About the Opportunity:
Reporting into the Incident Response Leader, the Senior Incident Response Specialist is responsible for enterprise wide incident detection and response capability with the aim to minimise potential cyber security breaches.
Additional responsibilities include:
Oversee a team of cyber incident response specialists in response to any cyber incidents or threat investigations.
Work in partnership with the Security Operations Centre (SOC) Interface, including all modifications to existing monitored systems and the incorporation of new systems.
Respond to highly complex cyber threats in real time and possess the extensive professional experience, expertise, and knowledge to quickly analyse the threat.
Provide specialist guidance to secure EA and the technical expertise to analyse advanced attack methodologies.
Carry out detailed post event analysis of cyber events and provide guidance for procedure or process changes to improve response.
Drive continuous improvement on detection, analysis, escalation, response, and containment for all cyber incident/threats to EA.
About You:
To be successful in the role you'll have experience in a SOC environment, come from a client facing role providing technical security advice or an aligned engineering background.
You will also have some of the following:
Tertiary Qualification in IT or Computer Science or equivalent work experience.
At least 5 years' IT experience with Microsoft enterprise technologies including but not limited to Windows, Active Directory, Entra ID, IIS etc.
; Open-source technologies such as Linux; virtualization technologies such as VMware and Hyper-V; and hands-on experience in TCP/IP networking, firewalls, VPN, intrusion prevention systems, network security monitoring, network vulnerability scanning.
At least five years' experience in security incident response in one of IT or OT environments, with proven knowledge of incident response processes in the other environment.
Familiar with best-in-class IT & ICS security technologies by leading suppliers such as Cisco, Checkpoint, Palo Alto, Symantec, FireEye and Juniper.
Experience in security operations centre coordination/management.
Experience with MS Defender suite (desirable, not mandatory).
Cyber Security industry qualifications including, but not limited to:
CompTIA (Security+, Network+ etc) CISA Certified Information Systems Security Professional (CISSP) Microsoft Certifications (SC-900, SC-200, SC-100 etc) Cloud Certifications (not mandatory) How to Apply:
If you're ready to 'light the way' towards your next career move, click the 'Apply' button to submit a confidential application.
For any questions, please reach out to Jock Clydesdale, Talent Acquisition Partner @ .
Why Us:
At EnergyAustralia, we are committed to providing an inclusive culture so our employees can bring their whole selves to work and have a sense of belonging.
As an employee you can enjoy such benefits as:
Awarded Winner 2022 Best Place To Work List.
Energise Program - flexible working that is team centric enabling all individuals to agree and succeed together.
Excellent company culture, down-to-earth and friendly organisation - be authentic, bring your whole self to work!
State-of-the-art Melbourne office, stunning views only 3-4 minute walk from Southern Cross station.
Inhouse Café and Onsite Tech Bar.
We're committed to providing an inclusive culture so our employees can bring their whole selves to work and have a sense of belonging.
From our PRISM network that creates a positive culture for LGBTQ+ employees to our Reconciliation Action Plan that has commitments to strengthen relationships with Aboriginal and Torres Strait Islander people and organisations, it's a workplace where everyone's welcome.
#J-18808-Ljbffr