Threat Hunting and Incident Responder
4 months ago
There’s never been a better time to be in energy. And there’s never been a more exciting time to be at Endeavour Energy.
More than 2.7 million people across New South Wales rely on us every day for the supply of safe and reliable power to their homes and businesses. We employ more than 1,700 people across our catchment, making us one of the largest employers in Sydney’s Greater West.
To work with us in this role, you don’t need to have any energy experience. We need talented people who are ready for challenge and growth and value a sense of care and belonging. Why? Because our vision is to lead the way with smarter energy solutions. Play your part in helping us to put the customer first and transition to a cleaner, more sustainable energy future for us all.
As a Threat Hunting and Incident Responder at Endeavour Energy, you will report to the Security Intelligence and Threat Hunting Manager. Your primary responsibility is to enhance our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, refining detection models across XDR, EDR, and SIEM platforms, and supporting the Cyber Incident Response Team (CIRT).
During cyber-attack investigations, you will gather critical data to ensure successful execution of investigation, containment, and recovery protocols. Your pivotal role extends to our forthcoming Cyber Defence and Response Centre (CDRC), which will serve as our frontline defence against current and emerging security threats. The CDRC and CIRT will offer comprehensive guidance, response strategies, and investigative support, aiding Endeavour Energy in achieving cyber resilience. Given Endeavour Energy's 24/7 operations, this position may require occasional on-call availability as an escalation point for major incidents.
Key Accountabilities
- Utilise threat intelligence, current trends, and vulnerability information to perform information security threat hunts on the Endeavour Energy technology landscape.
- Leverage the technical stack to detect, respond and remediate existing and emerging security threats
- Interface with other organisations and vendors to validate findings, identify optimal technology configurations and make recommendations for the remediation of identified anomalies and vulnerabilities.
- Utilises security engineering tools, telemetry and/or direct technology specialist inputs to identify and flag the defects/signals in the product or product misuse, or an issue with the enterprise technology solution.
- Tracks cyber security events and incidents and with minimal oversight, engages with technology experts (EUC, Infrastructure, Network, OT and IT applications) and partners to understand the issue, inform them about the active cases, and communicate progress and next steps to customers. or investigates and troubleshoots the issues using diagnostics.
- Continuous observation and investigation across the Technology stack to limit risk and security breaches.
- Provides support with minimal guidance, contributes to CIRT during incident response by collecting data critical to the success of an investigation, containment, and response with actionable plans.
- Ensures appropriate incident response forensic artifacts are captured, handling & analysed.
- Performing incident response preparation activities, including drills and exercises, skills and capabilities testing, and process documentation improvement.
- Analyse multiple sources of detections using the MITRE ATT&CK framework to understand and enhance Endeavour Energy's information security posture.
- Create new detection models and auto/manual response models to enhance our detection and response system.
- Provide analysis and trending of security log data from a large number of security devices
- Undertaking digital forensic investigations and coordinating joint incident response activities with the Australian Cyber Security Center.
Qualifications, Certifications and Licences
Minimum Qualifications
- Bachelor's Degree: Cyber Security or Computer Science or equivalent experience with
- other tertiary qualifications
Other Desirable Qualifications
- Certified Information Systems Security Professional (CISSP)
- SANS Incident Handler Training
Skills and Experience
- Threat Hunting Tools (MS Defender, Next Generation XDR, EDR, SIEM and Access Management Tools)
- AES CSF frameworks
- ISO 27001 framework
- MITRE ATT&CK framework
For further information, please contact recruitment@endeavourenergy.com.au
Applications close - 10 July 2024
When we power together, we can achieve so much more.
At Endeavour Energy, having a diverse and inclusive workplace makes us better, safer, and stronger. We strive to create an environment where everyone feels safe, motivated, valued, included and respected.
Endeavour Energy is a critical infrastructure organisation and performs various background checks to evaluate the suitability of an applicant before making an employment offer to ensure the security and protection of its assets.
