Cybersecurity Analyst - L1

Summary

Join Datacom's Cybersecurity Defence Operations Centre team in Australia as a Cybersecurity Analyst. Analyze security events, oversee incidents from start to finish, and identify opportunities for alert refinement. Utilize defensive measures and insights to identify, analyze, and report on network events. Proactively safeguard information systems and networks from threats. The role requires Australian citizenship or permanent residency and the ability to pass background checks. Datacom offers a dynamic work environment with perks such as social events, chill-out spaces, remote work, flexible hours, and professional development courses.

Requirements

• Working knowledge of Security Information & Event Management (SIEM) and Endpoint Detection and Response (EDR) concepts and functionality
• Knowledge of networks, firewalls, proxies, intrusion detection/prevention systems, concepts and technologies
• Security industry frameworks such as NIST 800-61 Rev. 2, ACSC ISM and Essential Eight
• Cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity frameworks
• Knowledge of Microsoft Windows domain technologies (e.g. Active Directory)
• ITIL - Information Technology
• CompTIA Security+ study or certification
• Have been working in IT for the last 2 years
• Have at least 1 year working with Security tools and Frameworks
• Effective communication skills to convey complex security concepts to technical and non-technical stakeholders
• Be an Australian Citizen or Permanent Resident with the ability to pass additional background and security requirements

Responsibilities

• Action regular tasks and processes
• Review and respond to alarms/tickets
• Incident response investigation
• Handle Events of Interest escalations
• Initial triage
• Security event analysis
• Log and escalate tickets
• Identify policy changes required based on analysis
• Security use case and correlation rule development
• Threat hunting
• Detect security breaches and adhere to incident response protocols
• Evaluate existing security risks and implement enhancements
• Conduct research on security improvements and provide recommendations to customers
• Stay up-to-date on latest Security trends and standards
• Participate in incident response planning and execution

Benefits

• Remote working
• Flexi-hours
• Professional development courses