4 Lead Cyber Threat Analysts
4 Lead Cyber Threat Analysts
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
The Senior Cyber Security Analyst roles covers several aspects of Cyber Operations within the department and maintains a frontline position on developing and uplifting cyber capability within the Cyber Operations team.
The successful candidate is expected work within a technical cyber team an ability to work unsupervised and able to act as a mentor to other cyber analysts within the team.
Demonstrated experience in (but not limited to) the following disciplines and toolsets is expected
Ability to produce and uplift the existing SOAR capability within the department s SIEM
Azure DevOps specifically Infrastructure as Code (IAC) for Azure Security platforms
Producing detailed alerts (KQL/SPL) for systems specific to the departments environment.
Log onboarding activities including log transformation to maintain ingestion levels
Ability to build and maintain a strong working relationship with vendors and technical business areas.
Producing playbooks for common cyber incidents and maintaining the playbook wiki
Incident investigation and response within the designated SIEM escalating tickets to incident response manager where required.
Requirements
Demonstrated experience in
Azure Devops
Azure Sentinel (KQL SOAR incident response)
Log onboarding
Log transformation
Defender XDR
Scripting
Splunk
Key duties and responsibilities
Will be responsible for cyber capability development across the following tools/platforms
Azure Stack (DevOps Sentinel Monitor EntraID Azure ARC Defender for Cloud Conditional Access)
Defender XDR
Splunk
Infrastructure as Code (IAC) experience within the Azure security stack
Producing documentation for in-use security systems and standard operating procedures (SOPs) for incident scenarios
Producing playbooks for common cyber incidents and maintaining the playbook wiki
Change control and representation
Knowledge transfer to Cyber staff within the team
Technical skills
Minimum 5 years technical Cyber Security experience across the following toolsets and disciplines Incident Response Azure Stack (DevOps Sentinel Monitor EntraID Azure ARC Defender for Cloud Conditional Access) Infrastructure as Code (IAC) Scripting Defender XDR Splunk Active Directory Ticket management / case management systems
Essential criteria 1. A track record of delivering technology products in large organisations 2. A demonstrated understanding of what makes for a great developer experience for external users 3. Experience leading multi-disciplinary teams that follow agile and user-centred design practices 4. Experience working on large Government transformation programs highly regarded Desirable criteria 1. Knowledge, experience of, and relationships with the agriculture technology industry 2. Delivery of technology to support regulatory decision-making processes 3. Experience delivering to the Australian Government Digital Service Standard
Employment Type
Full Time
