Sentinel SIEM Engineer

3 months ago


Sydney, Australia Deloitte Full time

Job Requisition ID: 35965 

  • CulturalFlex to observe your cultural and religious days of significance.  

  • Rewards platform - your hard work won't go unnoticed at Deloitte.   

  • Training and development - at Deloitte we believe in investing in our best assets, the people   

What will your typical day look like?  

Reporting to the Director of SIEM Engineering, the SIEM Engineer is primarily responsible for the build development and maintenance of data storage and processing systems (such as Centralised Logging and Security Information and Event Management systems). The SIEM Engineer will participate in installing, configuring, and maintaining SIEM platforms, specifically Microsoft Sentinel; design and develop detections; implement operational and technical security controls; and adhere to organisational security policies and procedures.   

Location for this role - Remote

   

About the team  

The SIEM Engineering team provides a number of services to internal and external stakeholders including:  

  • Working on onboarding new clients to the service on the Microsoft Sentinel SIEM platform 

  • Working closely with a large SOC to maintain adequate connectors and analytics.  

  • Working with clients for the development of new detections bespoke to client use cases, threats and environments.  

  • Assist on internal SOC quality of life or process improvement projects.  

As part of a small team you will experience diverse days, find yourself hands on building and developing as well as handling client tickets or SOC queries.  

  

About this role   

Deloitte Cyber delivers top-tier Australian based sovereign Managed Detection and Response Services to a diverse range of clients, including both private sector and government entities. Deloitte Cyber’s aim is to protect their clients’ people, infrastructure, and network from a variety of cyber based attacks and threats.   

As a key member of the SIEM team, the SIEM Engineer will also apply analytical methods to the collection of new data and the interpretation of existing data. They will strive to improve operational management systems, processes, and procedures to ensure operations are carried out in the most appropriate and efficient way. The SIEM Engineer will take a hands-on approach to the development and sustainment of our complex information environment.   

  

Enough about us, let’s talk about you.    

Engineering 

  • Analyse and define data requirements and specifications  

  • Oversight of data system performance, capacity, availability, serviceability, and recoverability.   

  • Analyse and plan for anticipated changes in data capacity requirements. 

  • Install, configure and support data system components.   

  • Raise/manage/close vendor support cases.   

  • Develop and facilitate data-gathering methods.   

  • Manage the compilation, cataloguing, caching, distribution, and retrieval of data.   

  • Provide a managed flow of relevant information to represent data in creative formats.   

  • Part of Data and Security Engineering escalation roster for critical alerts.   

Data Analysis 

  • Analyse data sources to provide actionable recommendations and strategic insights.   

  • Assess the validity of source data and subsequent findings.   

  • Conduct hypothesis testing using statistical processes.   

  • Develop strategic insights from large data sets.   

  • Develop data standards, policies, and procedures.   

Client facing 

  • Interface with customers to address concerns, issues, or escalations; track and drive to closure any issues that impact the service and its value to clients.   

  • Work with product owners to onboard additional data sources.   

  • Present technical information to technical and non-technical audiences.   

   
Professional Experience: 

  • Experience working with centralised logging and Security Information and Event Management (SIEM) products (specifically Microsoft Sentinel).   

  • Experience writing SIEM queries, constructing alert logic, and building dashboards.   

  • Experience integrating custom log sources into centralised logging and/or SIEM products.   

  • An understanding of the information technology marketplace including modern security operations and Digital Forensics/Incident Response.   

  • Demonstrate a high level of flexibility and resourcefulness, being able to adapt to change and challenges.   

  • Experience communicating with a high level of professionalism.   

  • Previous technical experience owning and delivering complex, technical bodies of work.   

  • Evidence of working with or in the Enterprise market.   

  • A demonstrable track record of success.   

  • Ideally, experience working in or with a cyber security team.   

  • Ideally, experience working with Endpoint Detection and Response products (preferably Microsoft and Carbon Black’s offerings).   

  

Why Deloitte   

At Deloitte, we focus our energy on interesting and impactful work. We’re always learning, innovating and setting the standard; making a positive difference to our clients and our society. We put coaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.    

 We embrace diversity, equity and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone’s perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong.     

We prioritise flexibility and choice. At Deloitte, you get trust on Day 1. We know our people get their best work done when they’re in control of where and how they work, designing their work week around their client, team, and personal commitments.  

 We help you live and work well. To support your personal and professional life, we offer a range of perks and benefits, including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package.   

  

Next Steps  

Sound like the sort of role for you? Apply now, we’d love to hear from you   

By applying for this job, you’ll be assessed against the Deloitte Talent Standards. We’ve designed these standards so that you can grow in your career, and we can provide our clients with a consistent and exceptional Deloitte employee experience globally. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.



  • Sydney, Australia Deloitte Full time

    Job Requisition ID:  36824  CulturalFlex to observe your cultural and religious days of significance. Rewards platform - your hard work won't go unnoticed at Deloitte. Training and development - at Deloitte we believe in investing in our best assets, the people! What will your typical day look like? Reporting to the Director of...

  • Cyber Security Siem

    6 months ago


    Sydney, Australia HAYS Full time

    12 months contract role - government agency - Cyber Security Engineer SIEM **Your new company** This government agency is looking for a SIEM Cyber Security Engineer to join their established cyber security team in a 12-month contract role. You will have the opportunity of working at a government agency located in Sydney. **Your new role** As a Cyber...

  • SOC Analyst Level 2

    6 months ago


    Sydney, Australia Experis Full time

    Experis is working with our Global Cyber Security client, headquartered in Sydney CBD, to assist in sourcing a talented SOC Analyst Level 2 Support. Our client is a leader in the cybersecurity industry, with a commitment to safeguarding it's clients organisations' digital assets against evolving threats and vulnerabilities. **The Role**: - Position: SOC...