-
Threat Hunter and Incident Responder
4 weeks ago
Parramatta, New South Wales, Australia Endeavour Energy Full timeAbout the RoleWe are seeking a highly skilled Threat Hunter and Incident Responder to join our Cybersecurity team at Endeavour Energy. As a key member of our team, you will play a critical role in enhancing our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, and refining detection models across XDR, EDR,...
-
Threat Hunter and Incident Responder
4 weeks ago
Parramatta, New South Wales, Australia Endeavour Energy Full timeAbout the RoleWe are seeking a highly skilled Threat Hunter and Incident Responder to join our Cybersecurity team at Endeavour Energy. As a key member of our team, you will play a critical role in enhancing our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, and refining detection models across XDR, EDR,...
-
Cybersecurity Threat Hunter and Incident Responder
22 hours ago
Parramatta Park, Queensland, Australia Endeavour Energy Full timeCybersecurity Threat Hunting RoleWe are seeking an experienced Cybersecurity Threat Hunter and Incident Responder to join our team at Endeavour Energy. As a Threat Hunter, you will be responsible for identifying and mitigating cyber threats to our technology landscape. Your primary goal is to enhance our cybersecurity posture by actively identifying and...
-
Parramatta Park, Queensland, Australia Endeavour Energy Full timeAt Endeavour Energy, we are looking for a talented Cybersecurity Threat Hunter and Incident Responder to enhance our cybersecurity posture.As a key member of our team, you will report to the Security Intelligence and Threat Hunting Manager and be responsible for actively identifying cyber threats, proactively discovering vulnerabilities, and refining...
-
Parramatta Park, Queensland, Australia Endeavour Energy Full timeAt Endeavour Energy, we're committed to leading the way with smarter energy solutions. As a Threat Hunting and Incident Responder, you'll play a pivotal role in enhancing our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, and refining detection models across XDR, EDR, and SIEM platforms.As a member of...
-
Parramatta Park, Queensland, Australia Endeavour Energy Full timeAt Endeavour Energy, we're committed to leading the way with smarter energy solutions. As a Threat Hunting and Incident Responder, you'll play a pivotal role in enhancing our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, and refining detection models across XDR, EDR, and SIEM platforms.As a key member...
-
Parramatta Park, Queensland, Australia Endeavour Energy Full timeAbout the RoleWe are seeking a highly skilled Cybersecurity Threat Hunter and Incident Responder to join our team at Endeavour Energy. As a Threat Hunter, you will be responsible for identifying and mitigating cyber threats to our technology landscape. Your primary focus will be on enhancing our cybersecurity posture by actively identifying cyber threats,...
-
Parramatta Park, Queensland, Australia Endeavour Energy Full timeAbout the RoleAs a Threat Hunting and Incident Responder at Endeavour Energy, you will play a pivotal role in enhancing our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, refining detection models across XDR, EDR, and SIEM platforms, and supporting the Cyber Incident Response Team (CIRT).During...
-
Cybersecurity Threat Hunter
4 weeks ago
Parramatta, New South Wales, Australia Endeavour Energy Full timeJoin Our Team as a Cybersecurity Threat HunterWe are seeking a highly skilled Cybersecurity Threat Hunter to join our team at Endeavour Energy. As a Threat Hunter, you will play a critical role in enhancing our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, and refining detection models across XDR, EDR,...
-
Cybersecurity Specialist
3 weeks ago
Parramatta, New South Wales, Australia Endeavour Energy Full timeAbout the RoleEndeavour Energy is seeking a highly skilled Cybersecurity Specialist to join our team. As a Threat Hunting and Incident Response Expert, you will play a critical role in enhancing our cybersecurity posture by actively identifying cyber threats, proactively discovering vulnerabilities, and refining detection models across XDR, EDR, and SIEM...
-
Technical Threat Specialist
5 months ago
Parramatta, Australia QBE Full timePrimary Details Time Type: Full time Worker Type: Employee- Location: Sydney- Type: Permanent, full time The opportunity An exciting opportunity to support the execution responsible for all purple teaming engagements, attack simulations and development of the deception operations. You will work closely with other teams within Group Cyber Security to push...
