About the Role
As an Information Security Analyst, you will play a vital role in supporting the day-to-day operation and continuous improvement of the organisation's security environment. This role focuses on monitoring, maintaining, and optimising security tools, responding to alerts and incidents, and supporting ongoing uplift and compliance activities aligned with ISO 27001 and the organisation's broader cyber transformation program.
Role Duties:
Security Operations & Monitoring
- Manage and monitor key security platforms including endpoint protection, firewall, email and web gateways, and the secure Internet Access platform.
- Review, and escalate security incidents, coordinating with IT and vendors to ensure timely resolution.
- Support vulnerability management processes, analyse reports, track remediation progress, and validate patch effectiveness.
- Perform regular security health checks across systems, including privilege account reviews, and configuration audits.
- Contribute to threat-hunting and log analysis activities through SIEM or security monitoring platforms.
- Monitor and Manage Information Security mailbox and Ticket Queue.
Security Tooling & Administration
- Maintain and optimise security tooling such as:
- Network & Perimeter: Firewall Policy reviews, Secure Internet Gateways, Zero Trust access solutions.
- Endpoint & Identity: Endpoint Protection, Monitor and Review Intune, and Entra ID (Azure AD), Privilege Access Management tools, User Access Reviews.
- Data Protection: Email security gateway
- Vulnerability Management: Vulnerability scanners and reporting
- Work with IT teams to ensure consistent security configurations across on-premises and cloud environments.
- Support rollout and tuning of new controls introduced under the cyber uplift program (e.g. PAM, Secure Internet Access, Zero Trust Remote Access).
Governance, Risk & Compliance
- Assist in collecting evidence for ISO 27001 controls and internal audits.
- Ensure incidents, risks, and control gaps are accurately logged and maintained in the respective register.
Awareness & Continuous Improvement
- Provide input into improving security detection, automation, and response playbooks.
- Support security awareness initiatives and help promote good security hygiene across teams.
- Contribute to lessons learned reviews after incidents or tests to strengthen operational resilience.
Skills & Experience:
- 35 years experience in security operations, SOC, or infrastructure security.
- Hands-on experience with one or more: Firewall/VPN, Microsoft 365 Security, Intune, Entra ID, DLP, vulnerability management tools, or SIEM.
- Understanding of networking, endpoint protection, and cloud security principles.
- Familiarity with ISO 27001 or NIST security frameworks.
- Strong analytical, troubleshooting, and communication skills.
- Ability to work collaboratively across IT and business teams in a fast-moving environment.
About Us
IPH Limited is the holding company for intellectual property (IP) and associated companies offering a wide range of IP services and products. IPH companies employ a highly skilled multidisciplinary team of approximately 1,600 people in Australia, New Zealand, Canada, Singapore, Malaysia, China, Indonesia, Thailand, Philippines and Hong Kong. IPH companies service a diverse client base of Fortune Global 500 companies, multinationals, public sector research organisations, SMEs and professional services firms worldwide. The IPH Group is committed to promoting and maintaining a workplace culture of shared respect to enable us all to feel valued and be the best we can be.
How to apply
If this role sounds like a great fit, apply now with your updated resume introducing yourself and why this role is right for you.
Only shortlisted candidates will be notified.
