Triskele Labs are a fast-growing sovereign cybersecurity consultancy. We work with clients to implement pragmatic cybersecurity controls to reduce risk through our Advisory, Offensive and Defensive services.
Since 2014, we have grown into a leading provider across Australia with clients in all Australian states. One of the leading solutions provided is the 24x7x365 Security Operations Centre (SOC).
The L1 SOC Analyst is responsible for the monitoring of SIEM technologies, Vulnerability Management and Threat Intelligence Management to identify and report on potential threats within a client network.
In addition to raising threats as tickets for clients, you will also be responsible for assisting with monthly reporting, procedure and workflow development. The Level 1 SOC Analyst is at the frontline of the SOC and responsible for catching the bad guys before they can compromise a client network.
About You
You will have a considerable interest in cybersecurity, especially on the defensive side and have the ability to think laterally and like an attacker to develop new rules and detections. You will also run Threat Hunts for clients to ensure tools are functioning appropriately and capturing relevant alerts based on simulations.
Responsibilities
• Monitor client computer networks for security issues on a 24x7x365 Rotating Roster.
• Investigate security threats, security breaches and other cyber security incidents.
• Operate software to protect systems and information infrastructure including SIEM, SOAR and Vulnerability Management platforms
• Operate the centralised Service Desk function and act as a fist point of contact.
• Raise Critical and High alerts with clients via SMS and phone following Escalation procedures.
Knowledge & Skills
As you will be at the front line of the SOC, you will be required to have excellent soft skills and the ability to work collaboratively with clients. You will hold an Advanced Certification in Cybersecurity and have exceptional knowledge of cybersecurity practices, especially Security Operations.
You will be continually looking for opportunities to develop your cybersecurity skills, whether this is completing certifications or self study through a home lab. You will be expected to keep up to speed with developments in the industry.
Certifications
We will support new starters through their CompTIA and Blue team Level 1 Certifications within the first 3-4 months.
Applicants MUST have full working rights and be based in Australia.
For a confidential discussion please reach out to Greig directly.
************@triskelelabs.com
0476 806 ***