Security Response Analyst II (Insider Threat)
Tasks
- Align processes to security frameworks
- Analyze security event logs
- Conduct risk assessments for insider threat gaps
- Create countermeasures for insider threat tactics
- Document incidents in case management system
- Gather data for insider threat trends
- Generate incident reports
- Interface with HR legal and privacy stakeholders
- Investigate insider threat incidents
- Maintain chain of custody for evidence
- Perform digital forensics
- Perform web proxy log analysis
- Report KPIs to leadership
- Resolve high priority incidents with SOC
- Review DLP controls
- Support incident escalation with stakeholders
- Triage security alerts
Perks/Benefits
- N/A
Skills/Tech-stack
Activity monitoring | ArcSight | Behaviour analytics | DLP for Endpoint | Data Loss Prevention | Data loss | Digital forensics | Event Log analysis | Event management | Incident Response | Log Analysis | Loss prevention | Microsoft Defender | Microsoft Purview | Microsoft Sentinel | Mitre Attack | Networking | OSI Model | OSINT | Proxy logs | Rapid7 InsightIDR | SIEM | Security Information | Security Information and Event | Security Information and Event Management | Security event log analysis | Splunk | TCPIP | Threat hunting | User Activity Monitoring | User Behaviour Analytics | Vulnerability Management | Web Proxy | Web proxy logs
Education
N/A
Regions
Countries
States
Related jobs
-
Application Testing | Automated security | Automated security testing | Cloud Virtualization | ISO 27001Culture, Lifestyle and Wellbeing leave | Employee banking discounts | Flexible work arrangements | Learning and development opportunities | Volunteer opportunitiesSenior-level Full TimeSydney, NSW, Australia23h ago
-
Ansible | Ansible Automation | Ansible Automation Platform | Application Security | Automation platformEmployee diversity programs | Flexible working | Inclusive workplace | Paid parental leaveSenior-level Full TimeVIC - Melbourne - 727 Collins …1d ago
-
Platform Security Engineer | 12 Mth FTC AUD 200K-200KAWS | Access Management | Auth0 | CloudFormation | Container Security24/7 support | Hybrid work | Loyalty leave | Paid parental leave | Wellbeing programsMid-level Full TimeBrisbane, QLD, Australia2d ago
-
Platform Security Engineer | 12 Mth FTC AUD 200K-200KAWS | Access Control | Auth0 | Automation agents | CloudFormation24/7 support | Financial wellbeing services | Generous paid parental leave | Hybrid working | Loyalty leaveMid-level Full TimeMelbourne, VIC, Australia2d ago
-
Platform Security Engineer | 12 Mth FTC AUD 200K-200KAWS | Access Control | Auth0 | CloudFormation | Containerization24/7 support | Hybrid working | Loyalty leave | Paid parental leave | Psychological safety initiativesMid-level Full TimeAdelaide, SA, Australia2d ago
-
Cyber Security Analyst EUR 30K-44KApplication Firewall | Awareness Training | Backup Management | EDR | Email SecurityAccommodation discounts | Community programs | Discounted products | Health insurance discounts | Profit share schemeEntry-level Full TimeVIC, Mulgrave4d ago
-
Information Security Analyst AUD 80K-111KASD Essential Eight | Audit Support | Awareness Training | Compliance Management | Essential EightAnnual Values Awards | Annual flu vaccinations | Catered meals | Discounts at Supplier Retail Outlets | Employee Recruitment Referral ProgramMid-level Full TimeSydney, Australia5d ago
-
Assistant Security Operations Manager AUD 58K-58KClient Communication | Crowd control | Emergency response | Event coordination | First AidCar allowance | Discounts | Internal promotion opportunities | Multiple locations | Tailored training opportunitiesMid-level Full TimeSydney, NSW, AU5d ago
-
Agile Development | Application Security | CI/CD | Cloud Security | Code reviewTravel up to 30 percentSenior-level Full TimeDocklands VIC, Australia; Sydney NSW, Australia5d ago
