Cybersecurity Analyst L2 | Wellington

Our purpose

Here at Datacom we connect people and technology in order to solve challenges, create opportunities and discover new possibilities for the communities we live in.

Our team

Datacom Cybersecurity Defence Operations Centre operates out of three SOC locations; Wellington, Auckland, and Brisbane from where we provide a full stack of Cybersecurity services including managed SOC/SIEM.

Our Cybersecurity Defence Operations Centre is a well-established team made up of Cybersecurity Analysts, Engineers, Devops Engineers, and Incident Responders who have been managing customers, both commercial and government, for over 10+ years. We are a matured operational team that not only responds to security events, incidents, and triggers, but we proactively hunt for anomalous, suspicious, and potentially unwanted activities within our customers environments.

We are looking for Analysts to join our team, if you have 2+ years’ experience within the Cybersecurity space then we want to hear from you!

About the Role

A Cybersecurity Analyst – Level 2 uses defensive measures and information collected from a variety of sources to identify, analyse, and report events that occur or might occur within the network to protect information, information systems, and networks from threats. The ideal candidate will have experience in incident response, vulnerability assessment, and threat intelligence, as well as excellent analytical and problem-solving skills.

The core objectives and responsibilities of our Cybersecurity Analyst – Level 2 include analysing security events of interest before managing the incident through to resolution or identifying an opportunity for use case improvement based on findings

What you'll do

• Action regular tasks and help define processes
• Review/ respond to alerts/events/incidents and escalations from the 24/7 team
• Security use case and correlation rule development
• Identify and develop automations
• Identify policy changes required based on analysis
• Threat hunting
• Interface directly with the customer on a fortnightly basis
• Work collaboratively with team members, wider support groups and business units to ensure that agreed security policies and procedures are understood and followed, and that security risks are effectively managed.
• Provide mentorship and direction to the junior team members

What you'll bring

• Working experience on Security Information & Event Management (SIEM) and Endpoint Detection and Response (EDR) technologies
• Experience using Cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity frameworks such as NIST 800-61, NZISM
• Experience in responding to cybersecurity incidents and working with stakeholders to minimize the impact of security breaches or incidents. This involves analysing security events, identifying security incidents, and developing response plans.
• Experience on gathering and analysing intelligence about the latest security threats and vulnerabilities and identifying potential threats to our customer’s systems and data.
• Excellent written and verbal communication skills
• Ability to work independently and as part of a team
• Minimum 2+ years in a similar security analyst role with experience in security incident response and resolution handling.

Desired Relevant Certifications:

• ITIL - Information Technology Infrastructure Library Foundation
• Vendor neutral certifications (such as CompTIA Security+, CompTIA Analyst+ etc.)
• Security related vendor qualifications (such as Microsoft AZ-500, MS-500, SC-200, Splunk certifications etc.)

How we support our analysts

We have defined certification paths for all the CDOC analyst tiers to accelerate their progress within the role.

We follow the Datacom aspire programme to identify your career and development goals to ensure that you are upskilling in areas that align with your aspirations.

Continuous feedback loop with the team managers, to track their progress and performance.

We provide a flexible (hybrid) work environment, after the 2 month CDOC induction phase we will transition to this hybrid model.

We instil an innovative work atmosphere of mutual trust and respect which helps us to function as a highly productive team.

We partner with industry leaders to provide our services and to provide you with a broad technical skillset, certifications and experience.

Due to the Nature of the Clients you will be working with you will need to be an New Zealand Citizen or Permanent Resident, we do however consider Resident Visa or long work visas.

Why Join Us Here at Datacom?  

Datacom is one of Australia and New Zealand’s largest suppliers of Information Technology professional services. We have managed to maintain a dynamic, agile, small business feel that is often diluted in larger organisations of our size. It's our people that give Datacom its unique culture and energy that you can feel from the moment you meet with us.  

We care about our people and provide a range of perks such as social events, chill-out spaces, remote working, flexi-hours and professional development courses to name a few. You’ll have the opportunity to learn, develop your career, connect and bring your true self to work. You will be recognised and valued for your contributions and be able to do your work in a collegial, flat-structured environment.  

We operate at the forefront of technology to help Australia and New Zealand’s largest enterprise organisations explore possibilities and solve their greatest challenges, so you will never run out of interesting new challenges and opportunities.  

We want Datacom to be an inclusive and welcoming workplace for everyone and take pride in the steps we have taken and continue to take to make our environment fun and friendly, and our people feel supported.