Threat Detection Engineer
4 days ago
Threat Detection Engineer - CANBERRA- Demonstratable experience in content development with at least 2 SIEM technologies (Splunk, Elastic, Q-Radar, MS Sentinel)
- Experience in a detection engineering practice
- An understanding of the sigma detection rule syntax
- Experience with SOAR technologies and playbook development
- Experience with EDR technologies (Carbon Black, CrowdStrike, Defender ATP)
- A thorough understanding of the cyber threat intelligence lifecycle
- Knowledge of scripting languages (Bash, Python)
- Strong organisational and teamwork
skills.- Professional Certifications, such as GIAC
- Minimum 5 years of cyber security operations experience CANBERRA
Australian Citizen with Baseline Security Clearance
12 months
SOAR #EDR #SIEM #splunk #eslastic #Qrasar #MSSentinel #carbonblack #crowdstrike #defenderATP #Bash #python
JOB TYPE
Work Day:Full Time
Employment type:Permanent Job
Salary:Negotiable
JOB REQUIREMENTS
Minimal experience:Unspecified
-
Lead Cyber Security Operations Analyst
2 weeks ago
Next Job, Australia AC3 Full timeAC3 are currently looking for a Lead Cyber Security Analyst/Lead SOC Analyst. You will be the Lead Cyber Analyst/SOC Analyst in our Blue team, reporting directly to the SOC Manager. Leading from the front managing the end-to-end incidents response lifecycle, pulling apart malware, responsible for defence tactics, techniques and procedures. Coaching and...
