2 x SOC Cyber Analysts

New
Department of Prime Minister & Cabinet
Security Clearance: Negative Vetting 1
Australian Citizenship Required?: Yes
Contract Length (months): 12
Contract Extension (months): 24

Job details

The Department of Prime Minister and Cabinet (PM&C) require skilled Cyber Security Analysts to support SIEM, SOC, and SOAR operations in a complex ICT environment.

PM&C has a requirement for multiple Cyber Security Analysts, one senior and one mid-level, to support and uplift organisational capability by providing expertise in operations, automation, monitoring, incident response and remediation functions.

The candidates will work across teams with other technicians in infrastructure, cloud, and corporate enterprise environments. Having skills or experience across these areas will be highly advantageous.

The successful candidate will also have a range of generalist skills, and will be able to work collaboratively with business, other system owners, and administrators to progress technology initiatives.

NV1 minimum required for this role. PM&C will not upgrade clearances.

Key duties and responsibilities

  • Monitor, investigate and mitigate cyber events using SIEM, SOAR and SOC related technologies.
  • Conduct triage, analysis, and remediation of security incidents in a complex multi-technology environment.
  • Perform proactive threat hunting and contribute to improved automation, monitoring and detection rules and response playbooks.
  • Conduct investigations into human-risk factors, to identify anomalous user entity behaviour analytics.
  • Prepare operational and executive reports on security incidents, identified risks, and emerging trends.
  • Work closely with key stakeholders to support incident response activities and remediation efforts.
  • Responsible for development of standard operating procedures related to cyber incident response.
  • Facilitating knowledge transfer to the existing operational workforce.
  • Provide support for incident response and remediation activities.

Criteria

The buyer has specified that each candidate must provide a response to each criterion. Each response is limited to 3000 characters.

Essential criteria

  1. Extensive operational experience in a SOC or security operations role. Analysing logs from a complex ICT environment and responding to identified alerts.
  2. Proficiency with SIEM and SOAR platforms and related monitoring technologies.
  3. Strong stakeholder engagement and communication skills.
  4. Knowledge of existing cyber-attack tactics, techniques, and procedures with the ability to identify such activities within a SOC environment.
  5. Experience in design, development and management of SOC dashboards, reports, and playbooks.

Desirable criteria

  1. Experience in onboarding, pre-processing, and structuring new log sources to SIEM technologies.
  2. Experience proactive threat hunting activities and participate in incident response.

 

Job Overview

Sign in

[cariera_login_form]
Forgot Password?

Sign Up

[cariera_registration_form]
Forgot Password?

Forgotten Password

[cariera_forgetpass_form]