ASD 4, 5 & 6 Cyber Threat Hunt Analyst

1 month ago

Melbourne, Australia Australian Signals Directorate Full time

About the Role

We will strongly invest in your career by supplying you with rewarding opportunities, flexible working arrangements, comprehensive internal and external training, and a competitive employment package designed for skilled employees.

TTV Branch is seeking Cyber Threat Hunt Analysts that can analyses network and host activity to identify anomalous behaviour.

Successful applicants will hunt sophisticated actors subverting common EDR detection and mitigation techniques through developing and implementing innovative detection capabilities and analytical tradecraft, furthering the ACSC’s understanding of adversaries targeting Australia. We want you to join our team to assist the ACSC to defend against these advanced threats.

These are technical roles, requiring an aptitude for complex problem solving and the ability to conduct deep analysis of network communications and endpoint activities to unearth malicious tradecraft.

When not actively hunting, other key responsibilities within the role include development of documentation and processes such as playbooks, refining your skills through training opportunities and identifying and enhancing the capabilities of the team by developing opportunities for automation.

While formal experience in cyber security, specifically Threat Hunting or Incident Response, is desirable, ASD is also interested in applicants starting out in this field who have demonstrable experience in software development, programming or computer sciences, and who are interested in problem solving. Cyber threat hunting requires analysts to be curious, think outside the box, have an investigative mind-set and be diligent in pursuing leads.

About our Team

ASD invites you to take the next step in your career.

We are looking for individuals with a passion for understanding, discovering and countering cyber threats impacting Australia and its interests.

The Technical Threats and Visibility (TTV) Branch in the Australian Cyber Security Centre (ACSC) detects adversaries targeting or exploiting Australian networks, through analysing their technical tools and tradecraft. The ACSC uses this deep understanding to defend and disrupt malicious activity from cyber threat actors.

ASD’s Cyber Threat Hunt Section is responsible for detecting sophisticated cyber threat actors that are silently present on important Australian networks. The Section uses custom tools, customer detections and all-source intelligence in its pursuit of undetected compromises.

There are vacant roles in this Section across Brisbane and Melbourne.

Our Ideal Candidate

We are looking for candidates who have experience in one or more of the following disciplines. The expected depth of knowledge is dependent on the classification applied for (ASD 4, 5 or 6):

Host Forensics – Specializing in Disk Forensics (EDR or dead disk)

  • Operating system principles and their underlying features such as file system structures, process and thread linkages, and registry
  • Collection and analysis of host artefacts to discover anomalous or malicious behaviour
  • Adversary mindset, how would they manipulate operating systems

Host Forensics – Specializing in Windows Memory Forensics

  • Inner workings of memory including memory structures
  • Collection and analysis of memory artefacts like crash dumps, hibernation files or page/swap space identify anomalous or malicious activity
  • Adversary mindset, how would they manipulate memory
  • Structured and unstructured analysis

Network Forensics

  • Network evidence types and sources
  • Collection and analysis of network traffic to discover anomalous or malicious behaviour
  • Network protocol analysis (e.g. HTTP, DNS, SMTP) and how they are used and manipulated for malicious purposes.

Applicants need to demonstrate an ability to communicate their technical knowledge in a concise manner to non-technical audiences.

At the ASD 4 level, you must demonstrate aptitude and passion towards the above areas or related fields, and be progressing efforts to attain relevant technical skills.

At the ASD 5 level, you must demonstrate experience in the above areas or related fields, and possess relevant technical skills. You must be able to work, when required, in isolation to carry out threat hunting activities with minimal oversight.

At the ASD 6 level, you must demonstrate significant experience in the above areas or related fields, and possess well-developed technical skills. It is expected that you will show leadership on bodies of work relevant to your areas of expertise. You are expected to be able to deliver comprehensive Hunts in isolation or as part of a team without supervision. 

Eligibility 

Citizenship - To be eligible for employment with ASD, applicants must be an Australian citizen. 

Health Assessment - The preferred applicant may be required to undergo a medical examination conducted by the Agency’s preferred medical provider. 

Organisational Suitability Assessment – To be eligible for employment within ASD, successful applicants will be required to undergo an Organisational Suitability Assessment (see details below).

Security Clearance - The preferred applicant will be required to successfully undergo the security clearance vetting process at the specified clearance level. The preferred applicant MUST be willing to disclose all relevant and required information. 

