Key Facts

Remote From:

Australia

Full time

Mid-level (2-5 years)

English

Hard Skills

Other Skills

•
Teamwork
•
Analytical Thinking
•
Mentorship
•
Verbal Communication Skills
•
Problem Solving

Roles & Responsibilities

Minimum 2+ years in a similar security analyst role with incident response and resolution handling
Experience with Security Information and Event Management (SIEM) and Endpoint Detection and Response (EDR) technologies
Proficiency in threat intelligence, vulnerability assessment, and incident response using frameworks such as MITRE ATT&CK, Lockheed Martin Cyber Kill Chain, NIST 800-61, and NZISM
Australian Citizenship and/or ability to obtain a Baseline security clearance

Requirements:

Review/respond to alerts/events/incidents and escalations from the 24/7 team
Develop security use cases, correlation rules, and automations; identify policy changes required based on analysis
Conduct threat hunting and interface directly with customers on a fortnightly basis
Collaborate with team members and support groups to ensure security policies are understood and risks are effectively managed; mentor junior team members

Datacom

Management Consulting

About Datacom

Customer focused values. World-class capability. The right solutions to help you navigate, wherever you are on your journey. With a breadth of offerings and depth of expertise, there isn’t a safer pair of hands to help navigate the future of your business. Datacom is Australasia's largest home-grown tech company. Drawing on the experience of over 6500 staff in 24 locations around the globe, we work with a full range of clients, from small start-ups through to government agencies and multinational corporations, to explore and extract the hidden value in their systems. We bring together over half a century of know-how, the right technology and the knowledge and creativity of our people, to deliver sustainable solutions to our customers’ greatest challenges. With our team of dedicated professionals, we work with leading partners to deliver the solutions that are right for our customers – that solve their issues and enhances their businesses. We design, build and run IT systems and processes across operations, cybersecurity, cloud, digital platforms, payroll and enterprise applications. We deliver customer care services and operate mission-critical infrastructure with best-in-class data centre facilities – Datacom delivers on the promise: practical imagination. Follow us on Twitter: https://twitter.com/Datacom Like us on Facebook: http://www.facebook.com/datacomcommunity Subscribe to our YouTube Channel: https://www.youtube.com/DatacomGroupLtd

Company type: Large

Industry: Management Consulting

Founded: 2018

Company size: 5001 - 10000

Website LinkedIn See all jobs →

Job description

Our Why

Datacom works with organisations and communities across Australia and New Zealand to make a difference in people’s lives and help them to use the power of tech to innovate and grow.

About the Role

Datacom Cybersecurity Defence Operations Centre (CDOC) operates out of three locations Wellington, Auckland, and Brisbane from where we provide a full stack of Cybersecurity services including managed SOC/SIEM.

Our Cybersecurity Defence Operations Centre is a well-established team made up of Cybersecurity Analysts, Engineers, Devops Engineers, and Incident Responders who have been managing customers, both commercial and government, for over 10+ years. We are a matured operational team that not only responds to security events, incidents, and triggers, but we proactively hunt for anomalous, suspicious, and potentially unwanted activities within our customers environments.

As a Cybersecurity Analyst – Level 2, you will use defensive measures and information collected from a variety of sources to identify, analyse, and report events that occur or might occur within the network to protect information, information systems, and networks from threats. The core objectives and responsibilities of our Cybersecurity Analyst – Level 2 include analysing security events of interest before managing the incident through to resolution or identifying an opportunity for use case improvement based on findings. The ideal candidate will have experience in incident response, vulnerability assessment, and threat intelligence, as well as excellent analytical and problem-solving skills.

Due to the nature of the clients you will be working with, you will need to be a Australian Citizen with /or able to obtain a minimum of a Baseline security clearance

What You'll Do

Action regular tasks and help define processes
Review/ respond to alerts/events/incidents and escalations from the 24/7 team
Security use case and correlation rule development
Identify and develop automations
Identify policy changes required based on analysis
Threat hunting
Interface directly with the customer on a fortnightly basis
Work collaboratively with team members, wider support groups and business units to ensure that agreed security policies and procedures are understood and followed, and that security risks are effectively managed.
Provide mentorship and direction to the junior team members

What You'll Bring

Working experience on Security Information & Event Management (SIEM) and Endpoint Detection and Response (EDR) technologies
Experience using Cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity frameworks such as NIST 800-61, NZISM
Experience in responding to cybersecurity incidents and working with stakeholders to minimize the impact of security breaches or incidents. This involves analysing security events, identifying security incidents, and developing response plans.
Experience on gathering and analysing intelligence about the latest security threats and vulnerabilities and identifying potential threats to our customer’s systems and data.
Excellent written and verbal communication skills
Ability to work independently and as part of a team
Minimum 2+ years in a similar security analyst role with experience in security incident response and resolution handling.

Desired Relevant Certifications:

ITIL - Information Technology Infrastructure Library Foundation
Vendor neutral certifications (such as CompTIA Security+, CompTIA Analyst+ etc.)
Security related vendor qualifications (such as Microsoft AZ-500, MS-500, SC-200, Splunk certifications etc.)

Why Join Us Here at Datacom?

Datacom is one of Australia and New Zealand’s largest suppliers of Information Technology professional services. We have managed to maintain a dynamic, agile, small business feel that is often diluted in larger organisations of our size. It's our people that give Datacom its unique culture and energy that you can feel from the moment you meet with us.

We care about our people and provide a range of perks such as social events, chill-out spaces, remote working, flexi-hours and professional development courses to name a few. You’ll have the opportunity to learn, develop your career, connect and bring your true self to work. You will be recognised and valued for your contributions and be able to do your work in a collegial, flat-structured environment.

We operate at the forefront of technology to help Australia and New Zealand’s largest enterprise organisations explore possibilities and solve their greatest challenges, so you will never run out of interesting new challenges and opportunities.

We want Datacom to be an inclusive and welcoming workplace for everyone and take pride in the steps we have taken and continue to take to make our environment fun and friendly, and our people feel supported.

Ready to apply?

APPLY

Share ·