Cyber Security Operations Analyst

Posted
28 February 2024
Salary
Weekly pay + WFH
Location
Canberra
Job type
Contract
Discipline
Security + Cyber Security
Reference
264857

Job description

The Cyber Security Operations Analyst must possess and demonstrate technical competency in areas of cloud security (Azure/AWS), endpoint and network security, threat intelligence and hunting, data loss prevention, vulnerability management, and incident response. The Senior Cyber Security Operations Analyst will be required to support and contribute to the protection of the Agency's systems.

  • 12 months contract
  • Open for Australian Citizens only with the ability to obtain an NV1
  • Canberra based
  • Hybrid model (3 days in office and 2 days from home)
  • Paxus pays weekly.

To be successful in this role you must:

  • Conducting proactive monitoring, investigation, and mitigation of security incidents within security tools (including Microsoft Defender 365 stack, Azure Security Centre, IntSights, Splunk)
  • Analysing security event data and identifying suspicious/malicious activity from networks and systems
  • Perform incident response including initial and detailed investigation, computer forensics, chain of custody implications
  • Responding to events and incidents using established Standard Operating Procedures (SOPs)
  • Escalate complex incidents, and engage with Subject Matter Experts
  • Perform and manage phishing simulations
  • Research new and evolving threats and vulnerabilities to the Agencies threat landscape
  • Conduct log analysis and develop visualisation and reporting within Splunk
  • Identify critical data sources required by cyber for ingestion and normalisation into the SIEM
  • Collaboration with Security Operations and IT engineers to implement security controls
  • The ability to work with limited supervision and to quickly gain knowledge of in a range of technologies
  • Mentor and develop junior staff, and identify areas of people, process, and defensive tool improvement

To be considered you must have:

  • Graduated with relevant cyber security qualifications, and a few years' experience (3-6 years) in CSOC roles. Evidence of training and completion a cyber security certification
  • Demonstrated familiarity with log aggregation and Security Incident and Event Management (SIEM) systems
  • Knowledge of the Information Security Manual (ISM) and cyber security concepts
  • Demonstrated working knowledge of Incident Response Frameworks (NIST SP 800-61 Incident Handling Guide, Mitre Frameworks)
  • Formal tertiary qualifications or industry certifications in a cyber security related field (e.g. Azure/AWS, Splunk Certified)
  • Worked in a Security/Network Operations Center (or similar)
  • Highly developed written and verbal communication skills
  • Sound stakeholder relationship skills

To be considered for the role click the 'apply' button or for more information about this and other opportunities please contact Irina Alrogi on +61 (0)2 6151 9203 or email: [email protected] and quote the above job reference number.

Paxus values diversity and welcomes applications from Indigenous Australians, people from diverse cultural and linguistic backgrounds and people living with a disability. If you require an adjustment to the recruitment process please contact me on the above contact details.