Cyber Security Analyst

JobsCloseBy Editorial Insights

Water Corporation is hiring an Analyst: Cyber Security (Threat Defence) to join its onsite team in Leederville, WA, as part of a wide IT transformation focused on faster, smarter services. The role leads threat detection, incident response, vulnerability management, and governance, with hands on Splunk SIEM and SOAR, threat hunting, and coordination with a Managed SOC. You should have tertiary IT or cyber security qualifications or proven experience, plus solid knowledge of NIST/ACSC and MITRE ATT&CK, and hands on with Splunk, Tenable and CrowdStrike. Relevant certifications such as GIAC, CompTIA Security+, CEH are highly regarded. To apply, tailor your cover letter and resume to show incident management, detection engineering, automation, and stakeholder impact, and be ready for pre employment screening. Applications close 20 February 2026.

We’re entering a new chapter for Information Technology at Water Corporation as we deliver bold, future-focussed solutions. With the launch of our new Information and Technology Group Operating Model, we’re transforming how we deliver technology services, making them faster, more responsive, and more aligned with the needs of our business and customers.

As part of this transformation, we’re hiring multiple new positions. These roles are key to shaping a vibrant, forward-thinking Information Technology Group - one that adds real value, delivers better outcomes, and works in smarter, more agile ways. It’s a strategic shift aligned with our organisational strategies, designed to modernise systems, embrace innovation, and create a more flexible, collaborative, and customer-centric IT environment.

If you're equally excited about innovation, transformation, and making a meaningful impact, now is the perfect time to join us.

Real benefits that matter

• Real flexibility with options to work from home, flexible work hours
• An additional 2 well-being days each year
• Access to long service leave pro rata after 3 years of service
• Generous co-contribution superannuation scheme, which offers up to 16%. This includes an 12% standard employer contribution, plus an additional 2% employer co-contribution that matches your own 2% contribution
• Purchase additional leave of up to 12 weeks

Discover more benefits we offer to support the unique and individual ways our employees live.

About the role:

The Analyst – Cyber Security (Threat Defence) plays a key role in safeguarding our environment through advanced threat detection, incident response, and vulnerability management. You will coordinate real-time identification, analysis, and remediation of security threats, leveraging risk-based processes and automation to strengthen our cyber resilience. Working closely with stakeholders, you will ensure security policies, standards, and controls are effectively implemented and continuously improved.

This role is integral to our Cyber Threat Defence function, supporting initiatives such as threat hunting, SIEM/SOAR optimisation, vulnerability identification and analysis, and governance activities. You will champion cyber awareness and contribute to operational improvement projects aligned with our improvement roadmap.

What the role will offer:

• Lead day-to-day analysis of security events and act as the primary contact for our Managed SOC provider.
• Coordinate incident response and recovery activities across resolver groups, ensuring timely remediation.
• Operate and optimise SIEM and SOAR platforms (Splunk) for detection and automation.
• Conduct threat analysis, vulnerability assessments, and proactive threat hunting.
• Support continuous improvement initiatives such as dashboard development, detection tuning, and process automation.
• Collaborate on governance activities, policy reviews, and cyber awareness programs.
• Provide technical guidance for projects, ensuring alignment with security standards and ACSC recommendations.

Key skills and experience:

• Tertiary qualifications in an IT or Cyber Security discipline and/or significant industry experience.
• Strong knowledge of security technologies, frameworks (NIST, ACSC), and MITRE ATT&CK.
• Hands-on experience with SIEM (Splunk), SOAR, vulnerability management tools (Tenable), and EDR platforms (CrowdStrike).
• Demonstrated capability in incident management, threat analysis, and threat hunting.
• Familiarity with logging and monitoring strategies, detection engineering, and automation workflows.
• Excellent problem-solving and risk analysis skills with a proactive approach to continuous improvement.
• Strong interpersonal and stakeholder engagement skills, with the ability to influence outcomes.
• Industry certifications highly regarded, such as:
• GIAC certifications (e.g., GCIA, GCIH, GCFA)
• CompTIA Security+ or CySA+
• Certified Ethical Hacker (CEH)
• Splunk Certified Power User / Admin
• AWS/Azure Security Specialty
• Cyber Defender Certification (CCD)

Apply: If you are interested in the above opportunity, please submit a covering letter and resume that best demonstrates your ability to meet the requirements of the role.

As part of the recruitment process you may be required to complete pre-employment screening which may include a medical, qualification check, police clearance and Australian working rights check. There will also be additional security checks and due diligence checks be required for the nature of this role.

Applications close Friday 20th February 2026 

Our commitment to a diverse and inclusive workplace

Diversity and inclusion are more than words. They guide us on building a thriving workforce that reflects the diversity of our customers and our community. 

We encourage applications from every background, including Aboriginal and Torres Strait Islander people, people with disability, women, youth, LGBTQIA+ folks and people from culturally and linguistically diverse backgrounds. 

We are committed to ensuring an accessible and inclusive work environment to enable people with disability to participate fully in all aspects of employment. 

Applicants with disability who require adjustments during the recruitment process including an alternative format of the application form, can contact a Recruitment Officer at [email protected] or 08 9420 2000.  

To read our diversity and inclusion statement, please visit our website