Security Operations Center Analyst

1 day ago


Sydney, New South Wales, Australia CareCone Group Full time $120,000 - $180,000 per year

Role:
Security Operations Centre Analyst

Location:
Sydney, NSW

Employment Type:
Permanent

Must have:

Full working rights. No sponsorship available.

Reports To:
SOC Manager / Cybersecurity Lead

Job Summary:

We are seeking a highly skilled and experienced Senior SOC Analyst with deep expertise in
Palo Alto Networks Cortex suite (XDR/XSOAR)
to join our Security Operations Centre. The ideal candidate will be responsible for detecting, analysing, and responding to cybersecurity incidents using advanced tools, threat intelligence, and automation platforms. You will lead complex investigations, support playbook development, and help optimise threat detection and response workflows.

Key Responsibilities:

  • Lead and conduct advanced security event analysis and threat hunting using Cortex XDR and other SIEM/SOAR platforms.
  • Design, develop, and optimise Cortex XSOAR playbooks for automated incident response and process enhancement.
  • Collaborate with Tier 1/2 analysts to triage, investigate, and escalate security incidents based on criticality.
  • Perform deep dive forensic investigations to determine root cause, impact, and remediation steps.
  • Fine-tune detection rules, behavioural analytics, and correlation logic in Cortex XDR and SIEM platforms.
  • Integrate Cortex XSOAR with other security tools (EDR, SIEM, threat intel, ticketing systems).
  • Maintain incident documentation, reporting, and compliance logs as per internal and regulatory standards.
  • Participate in purple team exercises and threat simulations.
  • Provide mentorship to junior SOC analysts and contribute to the continuous improvement of SOC processes.
  • Stay current with emerging threats, vulnerabilities, and trends in the cybersecurity landscape.

Required Skills and Experience:

  • 7-8 years of experience in a SOC or cybersecurity operations role
  • Strong hands-on expertise with Palo Alto Cortex XSOAR and Cortex XDR.
  • Deep understanding of SOAR workflows, playbook design, and automation logic.
  • Solid background in incident response, threat hunting, malware analysis, and security forensics.
  • Experience with security tools such as SIEM (Splunk, QRadar, etc.), EDR, IDS/IPS, firewalls, and threat intelligence platforms.
  • Familiarity with scripting (Python, JavaScript) for automation and integration tasks.
  • Proficient in interpreting logs from firewalls, proxies, endpoints, servers, and cloud environments.
  • Knowledge of MITRE ATT&CK framework, NIST, and other security standards/frameworks.
  • Excellent analytical thinking, problem solving, and communication skills.

Preferred Qualifications:

  • Palo Alto Networks Cortex XSOAR or XDR Certification (e.g., PCSAE).
  • Security certifications such as GCIA, GCIH, CEH, CISSP, or similar
  • Exposure to cloud security monitoring (AWS, Azure, GCP).

Interested consultants can share their updated resume at

or call



  • Sydney, New South Wales, Australia ITbility Full time $60,000 - $120,000 per year

    SOC Monitoring & Incident Response AnalystSydneyContract - 3 + MonthsOur client inSydneyis looking for SOC Monitoring & Incident Response Analyst this is aContract for 3 + Monthsrole. Please email me at for more information.Experience: Minimum of 3 years of hands-on experience working in a Security Operations Center (SOC) environment, with a strong focus on...


  • Sydney, New South Wales, Australia Stake Full time $90,000 - $120,000 per year

    Stake is looking for an IT Security Operations Analyst to join us at our Sydney HQ, with a hybrid working model (3 days in the office, 2 WFH).We're an Australian investing platform that helps ambitious people confidently grow their wealth. By offering seamless, immersive access to the share markets, we've empowered a new wave of investors. Stake has grown...


  • Sydney, New South Wales, Australia Amazon Full time $120,000 - $150,000 per year

    AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on....


  • Sydney, New South Wales, Australia Amazon Full time $80,000 - $120,000 per year

    DESCRIPTIONAWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation...

  • Security Analyst

    1 day ago


    Sydney, New South Wales, Australia Oracle Full time $90,000 - $120,000 per year

    Do you have a passion for application security and working on one of the most important security challenges of current software development?  We are looking for a Security Analyst with experience of using static analyzers. As a Security Analyst, you will work collaboratively with other engineers in the Security Tools engineering team to extend and support...


  • Sydney, New South Wales, Australia Amazon Full time $60,000 - $120,000 per year

    AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on....


  • Sydney, New South Wales, Australia myGwork - LGBTQ+ Business Community Full time $90,000 - $120,000 per year

    This job is with Amazon, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.DescriptionAWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud...

  • SOC Analyst

    2 weeks ago


    Sydney, New South Wales, Australia Delivery Centric Full time $80,000 - $120,000 per year

    Job Title: SOC Monitoring and Incident Response AnalystLocation: SydneyExperience & Qualifications:Need to append EDR experience / exposure and strong understanding of the threat landscape to the below JD.Hands-on experience working in a Security Operations Center (SOC) environment, with a strong focus on incident monitoring, triage, and response.Preferred...


  • Sydney, New South Wales, Australia Amazon Web Services (AWS) Full time $80,000 - $120,000 per year

    DescriptionAWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation...


  • Sydney, New South Wales, Australia Amazon Full time $80,000 - $120,000 per year

    AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage, networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on....