We're a large scale systems integration company, committed to delivering trusted solutions that help to safeguard Australia. With over 20 years' local experience and the backing of a 32,000 global network, we currently have 1,500 employees mainly in Canberra and Melbourne. We're growing fast and are building a business that is focused and fit for the future. Change and innovation are central to the way we work, and we thrive when developing unique, practical solutions to seriously complex challenges.Job DescriptionAt Leidos Australia, we are expanding our 24x7x365 Central Processing Cyber Security Operations Centre (CP SOC) capability, with the Department of Defence. CP SOC works collaboratively with the Defence Security Operations Centre (DSOC) to assist in defending one of the largest and most complex ICT networks in the southern hemisphere.We are seeking an experienced Senior Cyber Security Analyst to inspire, motivate and mentor team members to achieve Defence mission outcomes.This is a permanent role that requires the successful applicant to working on a rotating shift roster (typically 12 hour shifts) onsite at HMAS Harman in Canberra.This role offers you the opportunity to:Develop your leadership potential within the cyber domain as a shift leadMentor your fellow team members in technical and professional skillsetsBuild and shape security tooling to defend critical national security infrastructureChallenge yourself by sinking your teeth into some wicked problem setsHelp build the team culture that you have always wanted to work inTo be successful in this role you will need:Self-starting individual with the right attitude, aptitude and zeal to identify, take ownership of and solve challenging problemsInterest in continual learning and development of the team and themselvesBe prepared to rapidly upskill yourself and the team to respond to adversariesStrong communication and stakeholder management skillsClear working understanding of industry and government cyber security frameworksThe roles responsibilities extend to:Demonstrating leadership as the shift lead, and within the broader team, to meet mission and contractual outcomesWorking collaboratively with stakeholders to triage, manage and report on security incidents,Actively building relationships with stakeholdersActively developing SOC tactics, techniques and procedures (TTP's) and security toolsetsDevelop custom signatures to Identify, Detect, Protect, Respond and Recover from adversary's attacks.Assist in threat hunt operations using known adversary TTP's and Indicators of Compromise (IOC's) to detect advanced threats.Develop security operational documentation and Incident reportwritingUndertake management Service Level Reporting in line withcontractual requirements and emerging business needs on the security of theenvironment,Identify and evaluate new sources of intelligence, and integrate numerous types of cyber security data sources into cyber threat analysis products.QualificationsWe are not looking for a unicorn and understand that people will have gaps in their knowledge and skills. We are willing to invest in you to fill those gaps. If you are a Splunk and/or Incident Response expert, we want to hear from you.This role is suited to a Senior Cyber Security Analyst who has:Demonstrated advance expertise in developing, maintaining and monitoring SIEM (Splunk) apps, rulesets, dashboards and workflows is essential;Demonstrated intermediate to advance Windows, Linux and Networking experience highly desired;Demonstrated intermediate to advance Incident Response professional experience highly desired;Demonstrated experience with Trellix EPO, Tenable and Palo Alto platforms, or similar, highly desired;Demonstrated experience with scripting and automation technologies highly desired;Demonstrated ability in providing leadership, direction andcoordination to a team of professionals;Industry ICT Security qualifications such as CompTIA Sec+, CISSP, GIAC, GCIHetc desired, but not essential;Tertiary education (Bachelor's degree in Engineering, Computer Science or equivalent) desired, but not essential (equivalent work experience highly desired);Demonstratedability to consistently produce excellent results in a complex environment;Current NV1 or NV2 clearance.Additional InformationDue to the nature of the role, the successful candidate must be an AustralianCitizen, hold a government NV-1security clearance, with the expectation of obtaining an NV-2.At Leidos you'll enjoy 12 weeks' paid parental leave as a primary carer, flexible work practices, discounted health insurance, novated leasing and more. Foster your career through complete access to learning and development and mentoring opportunities, we have a strong track record of internal promotion and career transitions.At Leidos, we embrace diversity and are committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islander peoples, culturally and linguistically diverse people, people with disabilities, veterans, neurodiverse people, and people of all genders, sexualities, and age groups.
#J-18808-Ljbffr