It is a condition of employment that applicants are willing and able to obtain and maintain the requisite security clearance for the duration of their employment with ASD.

Application Closing Date: Sunday 8th September, 2024

  • Asd 4, 5 & 6 Intelligence Assessment Analysts

    4 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $77,787.84 - $106,827.76 (plus 15.4% super) - Canberra - ACT,Melbourne CBD - VIC **The Role** SIA intelligence assessment analysts use their advanced critical thinking, research and communication skills to inform senior decision-makers and key operational and policy partners about the most important cyber threats to Australia. As an...

  • Asd 4, 5, 6 Intrusion Analyst

    3 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $74,795 - $117,533 (plus 15.4% super) - Brisbane CBD - QLD,Canberra - ACT,Melbourne CBD - VIC **The Role** Intrusion Analysts are responsible for using all of the tools at ASD’s disposal to understand, detect and track sophisticated, state-sponsored and cybercriminal cyber activity against Australian networks. **About our Team** The...

  • Cyber Security Threat Analyst

    1 week ago

    Melbourne, Victoria, Australia PRA Australia Full time

    About the RolePRA Australia is seeking a highly skilled Cyber Security Threat Analyst to join their team on a permanent basis.As a Cyber Security Threat Analyst, you will be responsible for monitoring, analyzing, and responding to security incidents. Your expertise will be invaluable in proactively identifying and mitigating potential risks.Key...

  • Asd 4, 5 & 6 Finance Officer

    4 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $74,795.76 - $102,718.72 (plus 15.4% super) - Brisbane Airport - QLD,Canberra - ACT,Melbourne CBD - VIC **The Role** **The Role** **About our Team** ASD is entering an exciting phase of growth, innovation and transformation. Our agency has committed to delivering REDSPICE, which is the most significant single investment in the...

  • Cyber Security Threat Intelligence Analyst

    2 weeks ago

    Melbourne, Victoria, Australia PRA Australia Full time

    PRA Australia, a leading financial services company, is seeking a highly skilled Cyber Security Threat Analyst to join their team on a permanent basis.As a Cyber Security Threat Analyst, you will be responsible for monitoring, analyzing, and responding to security incidents. Your insights will be invaluable in proactively identifying and mitigating potential...

  • Asd 4, 5, 6 & El1 Mandarin Linguist

    4 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $77,847.84 - $133,322.90 (plus 15.4% super) - Brisbane CBD - QLD,Canberra - ACT,Melbourne CBD - VIC **The Role** Do you want to use your cultural and language expertise to help protect Australia’s interests and play a role in Australia’s response to strategic threats? Would you like to combine your Mandarin language expertise with...

  • Asd 4, 5, 6 & El1 Desktop Technicians

    3 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $77,787 - $133,322.80 ( plus 15.4% super) - Brisbane CBD - QLD,Canberra - ACT,Melbourne CBD - VIC **The Role** The Australian Signals Directorate is seeking multiple Desktop Technicians with strong integrity and the ability to utilize their skills and experience, in the Technology Services Branch to support ASD’s infrastructure and...

  • Asd 4, 5 & 6 Cryptology Researcher

    4 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package $74,795.76 - $142,225.92 (plus 15% super) - Canberra - ACT,Melbourne CBD - VIC **The Role** The Cryptology Research team is expanding and seeking to fill multiple vacant positions, ranging from entry level to senior team members. You will directly prosecute ASD’s mission of “reveal their secrets, protect our own”. You will use...

  • Asd El1 Technical Specialists Intrusion, Threat

    3 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $113,648 - $177,500 (plus 15.4% super) - Brisbane CBD - QLD,Canberra - ACT,Melbourne CBD - VIC,Perth CBD - WA **The Role** We are seeking EL1 Technical Assistant Directors to lead technical work and projects within the branch. You will be a hands-on leader that is highly technically skilled, have an aptitude for complex problem solving...

  • Senior Cyber Threat Intelligence Analyst

    1 week ago

    Melbourne, Victoria, Australia TESSERENT Full time

    About the RoleTesserent is a leading cybersecurity solutions provider, partnering with clients across Australia and New Zealand to protect their digital assets. We're seeking a highly skilled Senior Cyber Threat Intelligence Analyst to join our team.Key ResponsibilitiesUndertake CTI processes for identification, collection, parsing, correlation, analysis,...

