Sentinel SIEM Engineer
3 months ago
Job Requisition ID: 35965
-
CulturalFlex to observe your cultural and religious days of significance.
-
Rewards platform - your hard work won't go unnoticed at Deloitte.
-
Training and development - at Deloitte we believe in investing in our best assets, the people
What will your typical day look like?
Reporting to the Director of SIEM Engineering, the SIEM Engineer is primarily responsible for the build development and maintenance of data storage and processing systems (such as Centralised Logging and Security Information and Event Management systems). The SIEM Engineer will participate in installing, configuring, and maintaining SIEM platforms, specifically Microsoft Sentinel; design and develop detections; implement operational and technical security controls; and adhere to organisational security policies and procedures.
Location for this role - Remote
About the team
The SIEM Engineering team provides a number of services to internal and external stakeholders including:
-
Working on onboarding new clients to the service on the Microsoft Sentinel SIEM platform
-
Working closely with a large SOC to maintain adequate connectors and analytics.
-
Working with clients for the development of new detections bespoke to client use cases, threats and environments.
-
Assist on internal SOC quality of life or process improvement projects.
As part of a small team you will experience diverse days, find yourself hands on building and developing as well as handling client tickets or SOC queries.
About this role
Deloitte Cyber delivers top-tier Australian based sovereign Managed Detection and Response Services to a diverse range of clients, including both private sector and government entities. Deloitte Cyber’s aim is to protect their clients’ people, infrastructure, and network from a variety of cyber based attacks and threats.
As a key member of the SIEM team, the SIEM Engineer will also apply analytical methods to the collection of new data and the interpretation of existing data. They will strive to improve operational management systems, processes, and procedures to ensure operations are carried out in the most appropriate and efficient way. The SIEM Engineer will take a hands-on approach to the development and sustainment of our complex information environment.
Enough about us, let’s talk about you.
Engineering
-
Analyse and define data requirements and specifications
-
Oversight of data system performance, capacity, availability, serviceability, and recoverability.
-
Analyse and plan for anticipated changes in data capacity requirements.
-
Install, configure and support data system components.
-
Raise/manage/close vendor support cases.
-
Develop and facilitate data-gathering methods.
-
Manage the compilation, cataloguing, caching, distribution, and retrieval of data.
-
Provide a managed flow of relevant information to represent data in creative formats.
-
Part of Data and Security Engineering escalation roster for critical alerts.
Data Analysis
-
Analyse data sources to provide actionable recommendations and strategic insights.
-
Assess the validity of source data and subsequent findings.
-
Conduct hypothesis testing using statistical processes.
-
Develop strategic insights from large data sets.
-
Develop data standards, policies, and procedures.
Client facing
-
Interface with customers to address concerns, issues, or escalations; track and drive to closure any issues that impact the service and its value to clients.
-
Work with product owners to onboard additional data sources.
-
Present technical information to technical and non-technical audiences.
Professional Experience:
-
Experience working with centralised logging and Security Information and Event Management (SIEM) products (specifically Microsoft Sentinel).
-
Experience writing SIEM queries, constructing alert logic, and building dashboards.
-
Experience integrating custom log sources into centralised logging and/or SIEM products.
-
An understanding of the information technology marketplace including modern security operations and Digital Forensics/Incident Response.
-
Demonstrate a high level of flexibility and resourcefulness, being able to adapt to change and challenges.
-
Experience communicating with a high level of professionalism.
-
Previous technical experience owning and delivering complex, technical bodies of work.
-
Evidence of working with or in the Enterprise market.
-
A demonstrable track record of success.
-
Ideally, experience working in or with a cyber security team.
-
Ideally, experience working with Endpoint Detection and Response products (preferably Microsoft and Carbon Black’s offerings).
Why Deloitte
At Deloitte, we focus our energy on interesting and impactful work. We’re always learning, innovating and setting the standard; making a positive difference to our clients and our society. We put coaching at the heart of what we do, helping our people grow their careers in any direction – whether it be up, moving into something new, or even moving across the world.
We embrace diversity, equity and inclusion. We have a diverse collection of people from different backgrounds, with different experiences, gender identities, abilities and thinking styles. What binds us together is a shared commitment to value everyone’s perspective and to cultivate inclusion; so that our work environment is a safe space we can all belong.
