Senior Cyber Security Analyst

• We deliver the world’s most complex projects
• Work as part of a collaborative and inclusive team
• Enjoy a varied & challenging role

Building on our past. Ready for the future

Worley is a global professional services company of energy, chemicals and resources experts headquartered in Australia.

Right now, we’re bridging two worlds as we accelerate to more sustainable energy sources, while helping our customers provide the energy, chemicals and resources that society needs now.

We partner with our customers to deliver projects and create value over the life of their portfolio of assets. We solve complex problems by finding integrated data-centric solutions from the first stages of consulting and engineering to installation and commissioning, to the last stages of decommissioning and remediation. Join us and help drive innovation and sustainability in our projects. 

The Role

As a Senior Cyber Security Analyst with Worley, you will work closely with our existing team to deliver projects for our clients while continuing to develop your skills and experience etc.

We are seeking a Senior Cyber Security Analyst -a Subject Matter Expert (SME)- to join our Information Security team. The ideal candidate will be responsible for designing, implementing, monitoring, reacting, and reporting on information security events within the DLP scope. Additionally, the role includes managing security tools and IT systems with a special focus on DLP enablement.

DLP Strategy & Policy Design:

• Serve as a Subject Matter Expert (SME) for DLP solutions, technologies, and best practices.
• Design, implement, and optimize DLP policies to detect and prevent unauthorized access, sharing, and data exfiltration.
• Define and maintain DLP governance frameworks, aligning with regulatory requirements
• Identify sensitive data requiring protection across endpoints, cloud, email, and network.

Implementation & Configuration:

• Deploy and configure DLP controls to monitor, alert, and block potential data leaks.
• Define and enforce DLP rules for structured & unstructured data, including Personally Identifiable Information (PII), Intellectual Property (IP), and financial data.
• Integrate DLP solutions with other security tools.

Monitoring & Continuous Improvement

• Monitor and analyze DLP alerts and incidents, identifying trends and areas for improvement.
• Ensuring DLP alerts and incidents get routed to monitoring/response processes in accordance with defined internal procedures
• Perform regular tuning and updates to enhance detection accuracy and reduce false positives.
• Develop automated response actions to mitigate risks and ensure business continuity.

Compliance & Stakeholder Collaboration

• Ensure compliance with data protection regulations and industry security standards.
• Collaborate with cross-functional teams to resolve complex technical issues and to align DLP policies with business needs.
• Provide guidance and training to employees on DLP policies, security best practices, and insider threat awareness.

Reporting & Documentation: 

• Define and generate DLP metric supporting the reporting needs across the organization
• Document DLP configurations, policies, and operational procedures.
• Provide technical recommendations to enhance data security strategies.