Educational requirements: Bachelor
English requirements: Competent English
Requirements for skilled employment experience for years: 1-3 years
Required residence status: Temporary visa, Permanent resident, Citizen
Accept remote work: unacceptable
As part of the Cyber Operations team, the role will help ensure that NDIA has the capability to build and protect cyber-resilient information technology platforms and support strategic objectives.
Duties
• Conducting proactive monitoring, investigation, and mitigation of security incidents within security tools (including Microsoft Defender 365 stack, Azure Security Centre, IntSights, Splunk)
• Analysing security event data and identifying suspicious/malicious activity from networks and systems
• Perform incident response including initial and detailed investigation, computer forensics, chain of custody implications ndis.gov.au
• Responding to events and incidents using established Standard Operating Procedures (SOPs)
• Escalate complex incidents, and engage with Subject Matter Experts
• Perform and manage phishing simulations
• Research new and evolving threats and vulnerabilities to the Agencies threat landscape
• Conduct log analysis and develop visualisation and reporting within Splunk
• Identify critical data sources required by cyber for ingestion and normalisation into the SIEM
• Collaboration with Security Operations and IT engineers to implement security controls
• The ability to work with limited supervision and to quickly gain knowledge of in a range of technologies
• Mentor and develop junior staff, and identify areas of people, process, and defensive tool improvement
(NOTE: the key responsibilities of the role are based on current priorities and may change over time)
Essential Criteria
• Minimum 3 years experience in technical cyber security roles
Experience conducting detection, investigation, and remediation of security incidents using enterprise security tools (e.g. SIEM/SOAR)
Experience performing cyber threat intelligence, threat hunting, and vulnerability management activities
