Security Response Analyst II (Insider Threat)
Tasks
- Analyzing security event logs
- Analyzing web proxy logs
- Collaborating with engineering teams to improve insider threat tools
- Collaborating with stakeholders HR legal and privacy
- Conducting incident escalations to SOC
- Creating countermeasures for insider threat TTPs
- Documenting incidents in case management system
- Documenting processes to ISO NIST and MITRE standards
- Gathering data to identify insider threat trends
- Generating incident reports
- Maintaining chain of custody
- Performing digital forensics
- Performing risk assessments for insider threat gaps
- Reporting metrics to leadership
- Responding to insider threat incidents
- Reviewing Data Loss Prevention controls
- Triaging security alerts
Perks/Benefits
- N/A
Skills/Tech-stack
Activity monitoring | ArcSight | Behaviour analytics | Chain of Custody | DLP for Endpoint | Data Loss Prevention | Data loss | Digital forensics | GDPR | ISO 27001 | Incident Response | Loss prevention | MITRE ATT&CK | Microsoft Defender | Microsoft Office | Microsoft Office 365 | Microsoft Purview | Microsoft Sentinel | NIST | Networking | OSI Model | OSINT | Office 365 | Rapid7 InsightIDR | SIEM | Splunk | TCPIP | Threat hunting | User Activity Monitoring | User Behaviour Analytics | Vulnerability Management | Web Proxy
Education
N/A
Regions
Countries
States
Related jobs
-
Senior Security Engineer - Detection & Response AUD 90K-100KAWS | Anomaly Detection | Ansible | Azure | Behavioral analyticsEquity packages | Flexible leave | Flexible work | Inclusive benefits | Parental leaveSenior-level Full TimeSydney, Australia20h ago
-
AWS | Cloud Security | DNS | Detection engineering | Endpoint detectionFlexible time off | Medical insurance | Modern family planning | Remote work | Retirement savings plansMid-level Full TimeMelbourne, Australia1d ago
-
Cyber Security GRC AUD 118K-132KAssessment and Authorization | Cybersecurity frameworks | Essential Eight | Governance | ISMSAdditional leave days | Birthday leave | Charity donation match | Employee recognition | Health and wellbeing allowanceMid-level Full TimeAdelaide, SA, Australia1d ago
-
Sr Analyst Cybersecurity Operations AUD 129K-142KAutomation | CVSS | Incident Response | Risk Prioritization | ScriptingAdditional day leave | Community partnerships | Gender neutral parental leave | Learning culture | Purchased leaveSenior-level Full TimeDocklands, VIC, AU, 30081d ago
-
Access Management | Automation | CI/CD | Cloud Security | Configuration ManagementSenior-level Full TimeEveleigh, NSW - 5-7 Central Ave, …2d ago
-
Alert triage | Analytical reporting | Cyber Security | Detection engineering | Enterprise ITAdditional rest leave | Christmas stand down | Flexible working | Health and wellbeing services | Hybrid workingSenior-level Full TimeCanberra, ACT, AU2d ago
-
Security Engineer AUD 120K-130KAPI Security | Access Management | App Service | Azure App | Azure App ServiceMid-level Full TimeCremorne, Victoria 3121, Australia3d ago
-
Anomaly Detection | Behavior analytics | Case management | DLP | Detection engineeringEquity packages | Flexible leave options | Flexible work arrangements | Inclusive parental leave policy | Wellbeing allowanceSenior-level Full TimeSydney, Australia3d ago
-
Security Analyst-Apac AUD 110K-140KAlert triage | Case management | EDR | Firewall | Incident Response24x7 shift allowance | Career growth | Certification support | Global MSSP Exposure | Training supportMid-level Full TimeMELBOURNE, AU3d ago
-
Mid-level Full TimeMelbourne, Australia3d ago
-
Cybersecurity Analyst AUD 102K-110KEmail Gateway | Essential Eight | Firewalls | IDS/IPS | ISO 27001Employee assistance program | Flexible work arrangements | Learning and development opportunities | Paid parental leaveMid-level Full TimeVIC - Metro, Melbourne CBD3d ago
