Security Operations Center Analyst Iii

7 months ago


North Sydney, Australia Gallagher Full time

About Us:
Welcome to Gallagher - a global leader in insurance, risk management, and consulting services. With a growing team of more than 45,000 professionals worldwide, we empower businesses, communities, and individuals to thrive. At Gallagher, you can build a career whether it’s with our brokerage division, our benefits and HR consulting division, or our corporate team. Experience The Gallagher Way, a culture fueled by shared values and a collective passion for excellence. Join one of our dynamic teams, where you'll play a pivotal role in shaping Gallagher's future and unlocking unparalleled opportunities for both clients and yourself.

Overview:
**Gallagher** is one of Australia’s and the world’s largest Insurance broking and risk management companies with over 35,000 employees globally. We pride ourselves on being a socially responsible, ethical and collaborative organisation expressed through our Shared Values, The Gallagher Way. We are also proud to be on the **Forbes World’s Best Employers list** as the only Insurance brokerage.

As a SOC Analyst III - (Incident Commander), you will play a crucial role in protecting our organization's digital assets and infrastructure from cyber threats. You will be responsible for promptly detecting, analysing, and responding to security incidents to minimize their impact and prevent future occurrences. This position requires a deep understanding of security operations, incident response methodologies, and advanced threat detection techniques. You will collaborate with cross-functional teams to investigate incidents, perform root cause analysis, and develop proactive measures to enhance our overall security posture.

This role reports into the APAC IT Security Manager, with a dotted line into the global Cyber Incident commander.

**Key Responsibilities**

**Incident Response Management**:

- Lead and coordinate the organization's incident response activities, ensuring swift and effective incident resolution in accordance with global SOC response procedures
- Monitor security alerts and incidents to identify potential threats, vulnerabilities, and indicators of compromise.
- Perform in-depth analysis of security incidents, including the identification and containment of threats, and recommend appropriate response actions.
- Conduct detailed forensic analysis and investigations to determine the root cause and impact of security incidents.
- Develop and maintain incident response playbooks, standard operating procedures, and communication protocols.

**Threat Detection and Analysis**:

- Utilize security monitoring tools and technologies to identify potential security incidents and breaches.
- Perform proactive threat hunting activities to detect advanced threats and vulnerabilities in the environment.
- Conduct analysis of security events and logs to identify patterns, trends, and emerging threats.
- Collaborate with threat intelligence teams to incorporate external intelligence into detection and response strategies.

**Incident Mitigation and Recovery**:

- Execute timely and effective containment, eradication, and recovery activities in response to security incidents.
- Coordinate with IT teams to isolate affected systems, patch vulnerabilities, and implement corrective actions.
- Assist in system and network hardening activities to improve the overall security posture of the organization.
- Support business continuity and disaster recovery plans to ensure resilience in the event of a security incident.

**Incident Reporting and Documentation**:

- Prepare accurate and detailed incident reports, including the description of events, actions taken, and lessons learned.
- Maintain comprehensive documentation of incident response activities, including evidence collection and preservation.
- Collaborate with legal and compliance teams to ensure adherence to regulatory requirements and incident reporting obligations.

**Required skills and experience**
- Bachelor's degree in Computer Science, Information Security, or a related field.
- Minimum of 6 years of experience in a dedicated incident response role within a Security Operations Centre (SOC) environment.
- Strong knowledge of incident response methodologies, tools, and industry frameworks (e.g., NIST CSF, MITRE ATT&CK).
- Knowledge of malware analysis techniques, digital forensics, and memory analysis.
- Familiarity with cloud security concepts and technologies (e.g., AWS, Azure and GCP).
- Excellent analytical and problem-solving skills, with the ability to think critically under pressure.
- Strong communication, stakeholder engagement and interpersonal skills to effectively collaborate with cross-functional teams,.
- Relevant certifications such as CISSP, GCIH, GCIA, or similar are highly desirable.
- Knowledge of security frameworks and standards such as ISO 27001, Australian Government PSPF / ISM., NIST, GDPR, PCI DSS.
- IT framework knowledge: COBIT, ITIL

**Gallagher** offers great benefits and career



  • Sydney, Australia TikTok Full time

    Responsibilities About TikTok U.S. Data Security TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and...


  • North Sydney, Australia Nine Full time

    **Company Description** Nine is Australia’s largest locally owned media company - the home of Australia’s most trusted and loved brands spanning News, Sport, Lifestyle, and Entertainment. We pride ourselves on creating the best content, accessed by consumers when and how they want - across Publishing, Broadcasting and Digital. Our Purpose: We shape...


  • Sydney, Australia iManage Full time

    This is a remote position. We are a global team that leverages the latest technology to communicate with our colleagues across the globe. There may be times in which this role would be required to travel to a local office for in-person collaborations with your team. Being a Security Operations Analyst at iManage means… The iManage Cloud Security...


  • North Sydney, Australia Nine Entertainment Full time

    Job Description The Cyber Security Analyst will be a part of the security operations team (SOC) aspiring to detect, hunt and respond to cyber security threats to Nine. This role will be a great fit for a blue teamer with understanding and interest in red team tactics and techniques, someone with an analyst mindset who wants to be actively involved in...


  • North Sydney Council, Australia Amazon Corporate Services Pty Ltd Full time

    About Amazon Corporate Services Pty LtdAmazon Corporate Services Pty Ltd is a leading provider of cloud-based security solutions. We are committed to delivering exceptional security services to our customers.Job DescriptionWe are seeking an experienced Cloud Security Operations Center Engineer to join our team. As a key member of our security operations...


