Fyshwick, ACT
A$35-$39.99 p/h
Full-time
On-site

Excavator/Loader Operator - 12-week contract possible extension

Re.Group

Logo for Excavator/Loader Operator - 12-week contract possible extension
Hume, ACT
A$34 p/h
Full-time
On-site