Take ownership for the monitoring and analysis of security operations function, leading technological innovations.

About the client

Our client, a leading Australian organisation has been voted one of the best places to work for over a few years. They are always looking at new areas and different ways of working with their clients and have over 15 years’ experience in providing Government agencies with secure, reliable and proactive services. They provide secure internet gateway services to 42% of federal Government agencies and are the first Australian cloud approved by the Australian Signals Directorate (ASD).

About the role

The Senior SOC Engineer delivers high quality Managed Security Services and provides the world's best Customer Care to government customers. This is measured by technical and customer performance parameters and are at the core of our values of the company. This is a hands-on role, working with the team, delivering on the accountabilities of the function. The role is also a central point of coordination for major security incidents, management of incidents and ensuring the correct incident management processes are adhered to.

In addition, you will:

• Respond to security incidents & resolve/mitigate them within agreed thresholds and with appropriate sense of urgency
• Pro-actively use cyber threat information, skills and intuition to explore vast amount of data to detect security threats
• Implement preventive and corrective counter-measures against cyber-threat
• Troubleshoot IP, Firewall& Internet networks
• Evaluate impact of security bulletins & alerts including, AUSCert, SANS, ASD, vendors

About you

In this highly visible role as a Senior SOC Engineer your brilliant IT skills will be called on to develop creative and effective security solutions, with a focus on monitoring, analysis, architecture and system maintenance. Not just a job, this role calls for your dedication to protect systems, networks and data through maintaining and recommending monitoring and analysis tool.

• Must be an Australian Citizen
• At least 2-3 years' experience in security operations role in Customer Facing environments (working in SOC/Technical Contact Centres with external clients - not internal IT Help Desk)
• Understanding of IP network networks (Layer 3 to 7) and correlate higher level protocols such as HTTP, HTTPS, SMTP and the ability to perform packet captures and other steps required to troubleshoot incidents
• Hands-on experience with at least one major SIEM technology
• Ability to interpret reverse engineering reports from research teams or sandboxing platforms
• Ability to automate mundane tasks using scripting languages such as Bash, Python and Ruby is beneficial
• Familiarity with ASD Information Security Manual is beneficial
• Exposure to Big Data analytic technologies is beneficial