Title:  Analyst, Cyber and Information Security

Requisition ID:  11237
Work Type:  Fixed Term Full Time
Fixed Term Period:  Full Time - Maximum term, up to three (3) years
Location:  Melbourne - CBD
Date Posted:  17 Jul 2026

About VIDA 

 

The Victorian Infrastructure Delivery Authority (VIDA) is a specialist project delivery organisation, responsible for delivering Victoria’s major transport, health and community safety infrastructure program.  

 

This multi-disciplinary program includes more than 200 projects including the North East Link, removing level crossings, Melbourne Airport Rail Stage 1, new and upgraded hospitals specialist programs such as the early parenting centres expansion and upgrade program and community safety projects including Corrections and Emergency Services.

 

The unprecedented program of works brings together expert skillsets to deliver crucial health, community safety, and major transport projects, and ensures that operations are streamlined and efficient while delivering better outcomes for Victorians.

 

Led by the Director-General, VIDA is comprised of the five project offices, VIDA Road, VIDA Metro, VIDA Rail, VIDA Health and VIDA Community Safety.

 

VIDA is established as an Administration Office under the Public Administration Act 2004 as a specialist organisation.


About this Opportunity


The Analyst, Cyber and Information Security plays an important role in supporting VIDA’s cyber and information security function, working across a broad range of activities that help protect the organisation’s systems, information and services.

 

Reporting to the Cyber and Information Security team, this role provides support across cyber and information security, cyber security operations, cyber and information risk and assurance, and third-party cyber risk. You will contribute to the identification, assessment and management of security risks, support the delivery of security processes and controls, and help drive continuous improvement initiatives across the function.

 

This role is well suited to someone who enjoys variety and is confident working across both operational and governance-focused activities. From triaging security requests and maintaining registers, to supporting risk assessments, vendor reviews and governance processes, you will contribute to practical, risk-based outcomes that support VIDA’s broader cyber security objectives. Success in this role will require an appreciation of the human element of security, with the ability to work constructively with stakeholders, guide sound practice and influence outcomes without creating unnecessary barriers.

 

Working with stakeholders across project offices, Enterprise I&T and external vendors, you will help embed security thinking into business processes and decision-making, contribute to cyber security awareness, and support a strong culture of security uplift and compliance

 

 

About You


A capable and collaborative security professional with experience in cyber security or information security governance, risk and compliance. Understands that strong security outcomes rely not only on technical knowledge and governance, but also on relationships, communication and influence. Works effectively with stakeholders at all levels, guiding and supporting them to strengthen security practices in a practical and constructive way. Strong analytical skills, sound judgement and attention to detail, along with the ability to work across a range of tasks and stakeholders in a dynamic environment.

 

Comfortable working both independently and as part of a broader team and can confidently support the delivery of security initiatives while managing competing priorities. Able to interpret frameworks and controls in a practical way, provide clear advice to stakeholders, and contribute to outcomes that strengthen organisational security and assurance.

 

You’ll bring:

  • Experience in cyber security or information security governance, risk and compliance, ideally in a complex or multi-stakeholder environment.
  • Working knowledge of relevant security frameworks and standards, including VPDSF/VPDSS, ISO 27001 and NIST.
  • Strong analytical and problem-solving skills, with the ability to identify risks, assess controls and translate complex information into clear recommendations.
  • Well-developed communication and stakeholder engagement skills, with the ability to build trust, provide practical advice and influence positive security outcomes across technical and non-technical audiences.
  • The ability to manage competing priorities, maintain accuracy and deliver high-quality work across multiple workstreams.
  • Experience supporting security incident response activities, including triage and investigation of security events, coordination of containment and eradication actions, and contributing to post-security incident reviews.

 

 

Key Selection Criteria

 

  1. Demonstrated experience in cyber security or information security governance, risk and compliance, ideally within a complex multi-stakeholder or public sector environment.
  2. Working knowledge of relevant security frameworks and standards, including VPDSF/VPDSS, ISO 27001 and NIST, with demonstrated experience applying classification, controls and assurance requirements in a practical environment.
  3. Sound analytical and problem-solving skills, with strong attention to detail and the ability to identify gaps, prioritise risks and translate complex security information into clear, actionable insights and recommendations.
  4. Excellent written and verbal communication skills, with the ability to engage, influence and provide advice to both technical and non-technical stakeholders.
  5. Proven ability to work independently and collaboratively, manage competing priorities and deliver outcomes across multiple workstreams within agreed timeframes, exercising sound judgement in a dynamic environment.

 

 

Qualifications and Mandatory Requirements

 

  1. Tertiary (Bachelor or higher) qualification in cyber security, information technology, risk management, business, or a related discipline is highly desirable.
  2. Experience working in the Victorian Public Sector or similar government environments is advantageous.

 

 

What We Offer

  • An emphasis on work / life balance
  • High-performing team environment
  • Equal opportunity employer
  • Personal & Professional development opportunities
  • Committed to safety & wellbeing 
  • Training & development opportunities

 

 

Pre-Employment Checks


The successful candidate will be required to undergo pre-employment checks which include national police/qualification (where applicable) checks and misconduct screening.

 

 

Diversity and Inclusion


VIDA is an equal opportunity employer, committed to fostering a values-led, diverse and inclusive workplace.
We believe our teams should represent the diversity of our communities in which we work, and we actively embrace and celebrate people from all walks of life.


If you require reasonable adjustments to fully participate in the recruitment process, please contact us. We're here to support you.

 

 

How to Apply


Please include a Cover Letter and CV. We want to know why you want to work for VIDA Services, why you are interested in the role, and how your skills, knowledge, experience and qualifications are applicable to the role.

 

Please click here to view the position description.

 

For a confidential discussion, please contact Vivian Gorgovski, Senior Manager, Cyber and information Security - vivian.gorgovski@vida.vic.gov.au

 

Applications close 11:59 pm – 2nd of August 2026.