We’re entering a new chapter for Information Technology at Water Corporation as we deliver bold, future-focussed solutions. With the launch of our new Information and Technology Group Operating Model, we’re transforming how we deliver technology services, making them faster, more responsive, and more aligned with the needs of our business and customers.
As part of this transformation, we’re hiring multiple new positions. These roles are key to shaping a vibrant, forward-thinking Information Technology Group - one that adds real value, delivers better outcomes, and works in smarter, more agile ways. It’s a strategic shift aligned with our organisational strategies, designed to modernise systems, embrace innovation, and create a more flexible, collaborative, and customer-centric IT environment.
If you're equally excited about innovation, transformation, and making a meaningful impact, now is the perfect time to join us.
Real benefits that matter
- Real flexibility with options to work from home, flexible work hours
- An additional 2 well-being days each year
- Access to long service leave pro rata after 3 years of service
- Generous co-contribution superannuation scheme, which offers up to 16%. This includes an 12% standard employer contribution, plus an additional 2% employer co-contribution that matches your own 2% contribution
- Purchase additional leave of up to 12 weeks
Discover morebenefits we offer to support the unique and individual ways our employees live.
About the role:
The Analyst – Cyber Security (Threat Defence) plays a key role in safeguarding our environment through advanced threat detection, incident response, and vulnerability management. You will coordinate real-time identification, analysis, and remediation of security threats, leveraging risk-based processes and automation to strengthen our cyber resilience. Working closely with stakeholders, you will ensure security policies, standards, and controls are effectively implemented and continuously improved.
This role is integral to our Cyber Threat Defencefunction, supporting initiatives such as threat hunting, SIEM/SOAR optimisation, vulnerability identification and analysis, and governance activities. You will champion cyber awareness and contribute to operational improvement projects aligned with our improvement roadmap.
What the role will offer:
- Lead day-to-day analysis of security events and act as the primary contact for our Managed SOC provider.
- Coordinate incident response and recovery activities across resolver groups, ensuring timely remediation.
- Operate and optimise SIEM and SOAR platforms (Splunk) for detection and automation.
- Conduct threat analysis, vulnerability assessments, and proactive threat hunting.
- Support continuous improvement initiatives such as dashboard development, detection tuning, and process automation.
- Collaborate on governance activities, policy reviews, and cyber awareness programs.
- Provide technical guidance for projects, ensuring alignment with security standards and ACSC recommendations.
Key skills and experience:
- Tertiary qualifications in an IT or Cyber Security discipline and/or significant industry experience.
- Strong knowledge of security technologies, frameworks (NIST, ACSC), and MITRE ATT&CK.
- Hands-on experience with SIEM (Splunk), SOAR, vulnerability management tools (Tenable), and EDR platforms (CrowdStrike).
- Demonstrated capability in incident management, threat analysis, and threat hunting.
- Familiarity with logging and monitoring strategies, detection engineering, and automation workflows.
- Excellent problem-solving and risk analysis skills with a proactive approach to continuous improvement.
- Strong interpersonal and stakeholder engagement skills, with the ability to influence outcomes.
- Industry certifications highly regarded, such as:
- GIAC certifications (e.g., GCIA, GCIH, GCFA)
- CompTIA Security+ or CySA+
- Certified Ethical Hacker (CEH)
- Splunk Certified Power User / Admin
- AWS/Azure Security Specialty
- Cyber Defender Certification (CCD)
Apply: If you are interested in the above opportunity, please submit a covering letter and resume that best demonstrates your ability to meet the requirements of the role.
As part of the recruitment process you may be required to complete pre-employment screening which may include a medical, qualification check, police clearance and Australian working rights check. There will also be additional security checks and due diligence checks be required for the nature of this role.
Applications close Tuesday 9th December 2025
Our commitment to a diverse and inclusive workplace
Diversity and inclusion are more than words. They guide us on building a thriving workforce that reflects the diversity of our customers and our community.
We encourage applications from every background, including Aboriginal and Torres Strait Islander people, people with disability, women, youth, LGBTQIA+ folks and people from culturally and linguistically diverse backgrounds.
Applicants with disability who require adjustments, or alternative methods of communication in the recruitment process, can contact a Recruitment Officer[email protected]or 9420 2000.
To read our diversity and inclusion statement, pleasevisit our website
