About Us

Vectec is a young, fun hybrid IT and cybersecurity solutions provider that is growing 100% year on year. We took the corporate textbook and ripped it up, living and breathing flexi working, output vs presence and ditched the suits. Our customers are family, with members such as Hoyts, Patrick Stevedores, Arthur J Gallagher, Equifax and ASX.

We believe in an inclusive environment underpinned by respect and equality.

Our office is a place where our staff, customers, dogs and friends want to be in. Think sports bar crossed with business class lounge, people stopping by to work, say hi and collaborate.

About You

You think work should mean more than just a way to earn a dollar. You want to be a part of a fun and supportive community that looks after you and that you can contribute to and learn from.

You might currently be working within an integrator, managed services provider or internal IT function and looking for your next challenge. You’re a team player who knows how to have fun at work whilst still getting the job done to a high standard. You have a great understanding and applicable experience of cyber security frameworks, and how they apply in practice to IT operations.

In addition, you’ll have experience with governance, risk, and compliance, with a preference for E8, NIST and/or ISO27001 experience. Your GRC experience should be in the format of working collaboratively with IT Managers and Operations team to apply and embed these controls and frameworks within their teams, technology, and processes.

The Role

As a key member of our technology team, you will champion cybersecurity internally, and with our customers. One day you could be leading a security conversation with a customer, understanding their gaps and positioning our solutions. Another day, you could be working alongside our other technical experts to ensure their designs and solutions are adequately considering cyber security.

Vectec offers a managed security practice to our clients that is delivered in conjunction with Arctic Wolf. This role will play a key role in continuously improving our offering, working alongside Arctic Wolf to ensure our clients are adequately protected.

This role offers opportunities for growth within Vectec, with the potential to advance to more senior positions as you develop your skills and contribute to our mutual success. We support continuous learning and professional development, ensuring you have the resources and opportunities to advance your career.

In this role, you’ll be expected to acknowledge and agree to comply with all policies, procedures, and controls established by Vectec to achieve and maintain compliance with the ISO/IEC 27001:2022 standard for information security management systems (ISMS).

What you will be doing

• Cybersecurity Presales: Have cybersecurity focussed conversations with clients and prospects alongside our accounts managers and technical team to understand client challenges, gaps, and find opportunities for Vectec to assist.

• Cybersecurity Analyst: Work with customers of our MSP security practice to understand findings and provide solutions for remediation. Our offering is built on Arctic Wolf and delivered in conjunction with them.

• Network Security: Knowledge and experience in network security products like NGFW, SASE, NDR etc. Ideally within the Palo Alto suite of products

• ISO27001 Administration: Assist internal IT staff to maintain, and improve our compliance with ISO27001 by attending meetings, following up on actions, and ensuring responsible teams are meeting their objectives.

• Collaborate: Collaborate, mentor, guide and assist technical staff members to constantly be thinking of security implications of their designs and implementations.

• Documentation & Quality Control: Where needed, develop and maintain high-quality, detailed documentation that is easily understood by non-cyber experts

• Knowledge Sharing: Lead knowledge-sharing sessions with staff to ensure ideal use of systems.

• Continuous Development: Stay current with industry technology and demonstrate capability through vendor certifications.

Your skills

• Cybersecurity Skills: Proficiency, and understanding, in a variety of Cybersecurity disciplines & technologies is essential, including but not limited to IAM, network connectivity, data protection, vulnerability management, SIEM.

• GRC Experience: Familiarity with governance, risk and compliance activities. Ability to apply GRC principles to processes, technology configurations, and project decisions.

• SIEM/SOC Experience: Excellent experience with SIEM solutions and SOC responsibilities. This is not a SOC engineer role so responding to incidents isn’t a requitement but design and/or configuration of SIEM’s for use within a SOC is important. Experience in scoping and designing SIEM tools is favourable.

• Communication: Being able to communicate security principles, risks, and solutions to technical non-security engineers, and holistic security conversations with management. This is everything from detailing security implications of a design to a network engineer through to discussing the merits of NDR with a Security Manger.

• Vendor/Industry Certifications: Any relevant certifications are highly valued and demonstrate your commitment to professional growth. Vendor certification examples are Splunk, Qradar, CrowdStrike, Sentinel etc. Industry certification examples CISSP, CCSP etc

Experience & Qualifications

The essentials for success:

5+ years’ experience: Proven experience in a similar role with a clear, and broad, understanding of cybersecurity, and how to implement people, process, and technology strategies to minimise risk vectors.

Project Experience: Demonstrated ability to work in project teams where you can independently manage your tasks and deliverables. Experience in managing streams within projects will be looked upon favourably.

Delivery Methodologies: Comfortable working within both agile and waterfall project management methodologies.

Building Relationships: Ability to build and maintain relationships with internal staff, customers, vendors, and distributors, ensuring successful outcomes.

The nice to haves

Cybersecurity Strategies: Experience in scoping, developing, and presenting cybersecurity strategies to a range of stakeholders.

Security Expertise: Certification in a cyber security discipline (eg CISSP) or security focused vendor certification (eg Microsoft Cybersecurity Architect)

Knowledge Sharing and/or Teaching Experience: Previous experience educating staff/user groups on cybersecurity. Inc, what it is, how to identify threat actors, mitigation strategies etc