  • Asd 5, 6 Software Tester

    4 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $82,080 - 142,225 (plus 15.4% super) - Brisbane CBD - QLD,Canberra - ACT,Melbourne CBD - VIC,Perth CBD - WA **The Role** Key duties at the** ASD5 **level include: - Interpret requirements and execute tests, analysing and documenting results. - Develop test cases and supporting data using provided user stories, UX designs and other...

  • Asd 4 & 5 Data Officer

    4 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package - 74,795 - 121,733 (plus 15.4% super) - Brisbane CBD - QLD,Canberra - ACT,Melbourne CBD - VIC,Perth CBD - WA **The Role** An ASD4/5 Data Officer is responsible for the management and the day-to-day operations of Australian Signals Directorate (ASD) data systems ensuring accuracy, quality and compliance with policy. They will maintain a...

  • Asd4, 5 & 6 Ict Risk and Compliance Assessor

    3 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    $77,787.84- $147,915.36 (plus 15.4% super) - Adelaide - SA, Brisbane - QLD, Canberra - ACT, Melbourne - VIC & Perth - WA **The Role** The systems assessment section is expanding and seeking to fill multiple positions across ICT Risk and Compliance Assessor roles. These positions range from entry level to senior team members. As an ICT Risk and Compliance...

  • Asd6 Continuous Assurance Analyst

    4 days ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $98,345.52 - $110,886.88 incl. 4% Service Allowance (plus 15.4% Super) - Canberra - ACT,Melbourne CBD - VIC **The Role** - Analysing and assessing ICT system security configuration and documentation; - Developing ICT security best practice guidance, threat models, risk assessments, and educational campaigns; - Performing technical...

  • Cyber Threat Intelligence Specialist

    2 weeks ago

    Melbourne, Victoria, Australia TESSERENT Full time

    About the RoleTesserent is a leading cybersecurity solutions provider, partnering with clients across Australia and New Zealand to protect their digital assets. We're seeking a highly skilled Cyber Threat Intelligence Specialist to join our team and contribute to our mission of delivering world-class cybersecurity services.Key ResponsibilitiesUndertake CTI...

  • Cyber Security Expert

    7 days ago

    Melbourne, Victoria, Australia Green Light Full time

    Senior Cyber Security AnalystGreen Light is a leading consulting organization specializing in Telecommunications and System Integration Services. We are seeking a highly skilled Senior Cyber Security Analyst to join our client partner's team on a permanent basis.Key Responsibilities:Lead the integration of new security systems into the client's Splunk...

  • Cyber Threat Intelligence Specialist

    2 weeks ago

    Melbourne, Victoria, Australia TESSERENT Full time

    About the RoleTesserent is a leading cybersecurity solutions provider, partnering with clients across Australia and New Zealand to protect their digital assets. We are seeking a highly skilled Cyber Threat Intelligence Specialist to join our team.Key ResponsibilitiesUndertake CTI processes for identification, collection, parsing, correlation, analysis, and...

  • Asd 4, 5, 6 & El1 Governance Officers

    4 months ago

    Melbourne, Australia Australian Signals Directorate (ASD) Full time

    Total Salary Package: $74,795.76- $128,194.56 (plus 15.4% super) - Brisbane CBD - QLD,Canberra - ACT,Melbourne CBD - VIC **The Role** Governance Officers support ASD’s internal decision-making processes and procedures by: - contributing to high-level written material such as ministerial briefs, correspondence, reports, minutes; and agendas; - assisting...

  • Cyber Threat Intelligence Analyst

    3 weeks ago

    Melbourne, Australia Rapid7 Full time

    **Description** Rapid7 is searching for a Cyber Intelligence Analyst to join our Threat Command team and take our threat intelligence analysis capabilities to the next level. As a Cyber Intelligence Analyst at Rapid7, you will investigate trending global cyber events and emerging dark web threats, using the IntSights platform and your research skills to...

  • Cyber Threat Intelligence Analyst

    3 weeks ago

    Melbourne, Australia Rapid7 Full time

    Description  Rapid7 is searching for a Cyber Intelligence Analyst to join our Threat Command team and take our threat intelligence analysis capabilities to the next level. As a Cyber Intelligence Analyst at Rapid7, you will investigate trending global cyber events and emerging dark web threats, using the IntSights platform and your research skills to...