L2 Security / SOC Analyst - multiple positions

Location: Sydney
Discipline: IT & Cyber Security
Job type: Full Time
Salary: $super
Contact name: Karine Tobin

Contact email: karinet@thenetworkit.com
Job ref: BBBH8149_1663036988
Published: 23 days ago
  • Multiple positions available
  • Work from home on the Australian East Coast or hybrid in Sydney or Canberra
  • Career progression and training
  • Australian citizenship required, NV1 Security Clearance highly desirable.

Benefits

  • Highly competitive salary package
  • Training and mentorship opportunities
  • Multiple positions available

About the role

The primary purpose of the SOC or security Analyst is to deliver high quality Managed Security Services (MSS) and provide the best Customer Care. You will develop, grow and maintain the cyber threat detection platforms and capabilities. You will also educate and mentor Tier 1 SOC analysts across these processes. You will detect, contain, remediate, and prevent security incidents and assist customers where possible to achieve the same. This role is an escalation point for internal and customer incidents and will co-ordinate with other teams as required, following, and developing the incident management process.

What you will do:

  • Continuous proactive service monitoring/incident identification
  • Technical resolution for the issues identified or escalated enquiries from clients.
  • Pro-actively use cyber threat information, skills, and intuition to explore vast amount of data to detect security threats. Implement preventive and corrective countermeasures against cyber-threats.
  • Subject Matter Expert in continuous monitoring and security operations.
  • Vulnerability management process and maintenance of regular VA scanning and communication to resolution of cases, in conjunction with SOC Analysts.

What you will need:

  • Permanent Residency or Australian citizen, eligible to obtain security clearance
  • SANS Certifications such as GCIH, GCFA, GMON or Security Certifications such as COMPTIA Security+, CEH, OSCP etc
  • Understanding and ability to craft use cases for SIEM technologies, principally Splunk.
  • Good understanding of threat actors Tactics, Techniques and Procedures (TTP's) and how these could relate to a gateway environment.
  • Understanding of application and network protocols use and behaviours.

How to apply

Click APPLY or contact Karine on 0434 305 339 or karinet@thenetworkit.com for a confidential discussion.

www.thenetworkit.com