cyber security analyst/engineer (nv1).

• 12 month engagement + extensions
• Must be in Canberra
• Must hold an active NV1 Security clearance
• Candidate must be an Australian citizen

Key duties and responsibilities

The Cyber Operations Section requires a Cyber Security Engineer/Analyst to perform the following tasks:

• Assist with log ingestion and use case creation for newly onboarded systems.
• Monitor and improve Cyber Security systems.
• Develop and maintain playbooks to assist with Cyber Security tasks.
• Analyse security events and logs to identify patterns of potential anomalous activity, recommend security enhancements, and assist in developing countermeasures to prevent future incidents.
• Undertake incident response and remediation functions.
• Assist with Threat Hunt activities.

Essential criteria

1. Minimum 3 years working as a Cyber Security Analyst and/or Engineer.
2. Experience maintaining SPLUNK infrastructure, or experience managing a similar product.
3. Demonstrated knowledge of log ingestion from hybrid hosting platforms, including Azure and Amazon Web Services.
4. Experience designing, implementing and testing use cases to detect potential malicious activity.
5. Ability to work well and share knowledge within a team.
6. Well-developed writing skills and experience maintaining technical documentation.

Desirable criteria

1. Experience using Splunk SOAR to develop Playbooks.
2. Knowledge of Splunk Risk Based Alerting (RBA).
3. Technical tertiary qualifications, Microsoft or Splunk certifications are highly desirable.
4. Relevant industry certifications such as CISSP, GCIH, GCIA.

How to apply:

Please hit the apply button or for more information contact Anne from Randstad Digital on 02 6243 6404.

At Randstad Digital, we are passionate about providing equal employment opportunities and embracing diversity to the benefit of all. We actively encourage applications from any background.