Principal Security Operations Engineer

• Make an Impact: Provide first-class cybersecurity analysis and reporting. Apply your expertise to enhance the security posture of our government and enterprise customers. 
• Career Growth: Join one of New Zealand’s top security operations teams and work with cutting-edge security technologies from vendors such as CrowdStrike, Palo Alto, Qualys, and Microsoft. Engage in training, pass exams, and benefit from working alongside seasoned professionals focused solely on cybersecurity. 

About the Role

As the Principal Security Operations Engineer, you will lead the charge in delivering cybersecurity excellence for our valued customers. In this role, you will oversee the monitoring and analysis of network traffic, identify and mitigate security threats, and ensure our customers' IT infrastructure remains secure and resilient. Your expertise will be instrumental in detecting and responding to security incidents, conducting vulnerability assessments, and implementing robust security measures. 

You will lead the team in active monitoring of our clients and spearhead incident investigation and response, utilizing Endpoint Protection, Firewalls, and Security Monitoring tools. Your leadership and deep technical knowledge will be essential in guiding the team and enhancing our overall security posture. 

What You'll Be Doing

• Regularly review events and alerts from a range of customers, looking for signs of compromise. 
• Flag noisy and underperforming alerts for improvement, and work to track and develop more robust detections. 
• Help build out our detection and response playbooks, adding new insights and automations to our investigation and incident response procedures. 
• Identify gaps in existing detection or response playbooks, ensuring they are always up-to-date and effective. 
• Provide SME support during Security Incident Response and Post-Mortem activities. 
• Train and develop junior team members and work to develop skills in the monitoring team. 
• Stay up to date with the latest security trends and threats. 

What You'll Bring

• Strong technical expertise: Experience in vulnerability scanning tools, SIEM, EDR, and/or related security tools and technologies. 
• Customer-centric mindset: Proven experience engaging with customers to communicate complex technical issues clearly to stakeholders at all levels, driven by a passion for creating exceptional experiences. 
• Documentation expertise: Strong writing and review skills to produce high-quality reports and processes. 
• Incident response experience: Experience working in complex cybersecurity incidents, with an understanding of DFIR processes. 
• Continuous improvement: Passion for staying ahead of evolving threats and driving security innovation to ensure we deliver value and excellence to our customers. 
• Relevant certifications: Demonstrating expertise in cybersecurity practices by achieving relevant certifications is advantageous (e.g., ISC2/SANS GIAC/CompTIA or equivalent). A degree or relevant tertiary qualification is also beneficial. 

Specific Requirements

• Experience in Cybersecurity roles e.g. Analyst and SOC roles. (4 year +) and/or other relevant Cybersecurity experience. 
• Relevant Cybersecurity qualifications (e.g. Sans, CompTIA, Microsoft). 

Benefits

About DEFEND:

We're a business-centric cybersecurity organisation founded by a team of passionate cybersecurity experts whose mission is to - BUILD A CYBER RESILIENT WORLD. Over the last five years, we've experienced phenomenal growth, working with a wide variety of customers in New Zealand and across 66 countries and winning several industry awards, including Microsoft's 2022 New Zealand Partner of the year!

Each customer we work with is different. Our dedicated approach is to help organisations progress on their cyber resilience journey by delivering outstanding industry services with the highest level of professionalism and care.

We hold ourselves accountable by our core values. Our People First culture sets us apart, and we believe working with DEFEND will be a time in your life you will look back on and truly believe you made a real difference.

What’s great about working for DEFEND?

By joining our innovative and creative team you will have the opportunity to contribute a variety of cybersecurity outcomes, from culture & awareness of cyber resilience, through to offensive & defensive security, developing yourself in technology and digital delivery across multiple sectors.

Work life balance:

• With a national focus throughout New Zealand, our team is made up of skilled individuals at different stages in their careers, therefore we can offer flexibility in base location, as well as embracing remote working
• Flexible working arrangements are available to suit your lifestyle

Career / Professional Development:

We will build on your learning to solve our customers most complex business challenges in the digital age, whilst developing commercial and business skills, along with:

• Continuous learning: You’ll develop the mindset and skills to navigate whatever comes next
• Success as defined by you: We’ll provide the tools and flexibility, so you can make a meaningful impact, your way
• Mentors: You’ll be joining a team of truly passionate and highly skilled individuals who are at the top of their game and who enjoy imparting their knowledge and experience to others
• Opportunity: Progress into other exciting roles across DEFEND

Diversity & Inclusion:

We’re committed to a diverse and inclusive workplace. Our goal is to be recognised as an employer of choice for all, irrespective of gender, ethnicity, generation, flexible work status, family circumstances, sexual orientation, or disability. Each addition to our team is an opportunity to grow and diversify our ideas, experiences, and viewpoints.

Privacy:

By submitting your job application, you acknowledge that you have read and understood the privacy statement below and agree to the collection, use, and disclosure of your personal information.