When you join VerizonVerizon is one of the world's leading providers of technology and communications services, transforming the way we connect around the world. We're a human network that reaches across the globe and works behind the scenes. We anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together-lifting up our communities and striving to make an impact to move the world forward. If you're fueled by purpose, and powered by persistence, explore a career with us. Here, you'll discover the rigor it takes to make a difference and the fulfillment that comes with living the #NetworkLife.What you'll be doing...As a Senior Cyber Security Consultant, you will assist a dedicated client to identify, prioritize and lead the resolution of Security Incidents related to clients' ICT environment.Resolve Security Incidents in the customer's environment by following defined incident response processes and procedures.Collect and analyze Threat information (e.g., indicators of compromise), identify and contain the Threats and provide consolidated information about Security Incidents to the customer.Coordinate the handling of Security Incidents using defined processes and escalation paths.Track Security Incidents to closure and provide root cause analysis, lessons learned and recommendations on how the customer may prevent similar Security Incidents.Provide an indicator of compromise (IOC) based on collected Threat information.Perform basic malware analysis using open-source analysis tools (to be provided by the customer) or customer provided sandboxing tools.Look for signs of potential compromise in Customer's environment, such as unusual network patterns, abnormal DNS traffic, failed logins, signs of lateral movement using the security tools and platforms incumbent in customer's environment.Perform lookups with known IOC to identify potential breaches using the security tools and platforms incumbent in the customer's environment.Analyze and verify suspected compromises.Provide guidance and recommendations to the customer for process improvements.Develop and maintain additional processes, methodologies and tools for implementation by the customer to assist customer's preparation for potential Threats.Provide feedback to the customer's monitoring and detection teams and to the SOC Manager for improvements to SIEM alert queries.What we're looking for...You'll need to have:
- Bachelor's degree or four or more years of work experience.
- Four or more years of relevant work experience.
- Australian Government NV1 Security clearance.
- Strong experience in Cyber Security incident response and other IT investigations.
- Ability to conduct investigations, including analysis and reporting, evidence acquisition.
- Knowledge of SIEM tools like Splunk, EDR like Crowdstrike, SentinelOne etc.
- Desired certifications like CHFI, GCFE, GCFA, etc.
- Computer troubleshooting skills - ability to troubleshoot using common network and system tools
- Knowledge of Windows & Linux Operating System, basic knowledge of networking, cybersecurity, and cloud computing (AWS, Azure, Google, etc).
- Willingness and hunger to continuously learn - both on the job and on your own, with relevant support from colleagues.