-
Access Control | Alarm Monitoring | CCTV | Incident Response | Incident reportingFirst aid and CPR support | Free parking | Working with Children Check supportEntry-level Full TimeVictoria, Australia6d ago
-
Cyber Security Analyst AUD 66K-95KCyber Security | Incident Response | Log Analysis | Risk Assessment | Security ComplianceAdditional leave | Educational scholarship | Reduced cost of health services | Relocation assistanceEntry-level Full TimeRichmond, VIC, Australia6d ago
-
Director - Cyber Security Engagements USD 140K-183KChange Management | Coaching | Consequence Management | Critical Infrastructure | Critical Infrastructure ResilienceFlexible working arrangements | Relocation assistanceExecutive-level Full TimeACT, AU7d ago
-
Business Continuity | Business Continuity Planning | Compliance Management | Continuity planning | Cyber ResilienceBereavement | Disability insurance | Employee assistance program | Health insurance | Life insuranceSenior-level Full TimeSydney, AUS-NSW, Australia7d ago
-
Senior Security Analyst AUD 125K-175KAutomation | Azure DevOps | IT Operations | Incident Response | KQLCultural celebrations | EAP | End of year functions | Fitness passport | Flexible hoursSenior-level Full TimeWA, Perth8d ago
-
Senior Security Monitoring and Response Analyst AUD 140K-173KAccess Management | Application attacks | Automation | CIS | Cloud Security24 7 on call coverage | Mentorship opportunities | Security trainingSenior-level Full TimeSt Leonards, Australia8d ago
-
Security Engineer AUD 160K-185KAzure | Azure Security | Cybersecurity | Incident Response | Microsoft 365Bonus structure | Paid volunteer days | Social events | Supportive collaborative environment | Training mentoring career development programsSenior-level Full TimeBrisbane, Queensland, Australia9d ago
-
Vice President, Information Security Threat & Insider Risk Management Specialist Sydney, Australia AUD 70K-200KBehavioral Analysis | CrowdStrike | Cyber Threat | Cyber threat analysis | DLPExecutive-level Full TimeSydney, Australia9d ago
-
Cyber Security Operations Analyst AUD 80K-98KAlert triage | Bash | Cloud Security | EDR | Endpoint SecurityCentral CBD location | Discounted utilities | EV Car Subscription | Employee Community Support | Parking accessEntry-level Full TimeBrisbane, QLD, AU, 40009d ago
-
Automation | Cloud Security | Cybersecurity | Detection engineering | Endpoint SecuritySenior-level Full TimeSydney, New South Wales, Australia13d ago
-
Services Consultant AUD 150K-190KLinux | Log Management | Mitre Attack | Network Security | ProgrammingTravelSenior-level Full TimeAustralia14d ago
-
Security Engineer Intern 2026/27 AUD 80K-110KAI tools | Cloud Security | Documentation | Go | JavaCampus week in Sydney | Intern social events budget | Mentorship | Remote-friendly work | Virtual interviewsEntry-level Full Time InternshipSydney, NSW, Australia14d ago
-
Security Engineer AUD 103K-111KAV platforms | Access Control | ClearPass | Cloud | Content FilteringEx gratia leave | Fitness passport discount | Laptop provided | Mobile phone provided | Working With Children Check requiredMid-level Full TimeCatholic Education Office, Wollongong14d ago
-
Security Architect AUD 125K-142KActive Directory | Application Security | Azure | Azure Active Directory | Azure DevOpsSenior-level Full TimeMelbourne, VIC, AU14d ago
-
Security Engineer AUD 100K-130KAccess Control | Access reviews | Conditional Access | Detection and Response | Endpoint Detection and ResponseEntry-level Full TimeMelbourne, Australia15d ago
-
Security Engineer - Endpoint AUD 80K-160KAirlock | Amazon Web Services | Ansible | Application Allowlisting | Application controlSenior-level Full TimeAU309 - DXC Sydney Macquarie Park …15d ago