Senior Analyst (Policy Compliance)

Experience

Degree in Computing

Overall experience of 6+ years in Cyber Security Domain

3+ years of experience in policy compliance scanning and creating custom controls for scanning

3+ year experience in technology support in Application development or Scripting or coding

3+ year experience stakeholder engagement and team management

Hands on experience working with Qualys, Wiz & SNAB

Strong awareness of best practice in security for infrastructure and technologies

Good working knowledge of Findings Management

Experience in IT either, technology support, application development or application support

Have experience in problem solving across multiple teams

Be able to build strong productive relationships with key stakeholders

Have passion, drive, enthusiasm, and will be a self-starter;

An understanding of Security principles

Proven ability to work both individually and within a team environment (at times with little guidance), build strong relationships and maintain rapport with internal NAB stakeholders and 3rd party service providers

Excellent verbal and written communication skills

Ability to attend to the detail on multiple concurrent tasks while meeting various deadlines

Ability to work autonomously and organise/prioritise own work schedule on a short-term basis

Essential capabilities

Support NAB in the usage of Compliance Scanning as a key protection for the bank for both internally and externally facing assets

Provide support for and participate in the creation of NAB's technology configuration specifications

Support the secure use of NAB's technology footprint in the building of new infrastructure and identifying misconfiguration in running infrastructure

Build and automate the configuration documentation and compliance scanning with usage of AI tools and agentic frameworks (requires coding/scripting knowledge)

Support the bank in an uplift of security across the technology teams by building good relationships with key stakeholders, supporting them in their understanding of the identified issues

Support the development and maintenance of controls, processes, documentation, and automation to support and maintain the efficient running of Policy Compliance scanning services

Support in the development of the team to be able to support the tools and processes required to provide vulnerability and policy compliance scanning, and Findings management

Collaborate in the development of Reporting to assist NAB understand control effectiveness, NAB's vulnerability exposure and security configuration posture

Support the use of 3rd party tools and hold vendors accountable for the services NAB purchase by overseeing issues requiring resolution, managing release cycles, assessing new features NAB might adopt and driving a ROI