Security Operations Analyst, Senior

Join to apply for the Security Operations Analyst, Senior role at Newfold Digital.

Overview

Newfold Digital is a leading web technology company serving millions of customers globally. Our portfolio includes brands such as Bluehost, Crazy Domains, HostGator, Network Solutions, Register.com, Web.com and more. We provide a wide range of web services and support to help customers build a digital presence that delivers results.

Job Summary

The Security Operations Analyst is responsible for day-to-day security threat monitoring and analysis. The role manages security incidents and reviews security alerts for compliance, and works with senior analysts on known or suspected security threats. The position involves threat intelligence, forensics and incident response that adhere to best practices and recognized control frameworks. The Security Operations Analyst may work shifts and be assigned to on-call duties to support the global enterprise.

Senior-level responsibilities require high skill, independence, and the ability to guide others. Typical expectations include escalating issues when appropriate and mentorship of peers. The role requires strong communication with technical and non-technical personnel and typically 5 - 7 years of experience in security-related fields.

What you'll doGeneral Duties And Responsibilities

• Identify, assess, and contain threats to enterprise systems, infrastructure, and business applications.
• Manage and support log collection, security scanning, intrusion detection, content filtering, and other security-related systems.
• Review and triage security alerts, provide analysis, determine remediation, and escalate as appropriate.
• Provide support for log management and SIEM solutions.
• Investigate improper access, revoke access, report violations, and monitor information requests to ensure authorized access.
• Detect and respond to malicious behavior on public cloud, workstations, server environments, and distributed networks.
• Optimize threat detection and alerting for DLP, email protection, EDR and threat hunting, cloud/workload security products, IDS/IPS, firewalls, and other security technologies.
• Proactively hunt for threats within complex and distributed networks.
• Write, update, and maintain detection signatures, tune systems/tools, and develop automation scripts and correlation rules.
• Maintain knowledge of adversary TTPs and threat intelligence to implement detection and mitigation strategies.
• Conduct forensic analysis and engage with third-party resources as required.

Educational And Certification Requirements

A degree in Cybersecurity, Information Technology, Computer Science, or related field is desirable. Industry-recognized certifications are a plus (e.g., CISSP, CISM, CEH, CompTIA Security+, SANS). Certifications from public cloud providers (AWS, Azure, Google, Oracle) are a plus.

General Knowledge, Skills, And Abilities

As well as formal qualifications, a Security Operations Analyst should possess:

• Experience in forensics, malware analysis, threat intelligence.
• Ability to understand, modify and create threat detection rules within a SIEM.
• Understanding of log collection and aggregation techniques (ELK stack, syslog-NG, Windows Event Forwarding, etc.).
• Knowledge of Windows and Linux operating systems.
• Experience with scripting languages (Python, Perl, PowerShell, or equivalent).
• Experience with MITRE ATT&CK framework tactics and techniques.
• Experience with network forensics and related toolsets and analysis techniques.
• Experience with host-based detection and prevention solutions.
• Ability to reverse engineer malware is a plus.
• Ability to correlate data from multiple sources to identify cyber threats and vulnerabilities.
• Ability to deploy countermeasures or mitigations under pressure.
• Experience with incident response and incident management procedures.
• Build collaborative relationships to facilitate work goals.
• Experience with PCI-DSS, ISO-27001, and/or SOC II is a plus.
• Experience aligning security controls with NIST 800-53 and CIS is a plus.
• Project management skills are a plus.
• Experience with technologies such as SentinelOne, Tanium, Google Chronicle SIEM, Cloudflare security, ModSec, Tenable.io, Lacework, Recorded Future, ServiceNow, Jira, Microsoft Defender for Endpoints, Microsoft Security and Compliance, VirusTotal, SiteLock, Monarx, NGNIX.
• Experience with native cloud security services (AWS, Google, Azure, Oracle) is a plus.

What We Think You'll Love

• Grow together through virtual learning and development programs.
• Participate in Expert Speak sessions and e-learning to grow professionally and personally.
• Work with creative and innovative teams.
• Free domain benefits and WordPress blog sponsorship.
• Employee assistance program with free, confidential counseling for employees and immediate family members.

Job Details

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Information Technology
• Industries: Software Development

Referrals increase your chances of interviewing at Newfold Digital. Get notified about new Senior Security Analyst jobs in Sydney, New South Wales, Australia.

#J-18808-Ljbffr

---