Aps 6 - Senior Cyber Security Analyst - Monitoring, Detection & Response

• $88,175 - $100,724 (plus Super and 15% BDCP)
• Harman - ACT, Macleod - VIC

The Role
As an APS 6 within DSOC’s Monitoring, Detection and Response capability, you are responsible for leading, managing and performing specialist analytical elements of Cyber Security Incident Response within the Defence Security Operations Centre (DSOC).
Duties include:

• Build and lead a small team capability to harness a complementary suite of Enterprise capabilities - providing Monitoring, Detection and Response functions and services to Defence.
• Provide coaching, second level incident analysis and reviewing the quality of work undertaken by Others.
• Manage work take-on and prioritisation within a high-tempo operational environment, managing competing priorities from a range of stakeholders and associated team output.
• Exercise a knowledge of, and compliance with, legislative frameworks, government decision-making, risk assessments, and Defence’s mission and policy requirements.
• Engage in very complex problem solving and issues management, coordinating and performing detailed or sensitive projects that impact on strategic, political or operational outcomes for Defence.
• Generate and provide incident reporting, set work priorities across tasks within the case management platform.
• Document and continuously improve processes, SOPs and Work Instructions, within the DSOC information management tool.
• ACT positions are shift positions - Applicants must be able to commit to shift work. These positions attract additional shift loading payment.

The additional payment is a Building Defence Capability Payment (BDCP) which enables Defence to provide a premium, in addition to the rate of salary otherwise payable under the Enterprise Agreement (EA) to some or all of the jobs within a critical occupation(s) or discipline within a workplace. Applicants engaged into a BDCP position must consider the following. BDCPs provide remuneration in addition to the Defence Enterprise Agreement (EA).
This arrangement is subject to meeting eligibility criteria and is subject to annual review. Should your performance fall beyond requirements or the eligibility criteria not be met, your eligibility for the BDCP may be reviewed and ceased. It may also be ceased should you change positions or the requirement for the BDCP is no longer necessary, as determined by Defence. Should the BDCP be ceased you will be advised and your BDCP additional payment will cease.
About our Team
The Defence Security Operations Centre (DSOC) is the strategic centre for Defensive Cyber Operations within Department of Defence. DSOC provides mission and customer focused services across Defence enterprise and through a range of Cyber Security Operations functions including Monitoring, Detection and Response, in-order-to defend Defence’s Cyber Terrain and understand the risk to Defence systems and information.
DSOC staff have unique access to contemporary tools, supporting one of Australia’s largest networks. DSOC staff can expect to receive individual investment through training SME support and other opportunities to enable them to achieve high quality, responsive and innovative outcomes for Defence and its customers.
DSOC is a dynamic and agile team, valuing collaboration, team-work, pragmatism, communication, respect and accountability. DSOC provides ample opportunity for members to grow professionally whilst also contributing to this key strategic capability. DSOC consists of a diverse workforce of complimentary skillsets and is inclusive of APS, ADF and contractors. DSOC routinely engages with a wide range of stakeholders across the Department, Whole-of-Government, and Defence Industry, exploring new opportunities for continuous improvement and collaboration.
Our Ideal Candidate
Have demonstrated experience in one or more of:

• Cyber security incident response;
• Cyber security risk management;
• Endpoint forensics;
• Network forensics,
• SIEM and SOAR technologies and processes.
• Possess a comprehensive understanding of defensive Cyber Security operations, Cyber Security incident response as the front line in defensive capability within a SOC.
• Possess strong communication, interpersonal and collaboration skills to work effectively with internal and external stakeholders, in-order-to understand and contextualise the threat to Defence and support decision making;
• Be self-driven with a proven ability to manage competing priorities to a high standard of accuracy within allocated timeframes;
• Possession of a well-rounded ability to think critically, be inquisitive, whilst diligently and pragmatically driving at results and comprehensive analytical skills are highly valued.
• ACT positions are shift positions - Applicants must be able to commit to shift work. These positions attract additional shift loading payment.