Join a top-tier financial services org that is embarking on a transformative security journey. Our client is on an ongoing mission to digitise their future and automate their internal processes. This is an opportunity to be a part of a growing team that rolls out new tools as they come, with a roadmap to build out a SOAR capability internally.
This new SOAR Engineer position focuses on elevating their cybersecurity capabilities by analysing and enhancing the org’s security processes through the implementation of solutions within their SOAR platform, as well as other threat detection and response platforms.
Responsibilities:
- Assessing the health of the group’s SOAR platform to identify any issues impacting threat detection and response capabilities.
- Automating manual processes by integrating the organisation’s SOAR with threat detection platforms and third-party intelligence sources.
- Crafting playbooks within various platforms to automate threat detection, incident response, platform health monitoring, governance, reporting, and documentation of cyber detection.
- Evaluating detection and response environment to pinpoint processes causing delays in system compromise or data theft events.
- 4+ years within a cyber security-related role
- Experience with Splunk SOAR and development of playbooks
- Familiar with Threat Intelligence Platform administration
- Good understanding of Incident Response
- Collaboration with various technical teams and service provider management experience.
- Nice to have: programming language skills (eg. Python)
- Permanent Position / up to $170k package + incentive bonuses
- Location: Melbourne / Work From Home Flexibility
- Friendly & Collaborative Culture
- Career Development & Additional Paid Training
- An opportunity to play with new and innovative security tools
- Extras: Discounted Health insurance, salary sacrificing, and more