Senior Analyst - Cyber Incident Response

Senior Analyst - Cyber Incident Response

Department:Digital

Division:Cyber Security

Reference number:12374

This is a Permanent Full-Time position based in Mel/Syd/Brisbane/Perth.

AEMO at the Heart of Energy

We are theAustralian Energy Market Operator (AEMO) committed to designing and operating a sustainable energy system that delivers safe reliable and affordable electricity and gas. Our mission includes facilitating the transition to a net-zero energy system by 2050 working collaboratively with industry partners to achieve 100% renewable generation capability by 2025. We have the once-in-a-lifetimeopportunityto co-design thefutureof ourenergy systems and our core values revolve around Character Commitment and Connection.

Join us as we contribute to this significant mission in the energy sector!

About the Team & the Position

In light of growing sophistication of cyber threats and the continued focus AEMO are receiving from various threat groups it is imperative that we prioritise and maintain a mature Cyber Incident Response team within AEMO. The purpose of this position is to provide specialised skills and expertise in threat detection analysis and digital forensics to respond to the ever-growing cyber threats AEMO people and technology face each day.

This is SOCI related critical role that will contribute to the execution of digital evolve and the cyber security strategy at AEMO.

Position Responsibilities

• Take a technical leadership role in cyber defence and response activities including triaging alerts investigating security incidents and providing response and containment against active threats.
• Proactively search for signs of malicious activity within AEMO infrastructure.
• Drive detection improvements to cater for the ever-changing technology stack and cyber security threat landscape
• Conduct and lead digital forensic investigations to gather evidence and identify root cause of security incidents.
• Contribute to the improvement of protective security controls
• Mentoring and training of other members of the Cyber Incident Response team
• Continual improvement / development of documentation processes playbooks and incident response.
• Work closely with cross-functional teams including other Digital teams to coordinate incident response efforts and process improvements
• Participate in on-call rotation responding to cyber threats outside business hours

Position Requirements

Skills & Experience:

• Strong experience in cyber security incident response preferably with experience working in critical infrastructure and/or the energy sector
• Demonstrated experience in cyber incident investigation response threat containment and eradication
• Demonstrated experience in digital forensic collection investigation timelining and organisation wide threat hunting
• Strong analytical investigation and problem-solving skills
• Experience with Cyber Security Kill Chain and the MITRE ATT&CK Framework

Must be an Australian citizen with the ability to attain and maintain an appropriate level of national security clearance.

Education/ professional Certifications:

• Tertiary qualifications in computer science or technology-related field or equivalent work or education related experience.
• GIAC Certified Forensic Analyst (GCFA) certification desirable.

In return some of our benefitsto you

• Flexible working: work from home part time job share hybrid options and additional leave options
• Professional development via projects industry networks job rotation study assistance and more.
• Give back with up to 4 days of volunteering leave per year.
• Embrace a healthier you with our wellness program discounted health insurance gym perks and our comprehensive Employee Assistance Program (EAP).

About Our Process

AEMO values diversity and inclusivity in the workplace welcoming applications from all backgrounds without regard to age disability gender sexual orientation parental status race or religion.

If you would like to know more about working atAEMO please check out our careers page for more information

For more information on the Australian Energy Market Operator (AEMO) please refer to visit one of our social media channels below.