- 12 month engagement + extensions
- Must be in Canberra
- Must have an active NV1 security clearance
- Candidate must be an Australian citizen
Requirements for the role include:
- Analyse security events and logs to identify patterns of potential anomalous activity, recommend security enhancements, and assist in developing countermeasures to prevent future incidents.
- Applying cyber security knowledge and experience in creating cyber security use cases to detect potential anomalous ICT activity.
- Undertaking incident response and remediation functions.
- Provide advice and assistance to relevant parties on cyber operations, potential risks, and mitigation efforts.
- Creating and maintaining technical Playbooks, Standard Operating Procedures and policy documents that relate to cyber security.
- Assisting the production of Cyber Threat Intelligence.
Essential criteria
- Minimum three years’ experience in Cyber Security Operations or Incident Response.
- Applied Experience with a Security Incident and Event Management tool such as SPLUNK, or the ability to utilise system administration or scripting experience to address cyber security requirements.
- Demonstrated knowledge should be relevant to both cloud and on-premises Candidate environments.
- An in depth understanding of current cyber security techniques, threats and vulnerabilities and the ability to apply this knowledge to mitigate cyber security risks. This includes the application of frameworks such as MITRE ATT&CK and analysis of TTPs of threat actors.
- The ability to work well and share knowledge within a team.
- Well-developed writing skills and experience maintaining technical documentation.
Desirable criteria
- Experience with automation, preferably security orchestration, automation and response.
- Knowledge of Splunk Risk Based Alerting (RBA).
- Relevant industry certifications such as CISSP, GCIH, GCIA.
- Technical tertiary qualifications, Microsoft or Splunk certifications are highly desirable.
How to apply:
Please hit the apply button or for more information contact Anne from Randstad Digital on 02 6243 6404. Randstad actively encourages applications from Aboriginal and Torres Strait Islander people.
At Randstad Digital, we are passionate about providing equal employment opportunities and embracing diversity to the benefit of all. We actively encourage applications from any background.
...