Address
Form of workWe're on the lookout for a skilled Incident Response Manager to make a real impact
Quigly are a boutique consultancy with a great network of clients across many industries.Company Overview
Join one of Australia's top organizations. Our client improves the lives of millions – from lighting up sports fields, schools and homes, to powering the wheels of commerce and everything else in between. Now it’s your turn to make it happen.
This is an exciting time in the energy industry with the transition to renewable energy. Recent government policy documents outline plans to facilitate increasing transmission interconnection between states and development of renewable energy zones.
The Role
- You will manage the relationship with the outsourced SOC vendor
- The ideal candidate should possess extensive experience in Incident Response and investigation, along with strong verbal and written communication skills.
- You will monitor security alerts and logs to promptly identify potential security incidents. Your responsibilities include documenting incident details, actions taken, and lessons learned for post-incident analysis, adhering to company's Incident Response policies and standards
- Utilizing security information and event management (SIEM) tools, you will detect anomalous activities and lead comprehensive investigations into security incidents. This involves determining the scope, severity, and implementing containment, eradication, and recovery actions.
- Providing guidance on security best practices to prevent future incidents and conducting periodic incident readiness exercises involving relevant staff from across the organization.
- Tertiary qualifications at degree level in an appropriate discipline, or equivalent industry relevant experience
- Extensive exposure to the handling of security incidents to root cause
- Understanding of the principles underlying the operation of an ISMS and good knowledge of ISO27000 practices and controls.
- Understanding of Risk management practices with the ability to participate in Risk assessments.
- A minimum of 4+ years in a security role involving cybersecurity, with a focus on incident detection and response.
- A willingness to take on a range of tasks with enthusiasm and due diligence.
- Preferably experience of penetration testing, Devops, DAST.
- Have built a SIEM
- Can Python Script
- Exposure to a wide variety of tools and capabilities such as MFA, privileged access management, PKI, email security, web security, data security.
- Major incident management experience.
- Demonstrated background in the technical aspect of managing security tools including firewalls, vulnerability scanners, a/v products and security logging tools.
- Experience of security management of operational technologies, industrial control systems and industrial internet of things
- Responding to Risk and Audit items.
- Management experience preferred.
- Ideally have vendor management experience.
- Capable of attending nominated company's sites within the Greater Sydney Region (Ultimo & Wallgrove).
- You are an Australian Citizen (Sorry PR insufficient for security requirements).
In return for your hard work, they are numerous benefits and initiatives to support you personally and professionally including but not limited to private health insurance discount, motor vehicle lease plan, career development support, study assistance program and workplace flexibility.
Continue to make it happen for your career, and for the millions of Australians who rely on our services every day.
Our client is committed to Health and Safety, the Environment, Equal Employment Opportunity, Diversity and Ethical Practices. All applicants are expected to demonstrate an understanding of and commitment to these areas
This is a Sydney based role in a hybrid (Home/office) working arrangement.
Please note you must be based in Australia to apply for this role.
If you think this sounds like you, we want to hear from you, so please go ahead, send your CV to us today
