Cyber Threat Detection Siem Specialist

Details of the offer

Security clearance: Must have Negative Vetting Level 1 Security Clearance.
This role requires in-depth knowledge of cyber security fundamentals to accurately determine impact and relevance of emerging and existing threats to operating environments. The CTD SIEM Specialist will draw upon their knowledge of detection methodologies and technologies, attack vectors, vulnerability management principles, network security, security engineering principles, information systems control design and control monitoring.
Key duties may include, but are not limited to: Threat Detection development inclusive of reviewing and approving detection use cases, response playbook development and implementation of detection use cases. Provide technical or strategic advice on complex issues related to detection technologies. Coordinate the accurate and appropriate referral and subsequent tuning of detection use cases. Review and contribute to process documentation including providing input into the development of processes and ensuring documentation created by the shift aligns with outcomes and goals of the process. Provide timely, relevant and accurate information to the Director Cyber Threat Detection where business impacts of events and decisions are sensitive, including but not limited to: wide ranging impacts, events affecting senior executives or other agencies, and confidentiality, integrity, and availability impacts. Provide technical guidance and support to Cyber Security Operations staff while overseeing Cyber Threat Detection roles. Prioritise tasks and duties in accordance with direction from Cyber Security Divisional teams considering risk, urgency, and impact using independent judgement. Provide expert advice and assistance to team members performing technical work. Selection Criteria Proficiency in managing SIEM platforms – QRadar, Splunk and Elastic. Knowledge of network architecture concepts including topology, protocols, components, and principles. Experience in developing SIEM use cases and/or rules. Understanding of the requirements of network security monitoring. Must possess strong verbal and written communication skills. Understanding of Windows and Unix/Linux logging. Familiarity with the MITRE ATT&CK Framework. #J-18808-Ljbffr


Nominal Salary: To be agreed

Source: Jobrapido_Ppc

Requirements

Siebel Developer And Fmw Developer

Developers/Programmers (Information & Communication Technology) Full time Add expected salary to your profile for insights Our Federal Government clien...


Peoplebank - Australian Capital Territory

Published 5 days ago

Software Engineer

Engineering - Software (Information & Communication Technology) Full time Leidos is a Fortune 500 Technology, Engineering, and Science Solutions and Services...


Leidos - Australian Capital Territory

Published 5 days ago

29 Jul 2024 1521436 Service Desk Engineer - System $55,000 - $75,000 Base Salary Per Annum Cuya[...]

We are looking to recruit a Service Desk Engineer for our System Integrator client! The ideal candidate will have experience working in a Service Desk enviro...


Tideri Jobbörse - Australian Capital Territory

Published 5 days ago

Devops Engineer

Come and join a thriving company and become part of a diverse global collective of free-thinkers, entrepreneurs and industry experts who are all driven to us...


Capgemini - Australian Capital Territory

Published 5 days ago

Built at: 2024-11-18T20:21:02.458Z