Job Description
Job Details
Role: EL1 Cyber Security Engineer
Locations: ACT, VIC, and QLD
Duration: 12 Months with a 12 Month extension
The EL1 Cyber Security Engineer will lead the development of complex cyber security technologies and processes with a focus on continual improvement. The successful candidate will lead the development of core and emerging cyber security technologies including SIEM, SOAR, Vulnerability Management, and Threat Intelligence.
A key part of the role involves collaboration with internal stakeholders to ensure strategic objectives are met. The engineer will work closely with the Security Operations Centre (SOC) to enhance platforms based on operational feedback. The environment follows a cloud-first approach, requiring demonstrated experience with Azure, M365, and AWS technologies.
Citizenship: As part of eligibility and suitability requirements, only Australian citizens will be considered. Successful candidates must provide valid proof of citizenship during pre-engagement checks.
Key Duties and Responsibilities
-Interpret strategic direction and functional requirements to develop technologies that enhance cyber security posture.
-Collaborate with project teams and stakeholders to deliver cyber technology solutions.
-Implement and develop orchestration and automation capabilities.
-Continuously refine processes, methods, and technologies.
-Translate complex technologies into simplified processes and mentor junior staff as needed.
-Create and maintain high-quality documentation such as architecture designs, SOPs, and service design artefacts.
-Contribute to procurement activities and provide specialist technical input.
Criteria
Note: Candidates must submit a one-page pitch (up to 5000 characters) addressing all criteria below.
Essential Criteria
-SIEM engineering experience, including use case development, traceability, and custom query writing in platforms such as Splunk Enterprise Security, Microsoft Sentinel, AWS Security Hub, QRadar, Exabeam, or comparable solutions.
-Experience in Vulnerability Management using platforms like Microsoft Defender, Rapid7, Tenable, Dynatrace, or similar technologies.
-Experience managing Threat Intelligence platforms such as Microsoft Threat Intelligence, Threatstream, ThreatIQ, or other comparable systems.
Desirable Criteria
-Demonstrated automation experience in cyber security platforms
-Familiarity with DevSecOps monitoring practices
-Experience using Threat Modelling tools and frameworks
-Exposure to prompt engineering