Hudson are working with a Federal Government agency to find a Senior Cyber Security Operations Analyst on a 12-month contract. The Senior SOC Analyst must possess and demonstrate technical competency in areas of cloud security (Azure/AWS), endpoint and network security, threat intelligence and hunting, data loss prevention, vulnerability management, and incident response.
- 12-month contract
- Melbourne (Geelong) or Canberra locations
- WFH flexibility with 3 days at home and 2 days in office
- Australian Citizen with the ability to obtain a NV1 clearance
Responsibilities:
- Conducting proactive monitoring, investigation, and mitigation of security incidents within security tools (including Microsoft Defender 365 stack, Azure Security Centre, IntSights, Splunk)
- Analysing security event data and identifying suspicious/malicious activity from networks and systems
- Perform incident response including initial and detailed investigation, computer forensics, chain of custody implications
- Responding to events and incidents using established Standard Operating Procedures (SOPs)
- Escalate complex incidents, and engage with Subject Matter Experts
- Perform and manage phishing simulations
- Research new and evolving threats and vulnerabilities to the Agencies threat landscape
- Conduct log analysis and develop visualisation and reporting within Splunk
- Identify critical data sources required by cyber for ingestion and normalisation into the SIEM
- Collaboration with Security Operations and IT engineers to implement security controls
- The ability to work with limited supervision and to quickly gain knowledge of in a range of technologies
- Mentor and develop junior staff, and identify areas of people, process, and defensive tool improvement
Please note, all applications and conversations are treated with strict confidence.