We prioritise flexibility and choice. At Deloitte, you get trust on Day 1. We know our people get their best work done when they’re in control of where and how they work, designing their work week around their client, team, and personal commitments.
We help you live and work well. To support your personal and professional life, we offer a range of perks and benefits, including retail discounts, wellbeing leave, paid volunteering days, twelve flexible working options, market-leading parental leave and return to work support package.
Next Steps
Sound like the sort of role for you? Apply now, we’d love to hear from you
By applying for this job, you’ll be assessed against the Deloitte Talent Standards. We’ve designed these standards so that you can grow in your career, and we can provide our clients with a consistent and exceptional Deloitte employee experience globally. The preferred candidate will be subject to background screening by Deloitte or by their external third-party provider.
-
Sentinel Security Engineer
2 weeks ago
Sydney, Australia Deloitte Full timeJob Requisition ID: 36824 CulturalFlex to observe your cultural and religious days of significance. Rewards platform - your hard work won't go unnoticed at Deloitte. Training and development - at Deloitte we believe in investing in our best assets, the people! What will your typical day look like? Reporting to the Director of...
-
Cyber Security Siem
6 months ago
Sydney, Australia HAYS Full time12 months contract role - government agency - Cyber Security Engineer SIEM **Your new company** This government agency is looking for a SIEM Cyber Security Engineer to join their established cyber security team in a 12-month contract role. You will have the opportunity of working at a government agency located in Sydney. **Your new role** As a Cyber...
-
SOC Analyst Level 2
6 months ago
Sydney, Australia Experis Full timeExperis is working with our Global Cyber Security client, headquartered in Sydney CBD, to assist in sourcing a talented SOC Analyst Level 2 Support. Our client is a leader in the cybersecurity industry, with a commitment to safeguarding it's clients organisations' digital assets against evolving threats and vulnerabilities. **The Role**: - Position: SOC...
-
Cyber Security Consultant
6 months ago
Sydney, Australia Peoplebank Full timeLocation: - Sydney CBD- Job Type: - Contract- Posted: - about 5 hours ago- Contact: - Aparna Sharma- Discipline: - Security / Cyber Security - Reference: - 261468- **Initial 6 months contract +extensions**: - **Hybrid Work Model**: - ** Location: CBD**: - ** Experience in Sentinel required** **The company**: Large insurance group who pride themselves on...
-
Senior Cybersecurity Consultant
1 week ago
Sydney, New South Wales, Australia CrowdStrike Australia Pty Limited Full timeAbout the RoleCrowdStrike Australia Pty Limited is a global leader in cybersecurity, offering unparalleled protection against sophisticated cyberattacks. We are seeking a Senior Consultant to spearhead key efforts and become a trusted advisor to customers by answering technical questions, demonstrating Falcon LogScale and its NGSIEM capabilities, and laying...
-
CSOC Analyst
4 weeks ago
Sydney, Australia ASIC Full timeEnjoy a 50/50 hybrid work-from-home model Additional leave entitlements and flexible work arrangements Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs Two Year Fixed Term Contract Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra, Darwin A future...
-
CSOC Analyst
2 weeks ago
Sydney, Australia ASIC Full timeEnjoy a 50/50 hybrid work-from-home model Additional leave entitlements and flexible work arrangements Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs Two Year Fixed Term Contract Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra, Darwin A future...
-
Csoc Analyst
2 weeks ago
Sydney, Australia ASIC Full time**Enjoy a 50/50 hybrid work-from-home model**: - **Additional leave entitlements and flexible work arrangements**: - **Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs**: - **Two Year Fixed Term Contract**: - **Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra,...
-
Csoc Analyst
4 weeks ago
Sydney, Australia ASIC Full time**Enjoy a 50/50 hybrid work-from-home model**: - **Additional leave entitlements and flexible work arrangements**: - **Continuing Professional Development - on-going formal and informal training opportunities and mentoring programs**: - **Two Year Fixed Term Contract**: - **Role can be based : Sydney, Melbourne, Brisbane, Perth, Adelaide, Canberra,...
