Your new company
South Australia Police (SAPOL) provides a diverse range of services to the community. These services are aimed at producing a safe and peaceful environment by the minimisation of crime and disorder. It is a large complex organisation which, because of the nature of its operations, is constantly subject to public scrutiny and accountability. It provides services to a range of different locations (over 100) spread across the State on a 24 hour a day basis.
The IS&T Service is responsible for the provision of IT and communications services, making it vital to the achievement of SAPOL’s strategic and operational objectives. In consultation with its customers, IS&T plans, develops, and implements new solutions while supporting existing services to agreed quality and service levels.
Your new role
The Cyber Security Operations Analyst will work within the Information Security Branch and report to the Manager, Cyber Security Incident Response. This role will be responsible for the day-to-day identification, analysis, and response to potential and actual cyber security incidents across the organisation’s technology environment.
The role will leverage modern tools for threat detection, monitoring, and incident triage, and will work closely with IT operations, security specialists, and external partners to ensure timely incident response and resolution.
The Cyber Security Operations Analyst will also contribute to continuous improvement activities, including the refinement of incident response playbooks, incident metrics, and the delivery of training exercises to uplift organisational readiness and cyber resilience.
What you’ll need to succeed
- Demonstrated experience in cyber security monitoring, incident detection, or incident response in a large or complex ICT environment.
- Knowledge of incident response frameworks and best practices (e.g., NIST CSF, ISM, MITRE ATT&CK, Essential Eight, ISO 27035).
- Hands-on experience with SIEM platforms including alert investigation, log analysis, and threat detection.
- Understanding of common attack vectors, malware behaviour, and indicators of compromise.
- Ability to work under pressure during security incidents and collaborate effectively with technical and non-technical stakeholders.
- Strong analytical, problem-solving, and documentation skills, including the ability to contribute to post-incident reports and lessons learned exercises.
- Excellent communication and interpersonal skills, including the ability to articulate technical findings to non-technical stakeholders.
Desirable Characteristics
- Experience with SOAR automation workflows for incident response activities.
- Exposure to cloud security monitoring and hybrid technology environments.
- Industry certifications such as CompTIA Security+, GSEC, GCIH, Microsoft Security Operations Analyst or equivalent.
- Experience participating in cyber security simulations, red team/blue team exercises, or threat hunting initiatives.
Special conditions
- The incumbent must hold a current Australian citizenship and will be subject to a criminal history check.
- The incumbent may be assigned to other duties at this remuneration level or equivalent.
- Some out of hours work and intra/interstate travel may be required.
- The incumbent is required to participate in SAPOL’s iEngage program .
Salary
ASO5- $85,790 - $95,413 per annum plus Super.
Enquiries
Bianca Holmes
(08) 8100 1784
Bianca.Holmes@harrisonmcmillan.com.au
Application Instructions
All applications must be submitted online.
Applicants must submit a covering letter (two pages) addressing the essential minimum requirements of the role outlined in the Position Information Document, a current resume and the contact information of three referees including your current line manager.
Applicants external to SAPOL must complete an RF2099 Pre-Employment Declaration Form and submit this with their application.
South Australia Police is an equal opportunity employer committed to providing a working environment that embraces and values diversity and inclusion.
Aboriginal and Torres Strait Islander People and people with disability are strongly encouraged to apply.
The South Australian public sector supports flexible ways of working including part-time working arrangements wherever reasonably possible. The sector is diverse and desires to increase in diversity and to create opportunities for more South Australians.
We are committed to making reasonable adjustments to provide a positive, barrier-free recruitment process and supportive workplace. If you have any support or access requirements, we encourage you to advise us at the time of application
