Analyst - Cyber Hunt and Threat Intelligence

This is a Permanent Full-time position based in Mel/Syd/Brisbane/Adelaide/Perth.

AEMO at the Heart of Energy

We are the Australian Energy Market Operator (AEMO), committed to designing and operating a sustainable energy system that delivers safe, reliable, and affordable electricity and gas. Our mission includes facilitating the transition to a net-zero energy system by 2050, working collaboratively with industry partners to achieve 100% renewable generation capability by 2025. We have the once-in-a-lifetime opportunity to co-design the future of our energy systems, and our core values revolve around Character, Commitment, and Connection.

Join us, as we contribute to this significant mission in the energy sector!

About the Team & the Position

At AEMO, we recognise the importance of cyber security in achieving a secure and resilient energy future. This is a SOCI related, critical role that will contribute to the execution of digital evolve and the cyber security strategy at AEMO.

The purpose of this position is to provide specialised skills and expertise in threat detection, analysis, and digital forensics to respond to the ever-growing cyber threats AEMO people and technology face each day. SOCI related, critical role that will contribute to the execution of digital evolve and the cyber security strategy at AEMO.

Position Responsibilities

• Coordinate and perform threat hunting activities.
• Analyse tools, tactics, and procedures of attackers to develop and scope threat informed hunts.
• Investigate security intrusions to ascertain both the cause and scope of breaches by employing EDR solutions and leveraging Threat Intelligence resources.
• Deliver detailed and precise oral and written briefings, tailoring presentations to suit both technical teams and executive level audience.
• Communicate effectively and strategically with industry stakeholders, business partners, legal counsel, providing technical insights and strategic guidance.
• Utilise strong analytical skills to evaluate qualitative and quantitative data.
• Good research and documentation skills including knowledge of major OSINT sources and their investigatory value.

Position Requirements

Skills & Experience:

• Minimum of two years' experience in hunting and tracking targeted threats, developing analytics to enable threat hunting and detections.

• Experience in working with network detection signature tools such as YARA, Suricata, Snort, and Zeek/Bro.
• Understanding and implementation of the Threat Hunting Maturity Model
• Experience with Cyber Security Kill Chain(s) and the MITRE ATT&CK Framework
• Familiarity with Windows and Linux operating systems.
• Experience developing stakeholder facing intelligence reports.

Education/ professional Certifications:

• Tertiary qualifications in computer science or technology-related field, or equivalent work or education related experience.
• SANS GFCA or GCTI certification desirable.
• Australian Citizenship (Mandatory to go through NV clearances)

In return some of our benefits to you

• Flexible working: work from home, part time, job share, hybrid options, and additional leave options
• Professional development via projects, industry networks, job rotation, study assistance and more.
• Give back with up to 4 days of volunteering leave per year.
• Embrace a healthier you with our wellness program, discounted health insurance, gym perks and our comprehensive Employee Assistance Program (EAP). 

About Our Process 

AEMO values diversity and inclusivity in the workplace, welcoming applications from all backgrounds without regard to age, disability, gender, sexual orientation, parental status, race, or religion.