Senior Microsoft Cloud Security Analyst

About INova

iNova is a different kind of health company. We are leading the way to better health by delivering innovative, patient-centric products that improve the lives of people around the world. Our diverse portfolio of iconic, market-leading consumer health brands and prescription medicines are backed by science and distributed in over 75 markets across Asia, Australia, New Zealand, Middle East & Africa and Europe. Experience the iNova difference today.

Benefits

We offer an award-winning culture and industry-leading benefits that are real, meaningful and reflect the realities of the modern and diverse lifestyles of our employees including:

• Real flexibility including hybrid and flexible working and 4 days additional leave.
• Health and wellness initiatives to support employees physical, mental and social health.
• Investment and focus on continuous learning and development for all employees.
• Modern and central office environment with outcomes-based, agile ways of working.
• A thriving rewards and recognition program.
  
  
  

Be part of a passionate team, focused on delivering innovative healthcare solutions that improve the lives of people around the world!

The Opportunity

We currently have an exciting opportunity for a Senior Microsoft Cloud Security Analyst to join our ANZ Technology team on a full-time permanent basis.

Reporting to IT Infrastructure and Operations Director, the primary purpose of this position is to take full ownership of the Group Technology security capability, which will be predominately Microsoft based but is not limited to only Microsoft scope.

• Reduction of critical and high-risk vulnerabilities across Microsoft cloud environments
• Improvements in Microsoft Secure Score and compliance score metrics
• Timely and effective remediation of audit and incident response findings
• Successful delivery of training and awareness programs with improved end-user security behaviour.
• Maintenance of robust documentation and adherence to change management protocols
  
  
  

Key Accountabilities Include

Security Program Management:

• Identification and clear communication of risks. Proposing remediations to Technology leaders
• Planning and implementing findings or recommendations from annual security audits, incident response preparation and external checks from shareholders, insurance, financial audit etc. via a structured program
• Act as the security design authority / architect, both designing effective security solutions and reviewing solutions proposed by other Technology staff against a set of security requirements
  
  
  

Endpoint Security, Identity, And Security Operations

• Managing daily threats and enhancing security landscape
• Administration of the SIEM system, encompassing the integration of new data sources, monitoring risks, and planning or automating suitable interventions
• Ongoing identity checks on O365 accounts, Groups, SharePoint site access and AD
• Monitoring and managing Azure security, including checks and daily alerts, threats and security enhancements
• Appling Microsoft recommendations to increase overall security score
• Maintaining a secure EUC including Image management, SSL security cert management, Microsoft Defender, Microsoft Purview
  
  
  

End User Security Training

• Manage a program of eLearning end user security training
• Measure effectiveness of training through phishing simulations and user compliance reports
• Maintain training records and provide reporting to compliance and audit teams
  
  
  

Data Management

• Collaborate with Data Governance team to classify and protect sensitive data
• Implement and manage data loss prevention (DLP) policies across Microsoft 365 and cloud environments
• Ensure secure data lifecycle management practices are followed
  
  
  

Incident Response And Remediation

• Work with our incident response service provider to ensure preparation and readiness activities are closed out
• In an incident scenario, contribute as a key stakeholder for actions and data acquisition
  
  
  

General

• Provide security input to required documentation to support Group Technology, this may be small contributions or full document ownership depending on the scenario
• Ensure system changes/maintenance processes are best practice and that change control processes are adhered to
• General Microsoft system administration, as required
  
  
  

About You

To be successful in this role you will posses experience in the below key requirements:

• Microsoft Certified qualification
• MS-500 or equivalent (Essential)
• Microsoft Certified: Azure Security Engineer Associate
• Microsoft Certified: Security Operations Analyst Associate
• Microsoft Certified: Identity and Access Administrator Associate
• MS-101: Microsoft 365 Mobility and Security
• Deep understanding of the portfolio of Microsoft applications especially those in E5 Security (Essential)
• Microsoft Defender ATP security monitoring and management – security operations (Essential)
• Identity and Access security management (Essential)
• Proven experience working as a Security Analyst or Manager (Essential)
• Intune application deployment and Endpoint management (Desirable)
• Understanding for basic networking concepts.
• Microsoft Sentinel and Purview. (Essential)
• Firewall management (Azure firewall, Palo Alto or Cisco Meraki MX) (Desirable)
• Microsoft PKI, certificate authority. (Essential)
• SCCM management and troubleshooting (Desirable) not important
• Experience with server and storage security management (Desirable)
• Scripting using PowerShell , Kql query language (Desirable)
• Tertiary qualifications in IT or related field (Desirable)
• Proven experience recognising alignment between technology and business process (Essential)
• Experience in IT project management (Desirable)
• Able to quickly learn and adapt to new process and technologies to meet business needs and drive business value
• Ability to multi-task and work creatively in a fast-paced environment
  
  
  

Diversity and Inclusion

iNova is an Equal Opportunity employer. We are committed to providing an inclusive workplace culture that values diversity and inclusion, where all our employees are recognised for their unique qualities, ideas and perspectives. We want our employees to reach their full potential, and we are always looking for aspirational people who are motivated to join us on our journey.

How to Apply

If you wish to be part of a passionate team within our thriving organisation, focused on bringing innovative products to market, please APPLY TODAY! We want you to join us in our pursuit of healthy living!

It is iNova’s policy not to accept speculative resumes from Agencies unless the role has been released directly to the agency. If we require your assistance on any roles, we will contact you at the time.