Security Response Analyst II (Insider Threat)
Tasks
- Analyzing security event logs
- Analyzing web proxy logs
- Collaborating with engineering teams to improve insider threat tools
- Collaborating with stakeholders HR legal and privacy
- Conducting incident escalations to SOC
- Creating countermeasures for insider threat TTPs
- Documenting incidents in case management system
- Documenting processes to ISO NIST and MITRE standards
- Gathering data to identify insider threat trends
- Generating incident reports
- Maintaining chain of custody
- Performing digital forensics
- Performing risk assessments for insider threat gaps
- Reporting metrics to leadership
- Responding to insider threat incidents
- Reviewing Data Loss Prevention controls
- Triaging security alerts
Perks/Benefits
- N/A
Skills/Tech-stack
Activity monitoring | ArcSight | Behaviour analytics | Chain of Custody | DLP for Endpoint | Data Loss Prevention | Data loss | Digital forensics | GDPR | ISO 27001 | Incident Response | Loss prevention | MITRE ATT&CK | Microsoft Defender | Microsoft Office | Microsoft Office 365 | Microsoft Purview | Microsoft Sentinel | NIST | Networking | OSI Model | OSINT | Office 365 | Rapid7 InsightIDR | SIEM | Splunk | TCPIP | Threat hunting | User Activity Monitoring | User Behaviour Analytics | Vulnerability Management | Web Proxy
Education
N/A
Regions
Countries
States
Related jobs
-
AI Security | By Design | Code review | Data extraction | Detection engineeringEquity packages | Flexible leave | Parental leave | Wellbeing allowanceSenior-level Full TimeSydney, Australia R16h ago
-
Senior Cyber Security Analyst AUD 129K-142KCause analysis | Cyber Security | Incident Response | NIST | Root Cause AnalysisSenior-level Full TimeAdelaide - Level 9 GS, Australia16h ago
-
AWS | Anomaly Detection | Ansible | Azure | Behavioral analyticsEquity packages | Flexible leave | Inclusive parental leave | Remote work flexibility | Wellbeing allowanceSenior-level Full TimeSydney, Australia R1d ago
-
IT & Security Operations Analyst AUD 130K-145KAccess Management | Bash | CI/CD | Chronicle | Cloud platformAnnual leave | Fully Remote Working Environment | Generative AI subsidy | Health insurance | Learning and development allowanceExecutive-level Full TimeSydney R1d ago
-
Consultant - Security Operations Centre AUD 80K-118KAnti spam gateway | Anti-spam | Change Management | CrowdStrike | Data Loss PreventionCareer development | Flex leave | Flexible work arrangements | Paid parental leave | Wellness incentiveSenior-level Full TimeMelbourne, VIC, AU, 30001d ago
-
Automation | Endpoint Security | Incident Response | Network Security | SIEMCareer development | Flex leave | Flexible work arrangements | Paid parental leave | Wellness incentiveSenior-level Full TimeSydney, NSW, AU, 20001d ago
-
Senior IAM Business Analyst - Cyber AUD 143K-146KAccess Certifications | Access Governance | Access Management | Access reviews | Application OnboardingFlexible office attendance 2 days a week | Hybrid workingSenior-level Full TimeSydney, NSW1d ago
-
Principal Security Architect AUD 115K-173KAI/ML | Access Management | Application Security | Cloud Security | Data Security9-day fortnight | Additional leave days | Flexible work arrangements | ME leave | Purchase additional leaveSenior-level Full TimeBrisbane, QLD, AU2d ago
-
SOC Engineer & Analyst AUD 108K-130KAWS | Anti-Malware | Application Firewalls | Azure | Azure KubernetesMid-level Full TimeMelbourne, Australia (Local Office)2d ago
-
Cyber Security GRC AUD 160K-190KAccreditation | Assessment and Authorization | Cyber Security | DSPF | Essential EightAdditional First Year Leave | Birthday leave | Charity donation match | Employee recognition | Health and wellbeing allowanceMid-level Full TimeAdelaide, SA, Australia3d ago
