Security Operations Center Analyst

This is not just a job advertisement; this is a mission.

We are here to connect with people who pursue excellence, take initiative, and are committed to ongoing growth.

We are ctrl:cyber; a high-growth, proudly Australian cybersecurity firm, and we're looking for purpose-driven individuals to join our team.

We want to hear from people who believe their potential has no ceiling. At Ctrl, your ambition and capabilities are met with real opportunities for impact and development. We've built a culture that values curiosity, supports innovation, and provides a platform for continuous learning.

You'll be surrounded by motivated, skilled colleagues who lead with integrity and collaborate with purpose. Expect to do meaningful work. Expect to grow. Expect to be supported as you take on challenges that matter.

The Opportunity

We're looking for a Security Operations Centre (SOC) Analyst to join our team. The role can be based in either Melbourne or Sydney and will include 8-hour night shifts in a 4-on, 4-off rotation. You will utilize cyber tools for the detection and protection of network and endpoint environments, applications, and stakeholder's data. The role reports to the Head of Risk Operations and will be part of a collaborative multi-functional Agile team, working across a multi-domain company proactively responding to cyber events and incidents with external clients.

What You'll Be Responsible For

Security Monitoring:

• Work with both in-house Security Operations Centre (SOC) and key client stakeholders to ensure timely detection and alerting of security events
• Develop and act on threat intelligence pertaining to industry threats, trends and disclosures.
• Drive automation of security operations workflows by collaborating with the Security Engineering team to integrate security solutions into real-time monitoring as well as detection and response capabilities

Incident Response:

• Contribute to ongoing improvements in the Security Incident Management and Incident Response process
• Record, document, and report security incidents and breaches
• Develop, maintain, and test Incident Response procedures/playbooks

What We're Looking For

• Ideally, you'll have proven experience in a similar role and are comfortable working night shifts
• Experience or education in a SOC Analyst environment, detecting, responding and recovery from security alerts of external client-facing cloud-based services, or similar
• Ability to lead security incident investigations within a fast-paced agile environment
• Experience securing cloud and network-based services (preferably hosted in AWS or Microsoft Azure cloud environments) combined with insight into vulnerability management and scanning tools
• Fundamental to the role is the ability to analyse and operate SIEM and threat-hunting tooling (MS Sentinel, Defender, Elastic, Rapid7, etc), implementing application/infrastructure security best practice
• Experience in endpoint security solutions, file integrity monitoring and data loss prevention will be advantageous
• A natural problem solver with excellent communication skills – both written and verbal

What You'll Get

• Flexible work environment
• A competitive base salary
• Flexibility, autonomy, and support with a clear investment in your development
• A collaborative, technically excellent team to be part of

Ctrl is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed.

Ctrl is committed to providing equal employment opportunity for all employees and applicants for employment. We do not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions--including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs--on valid job requirements.

If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at for further assistance.