en

Services

Australia's leading employers trust us to deliver fast, efficient hiring solutions that are tailored to their exact requirements. Browse our range of bespoke services and resources.

Read more

Contact Us

Truly global and proudly local, we've been serving Australia for over 25 years with offices in Adelaide, Brisbane, Melbourne, Perth, and Sydney.

Get in touch
Jobs

Our industry specialists will listen to your aspirations and share your story with Australia’s most prestigious organisations. Together, let’s write the next chapter of your career.

See all jobs

Exclusive recruitment partners

Explore the opportunities from a range of organisations that exclusively partner with Robert Walters for their hiring needs.

Learn more
Services

Australia's leading employers trust us to deliver fast, efficient hiring solutions that are tailored to their exact requirements. Browse our range of bespoke services and resources.

Read more
About Robert Walters Australia

G'day! For us, recruitment is more than just a job. We understand that behind every opportunity is the chance to make a difference in people's lives.

Learn more

Work for us

Our people are the difference. Hear stories from our people to learn more about a career at Robert Walters Australia

Learn more
Contact Us

Truly global and proudly local, we've been serving Australia for over 25 years with offices in Adelaide, Brisbane, Melbourne, Perth, and Sydney.

Get in touch

EL1 Cyber Threat Detection SIEM Specialist

Save job

Cyber Threat Detection (CTD) Security Information and Event Management (SIEM) Specialist is required to perform a leadership role while exercising a considerable degree of technical skill and independence pertaining to the monitoring and response function of Cyber Security.

The primary focus of the CTD SIEM Specialist is to lead a multi-disciplinary team to develop and implement detection methods to identify, monitor, respond, protect against malicious cyber events targeting the organisation and shared agency networks.

This role requires in-depth knowledge of cyber security fundamentals to accurately determine impact and relevance of emerging and existing threats to operating environments. The CTD SIEM Specialist will draw upon their knowledge of detection methodologies and technologies, attack vectors, vulnerability management principles, network security, security engineering principles, information systems control design and control monitoring. Key duties may include, but are not limited to:

  • Threat Detection development inclusive of reviewing and approving detection use cases, response playbook development and implementation of detection use cases.
  • Provide technical or strategic advice on complex issues related to detection technologies. Coordinate the accurate and appropriate referral and subsequent tuning of detection use cases.
  • Review and contribute to process documentation including providing input into the development of processes and ensuring documentation created by the shift aligns with outcomes and goals of the process.
  • Provide timely, relevant and accurate information to the Director Cyber Threat Detection where business impacts of events and decisions are sensitive, including but not limited to:
  • Wide ranging impacts. Events affecting senior executives or other agencies.
  • Confidentiality, integrity and availability are impacted.
  • Provide technical guidance and support to Cyber Security Operations staff while overseeing Cyber Threat Detection roles.
  • Prioritise tasks and duties in accordance with direction from Cyber Security Divisional teams considering risk, urgency and impact using independent judgement.
  • Provide expert advice and assistance to team members performing technical work.

Essential criteria:

• Proficiency in managing SIEM platforms - QRadar, Splunk and Elastic.

• Knowledge of network architecture concepts including topology, protocols, components, and principles.

• Experience in developing SIEM use cases and/or rules.

• Experience in SIEM administration.

• Understanding of the requirements of network security monitoring.

• Must possess strong verbal and written communication skills.

• Strong stakeholder engagement skills.

• Understanding of Windows and Unix/Linux logging.

• Familiarity with the MITRE ATT&CK Framework

12 month contract with 2x 12 month contract extensions

ACT Based

NV1 Clearance Required

Aboriginal and Torres Strait Islander Peoples are encouraged to apply.
To apply please click apply or call Talin Thomson on 61 2 8289 3190 for a confidential discussion.

Contract Type: TEMPORARY

Specialism: Information Technology

Focus: Cyber Security

Industry: IT

Salary: Negotiable

Workplace Type: Hybrid

Experience Level: Senior Management

Location: Canberra CBD

Job Reference: SIEM/FG

Date posted: 8 July 2024

Consultant: Talin Thomson

I'm Robert Walters Are you?

Come join our global team of creative thinkers, problem solvers and game changers. We offer accelerated career progression, a dynamic culture and expert training.