• CTC
    6.0L - 15.0L

  • ROLE
    Other

  • LOCATION
    ,

  • EXPERIENCE
    Senior




Submit your Application

The salary you're expecting to receive for the job (in lakhs per annum)


After your first application, you can one-click apply to companies.
 If you already have an account, click here to sign in.


 Login Details

You can use these details to log back into your account.


1 The Basics

Let's get started with who you are and what you're looking for.




The number of years you've been working for in your field



2 Resume

Let employers know what you have to offer.




OR


3 Optional Fields

Have more details you'd like to share? Or referred by a friend to sign up? Fill these fields below!








Description

1.JD – Threat Management Analyst

 

Position code: 004

Position Title: Threat Management Analyst

Department: Cyber Threat Intelligence Centre

Position Type: Permanent, Full Time

Position Band: Mid-Level / Senior

Location: Sydney CBD

Work Status: Full Time



 

Job Purpose

To work as a SOC engineering resource on Secure Logic MSS projects, and to provide support, maintenance, and monitoring for Managed Security Services.

Summary of the Role

You will be joining a rapidly growing IT security organisation to become a part of our global Security Operations Centre team. You will be analysing security threats, responding to security threats, and implementing and maintaining of the company’s security services.

 

The successful candidate will have strong analytical and troubleshooting skills, strong security landscape knowledge, solid communication skills and a drive to deliver the best solution for our customers.

 

Threat Management Analyst (Tier 2, Tactical Warrior)

Duties:

 

Advanced security incident handling and response

In-depth security analysis and forensics

Investigating security violations, attempts to gain unauthorized access, virus infections that may affect the network or other event affecting security

Security recommendations and remediation

Advanced SIEM configuration and customisation

Threat modelling

Maintain internal relationships with Senior Management, and other business areas as required.

 

Qualifications:

 

Tertiary degree in computer science or 3+ years in a related IT field.

 

Any of the following qualifications are regarded:

Security vendor certifications – Cisco/Juniper/Fortinet/etc.

Relevant security certifications (SANS/GIAC/CERT) are required (incident response / forensics / intrusion detection / etc.)

CISSP certification desired.

Penetration testing certifications desired.

 

 

Experience:

 

10+ years of relevant experience is required.

 

Skills:

 

Great understanding of security principles and technologies (access control, security protocols, threat and vulnerability management, incident and event management, etc.)

Strong technical understanding of the security landscape (attack vectors, tools, best practices for attack detection and mitigation) 

Practical knowledge of security Service Operations processes (Incident and Event Management, Incident Isolation, Classification, and Escalation)

Practical experience with complex incident response, kill chain, remediation

Hands-on experience with Security Products (firewalls, IPS, VPN, malware protection endpoint protection)

Experience with SIEM implementation and customisation, advanced correlation

Advanced threat modelling and analysis

Strong experience with forensics tools

Good written and oral communication skills are required.

 



 



 


Perks

Free Tech

Work From Home

Flexible Work Hours


Similar Jobs