Incident Response Expert

1 week ago

Canberra, ACT, Australia beBeeCybersecurity Full time $100,000 - $140,000
Job Title

This position involves serving as an Incident Response Specialist.

The primary responsibility of this role is to provide incident response and management services in accordance with established policies and procedures.

  • Leading the investigation of cyber-attacks against customers, focusing on Australia-based clients.
  • Monitoring SIEM platforms for security concerns, providing tuning based on system performance and developing new detection content based on changes in the threat environment.
  • Developing tools, tradecraft, playbooks and other material to support the response to and investigation of cybersecurity incidents.
  • Supporting the triage and containment of cybersecurity incidents and supporting recovery and remediation efforts to restore systems to operational states.
  • Conducting forensic analysis of Windows, Linux and macOS devices, gathering and performing analysis of relevant log files such as operating system, firewall, proxy and DNS logs.
  • Providing assessment and analysis of attacker tools, techniques and procedures from various actors including hacktivists, criminals and nation-states.
  • Supervising and mentoring junior security consultants and supporting the development of their incident response skillsets.
  • Helping to grow and evolve our delivery capability by documenting delivery processes, feeding back lessons learned and working with the wider team to establish best practices and repeatable processes.
  • Collaborating with peers across the Digital Intelligence business to continuously add value, build professional networks and share experiences.
Requirements
  • Demonstrable experience in leading and supporting the response and investigation of cybersecurity incidents across a range of systems and technology types.
  • Experience working with Splunk, including platform configuration, event review and detection content development.
  • Experience using forensic tools such as EnCase, Axiom and Cellebrite UFED and their use in gathering and preserving digital forensic artefacts to facilitate or support investigative activities.
  • Awareness of EDR tools such as Crowdstrike, Carbon Black, Microsoft Defender for Endpoint and Cylance.
  • Ability to write Incident Response reports concisely and proficiently, as well as use (or generate) graphics to illustrate scenarios or datasets.
  • Detailed knowledge of the cybersecurity product landscape, including familiarity with Azure and Amazon Web Services.
  • Experience in developing, maintaining and exercising incident response plans, playbooks and other tradecraft.
  • Familiarity with the Australian Government Information Security Manual.
  • Experience working with large groups of varied stakeholders, coordinating resources and achieving shared goals.
  • Experience with working with end users and clients offering advice, guidance and thought leadership. Ability to communicate complicated technical challenges in business language for a range of stakeholders from IT teams to C-level executives.
  • Excellent verbal and written communication and client-facing skills, including Microsoft Office suite use (Word/Excel/PowerPoint/Visio), ensuring a clear and professional quality of written materials.
  • Time management and organizational skills to independently manage multiple delivery projects concurrently.
  • Detail-oriented approach.
  • Self-starter with ability to identify problems early and come up with solutions using own initiative.
  • Familiarity with the threat landscape and knowledge of threat actors and campaigns.

  • Cyber Security Incident Response Expert

    1 week ago

    Canberra, ACT, Australia beBeeIncident Full time $150,000 - $180,000

    BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.Cyber Security Incident Response...

  • Incident Response Specialist

    1 week ago

    Canberra, ACT, Australia beBeeTrauma Full time $111,705 - $138,621

    Incident Response SpecialistWe are seeking an Incident Response Specialist to join our team and provide Critical Incident Response Services to support clients during incidents or organisational change.About the RoleThis part-time fixed term contract involves assessing workplace issues and identifying suitable intervention programs, providing solution-focused...

  • Incident Response Specialist

    1 week ago

    Canberra, ACT, Australia Bae Systems Full time

    BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.**Incident Response...

  • Incident Response Strategist

    2 weeks ago

    Canberra, ACT, Australia beBeeCyber Full time $130,000 - $170,000

    Incident Response SpecialistThe primary goal of this role is to provide expert support in responding to and investigating cyber security incidents. This position will be responsible for leading the investigation of cyber-attacks against our customers, focusing on Australia-based customers.This individual will play a key part in monitoring SIEM platforms for...

  • Incident Response Specialist

    1 week ago

    Canberra, ACT, Australia Bae Full time

    BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts.We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.Incident Response Specialist Role...

  • Incident Response Specialist

    2 weeks ago

    Canberra, ACT, Australia BAE Systems Full time $104,000 - $130,878 per year

    BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.Incident Response SpecialistRole...

  • Incident Response Specialist

    2 weeks ago

    Canberra, ACT, Australia BAE Systems Full time

    BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.Incident Response SpecialistRole...

  • Incident Response Specialist

    1 week ago

    Canberra, ACT, Australia BAE Systems - Applied Intelligence Full time

    BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Incident Response Specialist ...

  • Incident Response Specialist

    1 week ago

    Canberra, ACT, Australia BAE Systems Full time

    BAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.Incident Response SpecialistRole...

  • Incident Response Specialist

    4 days ago

    Canberra, ACT, Australia BAE Systems Digital Intelligence Full time

    OverviewBAE Systems Digital Intelligence is home to 4,500 digital, cyber and intelligence experts. We work collaboratively across 10 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.Role SummaryWe are looking...