-
Security Analyst AUD 135K-185KElasticsearch | HTTP | HTTPS | Incident Response | NoSQLBirthday leave | Employee assistance program | Equity or stock options | Flexible working hours | Parental leave supportSenior-level Full TimeSydney3d ago
-
Information Security Operations Analyst AUD 80K-85KAlert Monitoring | CIS Controls | Conditional Access | Endpoint Security | Entra IDBirthday leave | National Police Check required | Wellbeing leaveMid-level Full TimeSydney, New South Wales 2000, Australia3d ago
-
Security SOC Analyst (AU West) - Remote AUD 120K-180KCloud Security | Conditional Access | CrowdStrike | Dark Web | EDRAnnual global gathering | Egg freezing subsidy | Employee share options | Learning and development | Parental leaveMid-level Full TimeEast Perth, Western Australia 6004, Australia R6d ago
-
Information Security Senior Consultant - Cyber Detection AUD 108K-142KAnomaly Detection | Correlation rules | Detection engineering | EDR | KQLEmployee discounts | Flexible work arrangements | Learning and development | Leave options | Volunteer opportunitiesSenior-level Full TimeSydney, NSW, Australia6d ago
-
Senior SOC Analyst AUD 135K-158KAutomation | Correlation | EDR | Firewalls | HIPS24 7 SOC shift work | Days off between shifts | Funded certifications | Mentoring | On-site workSenior-level Full Time2641 Jerrabomberra ACT Australia - Military …7d ago
-
Security SOC Analyst - Remote AUD 120K-180KAccess Management | Cloud Security | Conditional Access | Credential Monitoring | CrowdStrikeESOP | Flexible schedule | Learning and development opportunities | Parental leave | Remote workMid-level Full TimeSydney, New South Wales 2000, Australia R7d ago
-
Security SOC Analyst (AU East) - Remote AUD 120K-180KAccess Management | Cloud Security | Conditional Access | CrowdStrike | EDREmployee share options | Learning and development opportunities | Parental leave | Remote work flexibility | WFH office expense budgetMid-level Full TimeSydney, New South Wales 2000, Australia R7d ago
-
Sr Security Analyst-Apac AUD 140K-185KAWS | Armis | Automation Playbooks | Azure | Cause analysisCareer growth | Certification support | Flexible support | Global MSSP SOC experience | Training supportSenior-level Full TimeMELBOURNE, AU8d ago
-
Security Operations Specialist AUD 129K-142KAtlas | CASB | Cause analysis | Cyber Risk | Cyber Risk AnalysisCareer development | Employee discounts | Health and wellbeing support | Hybrid work options | Paid parental leaveSenior-level Full TimeMelbourne, VIC, AU, 30008d ago
-
Principal Cybersecurity Incident Analyst AUD 108K-185KCortex XSOAR | EDR | Event Correlation | ISO 27001 | ISO 31000Senior-level Full TimeMelbourne, Australia8d ago
-
Senior Security Engineer AUD 200K-260KCloud Security | Detection engineering | Endpoint Security | Gateway Security | Incident ResponseAustralian citizenship required | Clearance support | Flexible team alignment to capability delivery | Relocation to Canberra if requiredSenior-level Full Time7169 Moore St Canberra ACT Australia8d ago
-
Manager - Cybersecurity Operations AUD 120K-130KAI for security | Automation | Cybersecurity compliance | Darktrace | DelineaDiscounted private health insurance | Employee assistance program | Employee discounts rewards and incentives | Free health checks | Free on-site parkingMid-level Full TimeAustralia | SEQ | Brisbane - …8d ago
-
Sr Cyber Threat Security Analyst AUD 129K-190KAdversary Emulation | Adversary tactics | Behavioral Analysis | Cloud Security | EDRSenior-level Full TimeMELBOURNE, AU8d ago
-
Security Operations & Compliance Lead AUD 80K-87KAI | Access Control | Audit Readiness | Authentication | AuthorizationEmployee assistance program | Flexible working hours | Hybrid work environment | Learning allowance | Paid parental leaveMid-level Full TimePyrmont, New South Wales, Australia8d ago