Lead SOC Analyst
NV1+
Canberra - Hybrid
12 Month contract with 2 x 12 month ext.
Are you someone who thrives on responding to security incidents and improving ICT system resilience? In this role, you will lead operational cyber functions, manage incidents and vulnerabilities, optimise service workflows, and coach junior analysts.
You will work in a cyber operations team supported by a managed SOC partner, balancing business needs with security risk and contributing to process improvement.
Responsibilities
- Investigate and respond to cybersecurity alerts; manage escalation, containment, and remediation.
- Contribute to incident response planning and playbook development.
- Execute and interpret vulnerability scans; work with teams to remediate risks.
- Improve logging, monitoring, and detection capabilities; tune security tools.
- Manage ServiceNow cyber queues and optimise operational workflows.
- Maintain SOPs and documentation to support efficiency and compliance.
- Coach junior analysts and support team development.
Required skills
- Microsoft Azure security and administration (Sentinel, Defender for Endpoint, Purview, Entra ID, Intune).
- Vulnerability scanning and interpretation, preferably Tenable.
- Experience applying ISM and Essential 8 in operational contexts.
- Strong incident response experience and workflow management.
- Ability to explain complex issues to technical and non-technical audiences and coach junior staff.
Interested in finding out more? Apply NOW or email me at
