Senior Cyber Security Analyst
Canberra, Australia
Applications have closed
Company Description
We’re a large scale systems integration company, committed to delivering trusted solutions that help to safeguard Australia. With over 20 years’ local experience and the backing of a 32,000 global network, we currently have 1,500 employees mainly in Canberra and Melbourne. We’re growing fast and are building a business that is focused and fit for the future. Change and innovation are central to the way we work, and we thrive when developing unique, practical solutions to seriously complex challenges.
Job Description
At Leidos Australia, we are expanding our 24x7x365 Central Processing Cyber Security Operations Centre (CP SOC) capability, with the Department of Defence. CP SOC works collaboratively with the Defence Security Operations Centre (DSOC) to assist in defending one of the largest and most complex ICT networks in the southern hemisphere.
We are seeking an experienced Senior Cyber Security Analyst to inspire, motivate and mentor team members to achieve Defence mission outcomes.
This is a permanent role that requires the successful applicant to working on a rotating shift roster (typically 12 hour shifts) onsite at HMAS Harman in Canberra.
This role offers you the opportunity to:
- Develop your leadership potential within the cyber domain as a shift lead
- Mentor your fellow team members in technical and professional skillsets
- Build and shape security tooling to defend critical national security infrastructure
- Challenge yourself by sinking your teeth into some wicked problem sets
- Help build the team culture that you have always wanted to work in
To be successful in this role you will need:
- Self-starting individual with the right attitude, aptitude and zeal to identify, take ownership of and solve challenging problems
- Interest in continual learning and development of the team and themselves
- Be prepared to rapidly upskill yourself and the team to respond to adversaries
- Strong communication and stakeholder management skills
- Clear working understanding of industry and government cyber security frameworks
The roles responsibilities extend to:
- Demonstrating leadership as the shift lead, and within the broader team, to meet mission and contractual outcomes
- Working collaboratively with stakeholders to triage, manage and report on security incidents,
- Actively building relationships with stakeholders
- Actively developing SOC tactics, techniques and procedures (TTP’s) and security toolsets
- Develop custom signatures to Identify, Detect, Protect, Respond and Recover from adversary’s attacks.
- Assist in threat hunt operations using known adversary TTP’s and Indicators of Compromise (IOC’s) to detect advanced threats.
- Develop security operational documentation and Incident report writing
- Undertake management Service Level Reporting in line with contractual requirements and emerging business needs on the security of the environment,
- Identify and evaluate new sources of intelligence, and integrate numerous types of cyber security data sources into cyber threat analysis products.
Qualifications
We are not looking for a unicorn and understand that people will have gaps in their knowledge and skills. We are willing to invest in you to fill those gaps. If you are a Splunk and/or Incident Response expert, we want to hear from you.
This role is suited to a Senior Cyber Security Analyst who has:
- Demonstrated advance expertise in developing, maintaining and monitoring SIEM (Splunk) apps, rulesets, dashboards and workflows is essential;
- Demonstrated intermediate to advance Windows, Linux and Networking experience highly desired;
- Demonstrated intermediate to advance Incident Response professional experience highly desired;
- Demonstrated experience with Trellix EPO, Tenable and Palo Alto platforms, or similar, highly desired;
- Demonstrated experience with scripting and automation technologies highly desired;
- Demonstrated ability in providing leadership, direction and coordination to a team of professionals;
- Industry ICT Security qualifications such as CompTIA Sec+, CISSP, GIAC, GCIH etc desired, but not essential;
- Tertiary education (Bachelor’s degree in Engineering, Computer Science or equivalent) desired, but not essential (equivalent work experience highly desired);
- Demonstrated ability to consistently produce excellent results in a complex environment;
- Current NV1 or NV2 clearance.
Additional Information
Due to the nature of the role, the successful candidate must be an Australian Citizen, hold a government NV-1 security clearance, with the expectation of obtaining an NV-2.
At Leidos you’ll enjoy 12 weeks’ paid parental leave as a primary carer, flexible work practices, discounted health insurance, novated leasing and more. Foster your career through complete access to learning and development and mentoring opportunities, we have a strong track record of internal promotion and career transitions.
At Leidos, we embrace diversity and are committed to creating a truly inclusive workplace. We welcome and encourage applications from Aboriginal and Torres Strait Islander peoples, culturally and linguistically diverse people, people with disabilities, veterans, neurodiverse people, and people of all genders, sexualities, and age groups.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation CISSP Clearance CompTIA Computer Science CSOC GCIH GIAC Incident response Linux Monitoring Scripting Security Clearance SIEM SOC Splunk Windows
Perks/benefits: Career development Flex hours Parental leave
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.