-
Detection and Response Engineer (AU) AUD 149K-173KAWS | Automation | Azure | Detection engineering | Digital forensicsSenior-level Full TimeSydney, Australia3d ago
-
AWS | Access Management | Automation | Azure | CI/CDEmployee networks | Employee volunteer opportunities | Paid adoption leave | Paid parental leave | Professional development opportunitiesSenior-level Full TimeAUS WA Remote, Australia R3d ago
-
AI | Adversary TTPs | Attack Simulation | Automation | Breach Attack SimulationDiscounts on selected products and services | Flexible working arrangements | Health and wellbeing servicesEntry-level Full TimeMelbourne, AU3d ago
-
Sr Cyber Defense Analyst AUD 157K-186KAlert triage | Audit trails | CSPM | Case management | Cloud Audit TrailsSenior-level Full TimeRemote Australia R3d ago
-
Cyber Defense Analyst AUD 100K-140KAI Assisted Triage | Audit trails | Behavior Analysis | CSPM | Chain of CustodyContinual learning culture | Flexible work environment | On-call support rotationMid-level Full TimeRemote Australia R3d ago
-
Specialist II Security Engineering AUD 127K-143KAmazon Web Services | Application Firewall | Attack surface | Attack surface management | AutomationAdditional leave over Christmas | Career development opportunities | Discounts and entitlements | Flexible working optionsMid-level Full TimeSydney, NSW3d ago
-
Head of Cyber Security and Risk AUD 131K-167KBy Design | Cyber Risk | Cyber Security | Cyber policy | GovernanceFlexible public holidays | Flexible working arrangements | Gender Affirmation Leave | Hybrid working | Inclusive workplace initiativesExecutive-level Full TimeSydney, NSW, Australia4d ago
-
CyberSecurity Architect AUD 125K-142KAccess Management | Authentication | By Design | Cloud Security | Enterprise ArchitectureContract extension potential | DHS Working with Children Check WWCC required | On-site work | Possible permanent conversionSenior-level Full TimeAdelaide, SA, Australia5d ago
-
Cyber Security Platforms Lead AUD 110K-176KAPI Integration | AWS Config | AWS Config Rules | Asset discovery | Azure PolicyAccess to industry-leading tools | Career development | Employee well-being | Flexible work schedule | Hybrid workingSenior-level Full TimeMelbourne, VIC, Australia7d ago
-
AWS | Analytic Rules | Azure | Azure Security | Azure Security ServicesMentorship | Rotational on-call support | Training programsSenior-level Full TimeSydney, Australia7d ago
-
Junior Security Operations Analyst AUD 85K-89KAutomation | EDR | Firewall | HIPS | Incident ResponseCareer development support | Mentorship | Secondment opportunities | Training budgetEntry-level Full Time3107 Harman ACT Australia - Military …8d ago
-
Security Engineer - Detection & Response AUD 100K-120KAI | Alert triage | Automation | Cloud Security | Detection engineeringContinuous learning | Hackathons | Hybrid working | Paid parental leave | Wellbeing initiativesMid-level Full TimeSydney, NSW, Australia8d ago
-
Senior Security Engineer AUD 150K-170KApollo | Application Security | Cloud Security | Code review | Container SecurityInternational collaboration | Learning and development budget | MentorshipSenior-level Full TimeAU - HQ - NSW8d ago
-
Head of Information Security AUD 200K-250KAccess Management | By Design | Cloud Security | Cyber Security | Data ProtectionExecutive-level Full TimeSydney, NSW, Australia9d ago
-
Principal Security Engineer AUD 145K-147KApplication Security | Application Security Testing | Automation | Composition analysis | Container SecurityFlexible work arrangements | Tailored learning and development | Volunteering opportunitiesSenior-level Full TimeSydney, NSW, Australia10d ago