Cybersecurity Analyst

Our Why
Datacom works with organisations and communities across Australia and New Zealand to make a difference in people's lives and help organisations use the power of tech to innovate and grow.
Our team
Datacom operates three Cybersecurity Defence Operations Centres (SOC's) in Wellington, Auckland, and Brisbane from where we provide our managed SIEM and our full stack of Cybersecurity services.
We partner with industry leaders to provide our services and to provide you with a broad technical skillset, certifications and experience. We are looking for a mix of Analysts ranging from junior to senior level of experience who are keen to explore the next step in their career.
About the Role (Your Why)
The core objectives and responsibilities of the Cybersecurity Analyst include analysing security events of interest. The analyst is responsible for overseeing incidents from initiation through to resolution and identifying opportunities for alert refinement. By utilising defensive measures and insights gathered from diverse sources, the Cybersecurity Analyst identifies, analyses, and reports on events transpiring or potentially unfolding within the network. This proactive approach aims to safeguard information, information systems, and networks from potential threats.
Due to the Nature of the Clients you will be working with you will need to be an Australian Citizen or Permanent Resident with the ability to pass additional background and security requirements.
**What you'll do**:

- Action regular tasks and processes
- Review and respond to alarms/tickets
- Incident response investigation
- Handle Events of Interest escalations
- Initial triage
- Security event analysis
- Log and escalate tickets
- Identify policy changes required based on analysis
- Security use case and correlation rule development
- Threat hunting
- Detect security breaches and adhere to incident response protocols
- Evaluate existing security risks and implement enhancements
- Conduct research on security improvements and provide recommendations to customers
- Stay up-to-date on latest Security trends and standards
- Participate in incident response planning and execution

**What you'll bring**:

- Working knowledge of Security Information & Event Management (SIEM) and Endpoint Detection and Response (EDR) concepts and functionality
- Knowledge of networks, firewalls, proxies, intrusion detection/prevention systems, concepts and technologies
- Security industry frameworks such as NIST 800-61 Rev. 2, ACSC ISM and Essential Eight
- Cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity frameworks
- Knowledge of Microsoft Windows domain technologies (e.g. Active Directory)
- ITIL - Information Technology
- CompTIA Security+ study or certification
- Have been working in IT for the last 2 years
- Have at least 1 year working with Security tools and Frameworks
- Effective communication skills to convey complex security concepts to technical and non-technical stakeholders

Why join us here at Datacom?
Datacom is one of Australia and New Zealand's largest suppliers of Information Technology professional services. We have managed to maintain a dynamic, agile, small business feel that is often diluted in larger organisations of our size. It's our people that give Datacom its unique culture and energy that you can feel from the moment you meet with us.
We care about our people and provide a range of perks such as social events, chill-out spaces, remote working, flexi-hours and professional development courses to name a few. You'll have the opportunity to learn, develop your career, connect and bring your true self to work. You will be recognised and valued for your contributions and be able to do your work in a collegial, flat-structured environment.
We operate at the forefront of technology to help Australia and New Zealand's largest enterprise organisations explore possibilities and solve their greatest challenges, so you will never run out of interesting new challenges and opportunities.
We want Datacom to be an inclusive and welcoming workplace for everyone and take pride in the steps we have taken and continue to take to make our environment fun and friendly, and our people feel supported.