Security Operations Analyst

Company Description

Nine is Australia’s largest locally owned media company – the home of Australia’s most trusted and loved brands spanning News, Sport, Lifestyle, and Entertainment. We pride ourselves on creating the best content, accessed by consumers when and how they want – across Publishing, Broadcasting and Digital.

Nine’s assets include the 9Network, major mastheads such as The Sydney Morning Herald, The Age and The Australian Financial Review, radio stations 2GB, 3AW, 4BC and 6PR, digital properties such as nine.com.au, 9Now, 9Honey, Pedestrian.TV, Drive, subscription video platform Stan and a majority investment in Domain Group.

Our Purpose: We shape culture by sparking conversations, challenging perspectives, and entertaining our communities.

We bring people together by celebrating the big occasions and connecting the everyday moments. Australia belongs here. We bring our purpose to life via three shared values: We walk the talk, turn over every stone and keep it human.

Job Description

The Cyber Security Analyst will be a part of the security operations team (SOC) aspiring to detect, hunt and respond to cyber security threats to Nine. This role will be a great fit for a blue teamer with understanding and interest in red team tactics and techniques, someone with an analyst mindset who wants to be actively involved in threat hunting, threat intelligence management and investigations using automation, data analysis and curiosity.

This is a hands-on role in a flexible working environment in a small but high functioning and diverse team.  The role  involves detection engineering, incident response, threat hunting and will be interacting with a broad set of business units. Hence, communication skills, problem solving and day to day learning are a big part of it. There is opportunity for involvement in a wide variety of cyber transformational work, training and upskilling.

Responsibilities 

• Investigation and analysis of alerts, advisories and incidents

• Attack surface mapping, critical vulnerability triage and impact analysis

• Curation, enrichment and correlation of indicators, creating actionable intel and managing their lifecycle

• Detection engineering, development and improvement of detection signature base across the SOC toolset

• Data and attack based threat hunting

• Reporting on threat intel, metrics and publishing internal advisories 

• Automation of investigation, incident response and threat intel workflows

• Security Operations tooling management, configuration and operations

• Rotational on call roster 

Qualifications

Essential:

• Practical and flexible security mindset

• 2+ years of experience in SOC or as security analyst

• Experience at working both independently and in a team-oriented, collaborative environment is essential.

• Deeply analytical lateral thinker with the ability to make business decisions through robust use of data; 

• SIEM platform management and use case development

• Technical report writing 

• Client service and management experience 

• Scripting, automation and basic networking knowledge

• Web application vulnerability assessment experience

• Excellent english and communication skills with the ability to engage at both technical and management levels.

Desirable:

• Programming experience

• Experience with network protection and EDR solutions

• Degree in  Information Security, Information Protection, Computer Information Systems, Computer Science, Computer Engineering, Information Systems Management

• Industry certification desirable (e.g. OSCP, Security+, GSEC)

Additional Information

Our Commitment to Diversity and Inclusion:

At Nine, we are committed to fostering a workforce that embraces all aspects of diversity and inclusion and where practices are equitable to ensure our people experience a sense of belonging. From day one, you'll be encouraged to bring your whole self to work and will be supported to perform at your best. Should you require any adjustments to the recruitment process in order to equitably participate, we encourage you to advise us at the time of application.

We encourage applications from Aboriginal and Torres Strait Islander people, people with disabilities, and of all ages, nationalities, backgrounds and cultures.

Disclaimer: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes.

Work rights: Please note to apply for this role you must already have the right to lawfully work and live in Australia.