Job Description: Role Name:
Senior Analyst, Cyber Response
Purpose of the Role:
This role is crucial for executing the cybersecurity incident detection and response function within Security Services. It also involves contributing to the ongoing maturity of the team, processes, and frameworks. The role demands strong technical skills and experience in incident detection and response.
Key Skills in Need: Must be an incident responder with Level 3 experience Understanding of the entire incident lifecycle, not just Triage Scripting in Python is good to have Experience in Threat Hunt, SOC Beneficial to have any certifications Location: Melbourne Type of Employment: Permanent / Contract Accountabilities: Respond to cybersecurity threats, vulnerabilities, events, and incidents Act as a technical contributor during major security incidents Contribute to the improvement of the team's capability, including:Operational maturity (processes/methodologies, playbooks, automation, efficiency, quality) Detection strategies (attack models, use cases, tuning, R&D) Mitigation strategies (proactive planning, new controls, optimizing existing controls) Participate in and contribute to the planning and execution of purple teaming activities Meet team operational metrics Maintain up-to-date knowledge of cyber threats Drive continuous learning and knowledge sharing within the team Support internal stakeholders and projects as required Work in a 'business hours + rostered on-call' environment Perform other related activities as required by Management or Cyber Response Leads Background Information About the Role: Reporting to: Manager, Cyber Response Essential Capabilities: Good understanding and experience with incident response methodologies and techniques Detection and mitigation strategies for a broad range of cyber threats Familiarity with common cloud platforms/technologies (Azure, AWS, Google Cloud) Knowledge of common enterprise technologies (Windows, Linux, Active Directory, etc.) Malware analysis and reverse engineering skills Operational usage of common analysis and response tooling (Splunk, Crowdstrike, etc.) Performing vulnerability assessments and penetration testing Essential Non-Technical Skills: Ability to stay calm and lead under pressure Experience in a CSOC / CIRT performing Level 2 and/or Level 3 support Experience in a complex enterprise environment Willingness to engage in self-learning or security research outside of standard business hours Analytical, problem-solving, and lateral thinking skills Effective verbal and written communication skills Time management and prioritization skills Basic consulting and stakeholder management skills Qualification Requirements: Tertiary qualifications preferably in technology and cybersecurity subjects Preferred certifications:SANS GIAC Certified Incident Handler (GCIH) or similar SANS GIAC Certified Forensic Analyst (GCFA) or similar SANS GIAC Reverse Engineering Malware (GREM) or similar SANS GIAC Penetration Tester (GPEN) or Offensive Security Certified Professional (OSCP) or similar Your application will include the following questions:
Which of the following statements best describes your right to work in Australia? How many years' experience do you have as a Response Analyst? What's your expected annual base salary? How much notice are you required to give your current employer? #J-18808-Ljbffr