  • Sydney, Australia Peoplebank Full time

    Location: - Sydney CBD- Job Type: - Contract- Posted: - about 5 hours ago- Contact: - Aparna Sharma- Discipline: - Security / Cyber Security - Reference: - 261468- **Initial 6 months contract +extensions**: - **Hybrid Work Model**: - ** Location: CBD**: - ** Experience in Sentinel required** **The company**: Large insurance group who pride themselves on...


  • Sydney, New South Wales, Australia CrowdStrike Australia Pty Limited Full time

    About the RoleCrowdStrike Australia Pty Limited is a global leader in cybersecurity, offering unparalleled protection against sophisticated cyberattacks. We are seeking a Senior Consultant to spearhead key efforts and become a trusted advisor to customers by answering technical questions, demonstrating Falcon LogScale and its NGSIEM capabilities, and laying...

  • CSOC Analyst

    4 weeks ago


    Sydney, Australia ASIC Full time

    Enjoy a 50/50 hybrid work-from-home model Additional leave entitlements and flexible work arrangements Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs Two Year Fixed Term Contract  Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra, Darwin A future...

  • CSOC Analyst

    2 weeks ago


    Sydney, Australia ASIC Full time

    Enjoy a 50/50 hybrid work-from-home model Additional leave entitlements and flexible work arrangements Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs Two Year Fixed Term Contract  Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra, Darwin A future...

  • Csoc Analyst

    2 weeks ago


    Sydney, Australia ASIC Full time

    **Enjoy a 50/50 hybrid work-from-home model**: - **Additional leave entitlements and flexible work arrangements**: - **Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs**: - **Two Year Fixed Term Contract**: - **Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra,...

  • Csoc Analyst

    4 weeks ago


    Sydney, Australia ASIC Full time

    **Enjoy a 50/50 hybrid work-from-home model**: - **Additional leave entitlements and flexible work arrangements**: - **Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs**: - **Two Year Fixed Term Contract**: - **Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra,...


  • Sydney, New South Wales, Australia Employsure Full time

    Job Title: Cloud Security Expert LeadWe are a leading provider of comprehensive HR consultancy and software solutions, seeking an experienced Cloud Security Expert to lead our security efforts.This is a critical growth role where you will be responsible for developing and implementing effective security strategies, improving monitoring/reporting processes,...


  • Sydney, Australia CrowdStrike Full time

    #WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a...


  • Sydney, Australia The Cyber Hunters Embassy Full time

    Multiple roles working for well known Brands based in Sydney - Lean into what you love: Threat Detection and Response Lead & Analysts - Based in Sydney. High profile Brands with Great Benefits + $$$ You are highly skilled, experienced and hungry to step up into a Threat Detection and Incident Response Lead | Analyst role. Your role is to hunt for any...


  • Sydney, Australia The Cyber Hunters Embassy Full time

    Get ready to reimagine the possible and achieve a safer digital world. - Identify, analyse, prioritise and remediate cyber incidents, globally. - Sydney based. Highly driven fast paced team. Excellent Benefits. In the rapidly evolving landscape of cyber threats, this global brand stands at the forefront of defending against malicious activities that put our...


  • Sydney, Australia Security Careers at Mantel Group Full time

    **About us** Mantel Group is an Australian-owned technology consulting business with capabilities across Cloud, Digital, Data & Security. Since our inception in November 2017, we have experienced remarkable growth across Australia & New Zealand and are honoured to be recognised as a Great Place to Work for 4 years in a row! We hire smart and talented...


  • Sydney, New South Wales, Australia AC3 Australia Full time

    About the RoleThis position is part of the Cyber Security Practice, working closely with other teams within the practice and technical teams to provide a strong line of defense against existing and evolving threats.The Key ResponsibilitiesEstablish and maintain a detection library and associated framework that delivers suitable value to customers of the...


  • Sydney, Australia NCC Group Full time

    An opportunity to join a highly technical and specialised team to help continuously improve upon a world-beating MXDR offering, and design and architect both our solution and provision clients consumption of our services. The role will be to ensure that onboarded client environments not only align to reference architecture, but also integrate into the...

  • Security Analyst

    6 months ago


    Sydney, Australia CyberCX Full time

    Hybrid work arrangements - Work with industry leaders - Hyper growth business CyberCX is Australia’s leading independent cyber security consultancy organisation. To support our rapid growth, we are looking motivated and passionate Security Analysts to work in our Sydney office. In this role, you’ll work with your team to deliver great client outcomes...

  • Security Engineer

    1 month ago


    Sydney, Australia Charterhouse Full time

    Job details Location: Sydney Salary: $800 - $1250 per annum Job Type: Contract Discipline: TechnologyReference: V-117768 Posted: 2 days ago Share this job Job description ...


  • Sydney, New South Wales, Australia ASIC Full time

    **About the Role**Apart from a competitive salary of $120,000 - $150,000 per annum, you will have the opportunity to work in a 50/50 hybrid model that allows for flexibility and balance between home and office work.This is an exciting opportunity to join ASIC's Cyber Security team as a Cyber Security Threat Hunter. You will be responsible for proactive...


  • Sydney, New South Wales, Australia AC3 Australia Full time

    About AC3 AustraliaWe are a leading Australian ICT MSP, providing secure multi-cloud solutions to our customers. Our purpose is to make technology real, and we achieve this by working closely with our customers to understand their needs.Job DescriptionThis role is part of our Cyber Security Practice, working closely with other teams within the practice and...