-
Aps5 Reportable Incidents Officer
5 months ago
Parramatta, Australia Talent International Full timeaustralia parramatta contract up to au$55.24 per hour**Talent International** is currently recruiting for an **APS5 Reportable Incidents Officer - Intake Triage and Early Resolution Officers** to work for a** Federal Government client **based in **Parramatta or Penrith. **The position is **6-month contract role with the possibility of extension** and are...
-
IT Incident and Improvement Lead
5 months ago
Parramatta, Australia iCare Full time**Parramatta** - Act as an Major incident escalation focal point - 12 months Fixed Term Opportunity| Paramatta office| Hybrid working environment. - Salary from $ 139,787+ super, plus benefits **About the Role** The purpose of the role is to drive the restoration of icare systems and technologies to normal service operation as quickly as possible and to...
-
Senior Cloud Architect
4 weeks ago
Parramatta, New South Wales, Australia Dynamo Recruitment Full timeSenior Cloud EngineerWe are seeking a highly skilled Senior Cloud Engineer to join our team at Dynamo Recruitment. As a key member of our IT infrastructure team, you will be responsible for designing, implementing, and managing cloud-based solutions that support our organization's IT infrastructure and business operations.Key Responsibilities:Cloud Solution...
-
Senior Cloud Architect
4 weeks ago
Parramatta, New South Wales, Australia Dynamo Recruitment Full timeSenior Cloud EngineerWe are seeking a highly skilled Senior Cloud Engineer to join our team at Dynamo Recruitment. As a Senior Cloud Engineer, you will play a key role in designing, implementing, and managing cloud-based solutions that support our organization's IT infrastructure and business operations.Key Responsibilities:Design and Implement Cloud...
-
Senior Cloud Infrastructure Specialist
3 weeks ago
Parramatta, New South Wales, Australia Dynamo Recruitment Full timeJob Title: Senior Cloud Infrastructure SpecialistJob Summary:We are seeking a highly skilled Senior Cloud Infrastructure Specialist to join our team at Dynamo Recruitment. As a Senior Cloud Infrastructure Specialist, you will be responsible for designing, implementing, and managing cloud-based solutions that support our organization's IT infrastructure and...
-
Senior Cloud Architect
3 weeks ago
Parramatta, New South Wales, Australia Dynamo Recruitment Full timeSenior Cloud EngineerAre you a seasoned IT professional looking for a new challenge? We have an exciting opportunity for a Senior Cloud Engineer to join our team at Dynamo Recruitment.This role involves designing, implementing, and managing cloud-based solutions that support our organization's IT infrastructure and business operations. As a Senior Cloud...
-
Senior Cloud Infrastructure Specialist
3 weeks ago
Parramatta, New South Wales, Australia Dynamo Recruitment Full timeSenior Cloud EngineerAre you a seasoned IT professional looking for a new challenge? We have an exciting opportunity for a Senior Cloud Engineer to join our team at Dynamo Recruitment.Job SummaryWe are seeking a highly skilled and experienced Senior Cloud Engineer to design, implement, and manage cloud-based solutions for our client, a leading healthcare...
-
Senior Cloud Architect
2 weeks ago
Parramatta Park, Queensland, Australia Dynamo Recruitment Full timeJob Title: Senior Cloud ArchitectJob Summary:We are seeking a highly skilled Senior Cloud Architect to join our team at Dynamo Recruitment. As a Senior Cloud Architect, you will be responsible for designing, implementing, and managing cloud-based solutions that support our organization's IT infrastructure and business operations.Key Responsibilities:Design...
-
Senior Cloud Infrastructure Specialist
3 weeks ago
Parramatta Park, Queensland, Australia Dynamo Recruitment Full timeSenior Cloud Infrastructure SpecialistWe are seeking a highly skilled Senior Cloud Infrastructure Specialist to join our team at Dynamo Recruitment. As a Senior Cloud Infrastructure Specialist, you will be responsible for designing, implementing, and managing cloud-based solutions that support our organization's IT infrastructure and business operations.Key...