-
Cloud Security Expert Lead
3 weeks ago
Sydney, New South Wales, Australia Employsure Full timeJob Title: Cloud Security Expert LeadWe are a leading provider of comprehensive HR consultancy and software solutions, seeking an experienced Cloud Security Expert to lead our security efforts.This is a critical growth role where you will be responsible for developing and implementing effective security strategies, improving monitoring/reporting processes,...
-
Siem Sales Specialist, Asia and Anz
6 months ago
Sydney, Australia CrowdStrike Full time#WeAreCrowdStrike and our mission is to stop breaches. As a global leader in cybersecurity, our team changed the game. Since our inception, our market leading cloud-native platform has offered unparalleled protection against the most sophisticated cyberattacks. We’re looking for people with limitless passion, a relentless focus on innovation and a...
-
Let The Hunt Begin...threat Detection and Response
6 months ago
Sydney, Australia The Cyber Hunters Embassy Full timeMultiple roles working for well known Brands based in Sydney - Lean into what you love: Threat Detection and Response Lead & Analysts - Based in Sydney. High profile Brands with Great Benefits + $$$ You are highly skilled, experienced and hungry to step up into a Threat Detection and Incident Response Lead | Analyst role. Your role is to hunt for any...
-
Threat Response Manager
6 months ago
Sydney, Australia The Cyber Hunters Embassy Full timeGet ready to reimagine the possible and achieve a safer digital world. - Identify, analyse, prioritise and remediate cyber incidents, globally. - Sydney based. Highly driven fast paced team. Excellent Benefits. In the rapidly evolving landscape of cyber threats, this global brand stands at the forefront of defending against malicious activities that put our...
-
Cyber Security Consultant
6 months ago
Sydney, Australia Security Careers at Mantel Group Full time**About us** Mantel Group is an Australian-owned technology consulting business with capabilities across Cloud, Digital, Data & Security. Since our inception in November 2017, we have experienced remarkable growth across Australia & New Zealand and are honoured to be recognised as a Great Place to Work for 4 years in a row! We hire smart and talented...
-
Cyber Threat Response Specialist
1 month ago
Sydney, New South Wales, Australia AC3 Australia Full timeAbout the RoleThis position is part of the Cyber Security Practice, working closely with other teams within the practice and technical teams to provide a strong line of defense against existing and evolving threats.The Key ResponsibilitiesEstablish and maintain a detection library and associated framework that delivers suitable value to customers of the...
-
Mxdr Technical Consultant
6 months ago
Sydney, Australia NCC Group Full timeAn opportunity to join a highly technical and specialised team to help continuously improve upon a world-beating MXDR offering, and design and architect both our solution and provision clients consumption of our services. The role will be to ensure that onboarded client environments not only align to reference architecture, but also integrate into the...
-
Security Analyst
6 months ago
Sydney, Australia CyberCX Full timeHybrid work arrangements - Work with industry leaders - Hyper growth business CyberCX is Australia’s leading independent cyber security consultancy organisation. To support our rapid growth, we are looking motivated and passionate Security Analysts to work in our Sydney office. In this role, you’ll work with your team to deliver great client outcomes...
-
Security Engineer
1 month ago
Sydney, Australia Charterhouse Full timeJob details Location: Sydney Salary: $800 - $1250 per annum Job Type: Contract Discipline: TechnologyReference: V-117768 Posted: 2 days ago Share this job Job description ...
-
Cyber Security Threat Hunter
2 weeks ago
Sydney, New South Wales, Australia ASIC Full time**About the Role**Apart from a competitive salary of $120,000 - $150,000 per annum, you will have the opportunity to work in a 50/50 hybrid model that allows for flexibility and balance between home and office work.This is an exciting opportunity to join ASIC's Cyber Security team as a Cyber Security Threat Hunter. You will be responsible for proactive...
-
Cyber Threat Intelligence Specialist
4 weeks ago
Sydney, New South Wales, Australia AC3 Australia Full timeAbout AC3 AustraliaWe are a leading Australian ICT MSP, providing secure multi-cloud solutions to our customers. Our purpose is to make technology real, and we achieve this by working closely with our customers to understand their needs.Job DescriptionThis role is part of our Cyber Security Practice, working closely with other teams within the practice and...