  • North Sydney Council, Australia Amazon Corporate Services Pty Ltd Full time

    About Amazon Corporate Services Pty LtdWe are a global technology leader that empowers innovation, seeks solutions to real-world challenges, and develops products that make life more enjoyable. Our company values include customer obsession, ownership, invention, teamwork, frugality, long-term thinking, and high standards.Job DescriptionSalary: $140,000 -...


  • Sydney, Australia Charterhouse Full time

    **_Cyber Security Operations Analyst - NSW Government department_** - **Sydney CBD, hybrid flexibility**: - **6 Months Contract with possibility of extension**: - **Rewarding program**: - **Collaborative Environment working with multiple stakeholders** I am currently supporting a client within NSW Government in their search for a Security Operations...


  • North Sydney Council, Australia Amazon Corporate Services Pty Ltd Full time

    As a Cloud Security Operations Center (SOC) Support Engineer at Amazon Corporate Services Pty Ltd, you will be responsible for driving security strategies and procedures in accordance with service level agreements, policies, standards, and operating procedures. Your primary focus will be on managing communications, security response, and escalations,...


  • Sydney, Australia TikTok Full time

    Responsibilities About TikTok U.S. Data Security TikTok is the leading destination for short-form mobile video. Our mission is to inspire creativity and bring joy. U.S. Data Security (“USDS”) is a subsidiary of TikTok in the U.S. This new, security-first division was created to bring heightened focus and governance to our data protection policies and...


  • North Sydney Council, Australia Amazon Corporate Services Pty Ltd Full time

    As a critical member of our Amazon Web Services (AWS) Security Operations Center (SOC), you will play a vital role in ensuring the security and integrity of our cloud infrastructure.About UsAt Amazon Corporate Services Pty Ltd, we are dedicated to delivering exceptional customer experiences while maintaining the highest standards of security. Our...


  • Sydney, Australia MBC Recruitment Full time

    Sydney CBD location - NSW Government Opportunity - Competitive Pay Rate **Position**: Security Operations Analyst **Start**:ASAP **Salary**: $878.60-$1,010.39 per day plus superannuation **Duration**: 6 months **Location**: Sydney CBD, NSW **Overview** The role of Security Operations Analyst is responsible for the protection of data, information...


  • North Sydney, Australia Amazon Corporate Services Pty Ltd Full time

    AWS Security Operations Center (SOC) is looking for a passionate Security Engineer who can lead the response to security issues across the largest cloud provider in the world.In this role you’ll be conducting security response activities for Amazon internal services. We value broad and deep technical knowledge, specifically in the fields of operating...


  • Sydney, New South Wales, Australia LIMELIGHT PEOPLE Full time

    Job Title: Security Operations Centre AnalystJob Summary: We are seeking a highly skilled Security Operations Centre Analyst to join our expanding team at LIMELIGHT PEOPLE. The successful candidate will play a crucial role in building local SOC response capabilities and working closely with the SOC Manager as a key member of the Global Security Office.Key...


  • North Sydney, Australia Amazon Corporate Services Pty Ltd Full time

    The Amazon Web Services (AWS) Security Operations Center (SOC) Support Engineer works across IT Systems and provides technical support; security response for logical services and physical data center systems and signals to support AWS security, customers, and partners.Candidates for this role will possess both knowledge of security principles and experience...


  • Sydney, New South Wales, Australia Tabcorp Full time

    About the RoleWe're seeking a skilled Security Operations Analyst to provide expert analysis of detected events, incidents, and vulnerabilities at Tabcorp. As a key member of our Security Operations Centre (SOC), you'll be responsible for monitoring and protecting our critical infrastructure and production systems.Key ResponsibilitiesDevelop and maintain...


  • Sydney, Australia Mars Recruitment Full time

    MARS Recruitment is looking for a proactive and detail-oriented Security Operations Analyst to join one of our financial services clients. In this role, you will be at the forefront of their security operations, ensuring that their systems and data remain secure, compliant, and resilient. You will support and enhance their operational security, working...

  • SOC Analyst

    6 months ago


    Sydney, Australia Genesis IT&T Pty Ltd Full time

    **9 Months Contract (with the view to extend)**: - **Global Technology Company**: - **Experience in Healthcare industry is mandatory** A leading global technology company is currently seeking for an experienced SOC Analyst to be responsible for ensuring the detection and resolution of cyber security incidents, exposures, and vulnerabilities across all...


  • Sydney, Australia T. Rowe Price Group, Inc. Full time

    Junior Cyber Security Operations Analyst (1 year contract) There is a place for you at T. Rowe Price to grow, contribute, learn, and make a difference. We are a premier asset manager focused on delivering global investment management excellence and retirement services that investors can rely on today and in the future. The work we do matters. We invite you...


  • North Ryde, Australia Challenger Security Full time

    **Join Our Team at Challenger Security!** Challenger Security leads the industry in delivering top-tier security services and solutions, boasting enduring partnerships with global brands. We excel in timely delivery and professional security solutions. **The Role: Security Supervisor** We are looking for a dedicated Full-Time Level 5 Security Supervisor...


  • North Sydney Council, Australia Amazon Corporate Services Pty Ltd Full time

    About the Role">We are seeking a skilled Physical Security Architect/Engineer to join our team at Amazon Corporate Services Pty Ltd. This is a unique opportunity to work on designing and engineering security systems for data centers globally, ensuring compliance with standards and best practices.">Key Responsibilities">">Design and engineer security systems...