Security Incident Responder

• Sydney based Permanent role.
• Hybrid working 2-3 days in office.
• High performing, diverse, inclusive and supportive team.

As a Security Incident Responder, you will monitor security alerts and logs to promptly identify potential Security Incidents. Your responsibilities include documenting incident details, actions taken and lessons learned for post-incident analysis, adhering to the incident response policies and standards.

Utilising security information and event management (SIEM) tools, you will detect anomalous activities and lead comprehensive investigations into Security Incidents. This involves determining the scope, severity, and implementing containment, eradication, and recovery actions.

About You

• Tertiary qualifications at degree level in an appropriate discipline, or equivalent industry relevant experience.
• Extensive exposure to the handling of Security Incidents to root cause
• Understanding of the principles underlying the operation of an ISMS and good knowledge of ISO27000 practices and controls.
• Understanding of Risk management practices with the ability to participate in Risk assessments.
• A minimum of 4+ years in a security role involving cybersecurity, with a focus on incident detection and response.
• Preferably experience of penetration testing, Devops, DAST.
• Exposure to a wide variety of tools and capabilities such as MFA, privileged access management, PKI, email security, web security, data security.
• Demonstrated background in the technical aspect of managing security tools including firewalls, vulnerability scanners, a/v products and security logging tools.

The ideal candidate will possess extensive experience in incident response and investigation, along with strong verbal and written communication skills.

If you have the skills and this sounds like a job for you APPLY or REFER TODAY! Please note you must have full work rights (PR/Citizen) for Australia to be considered for this role and here in Sydney.