Cloud Security Engineer

Location: Melbourne
Discipline: Cyber Security
Job type: Contract/Temporary
Contact email: adrian.o@interpropeople.com
Job ref: 678651
Published: about 1 year ago
I am currently seeking a highly skilled Cybersecurity Engineer to join the team of our client, a leading educational institution. The successful candidate will play a pivotal role in operationalising and sustaining initiatives under the Cybersecurity Uplift Program. They will work closely with the cyber delivery and operational teams to build integrations and automation workflows across a range of cybersecurity and network detection platforms.
Responsibilities:
  • Lead security operation enhancements and develop new capabilities to build a proactive high-performing Security Operations Centre that includes continuous improvement methodologies and supports existing and new cybersecurity initiatives.
  • Expand capability of our client's Vulnerability Management Platform, building additional capability across compliance, digital certificate, alerting, and reporting.
  • Identify, report, and remediate possible threats or system/software security issues.
  • Research weaknesses and find ways to counter them in a pragmatic cost-effective way.
  • Consolidate metrics across Azure Security Stack.
  • Enable, report, and tune M365 Security and Compliance.
  • Tune and report on CloudApp Security.
  • Consolidate Cisco detection technologies into a single platform.
  • Tune alerts across endpoint, SOC, cloud, and network detection platforms.
  • Assist with the deployment, tuning, and reporting setup of new security services and platforms.
  • Assist with the creation and maintenance of security playbooks, procedures, and processes.
  • Assist with the creation and maintenance of security detection and prevention technical policies.
  • Assist with the selection, implementation, and operationalisation of a cybersecurity case management platform.
Selection Criteria:
  • Strong knowledge and experience in implementing information security solutions, equivalent to a bachelor's degree and 4 years of security operations experience.
  • Strong knowledge and experience in a security automation role within an enterprise environment.
  • Strong API experience, specifically with collecting metrics and developing meaningful reports.
  • Strong Azure Security Stack & CloudApp Security experience, specifically across log ingestion and utilizing Graph API for reporting.
  • Automation experience, specifically with vulnerability management, patch management, digital certificate, detection, and remediation playbooks.
  • Vulnerability management, reporting, and automation.
  • Hold industry-recognized security certification or equivalent learning and experience such as: CompTIA CySA+, Security+, EC Council CSA, CND; Cisco CyberOps, CCNP Security; Microsoft Certified: Security Operations Analyst, Microsoft 365 Certified: Security Administrator; (ISC)2 SSCP, CCSP or equivalent experience and education.
  • Deep understanding of network protocols and network security, Cisco security stack advantageous.
  • Knowledge of one or more security standards/frameworks e.g. NIST CSF, ACSC Essential 8, ISO 27001.
  • Good working knowledge and experience with operating systems such as Linux, Unix, Windows, as well as proficiency in one or more scripting languages (e.g. Python, PowerShell).
  • Demonstrated capacity to understand and comply with employer policy and practices in all aspects of work and conduct, including OH&S and Anti-Discrimination responsibilities and complete/attend relevant training.
Desirable:
  • Offensive Security, Threat Hunting, Incident Response, and Penetration Testing experience and knowledge backed by security certifications such as CEH, CTIA, CPENT, CGFI, APT, OSCP, OSCE, OSEP.
  • Experience in systems administration, database administration, network administration within an enterprise environment.
  • Experience in building and automating offensive security tooling for penetration testing, threat hunting, and digital forensic tasks.

This is a contract opportunity running until 23/12/2023, potential of transitioning into fulltime afterwards available for the right candidate.

If you are an experienced Cybersecurity Engineer with a strong technical background in cybersecurity and networking technologies, we encourage you to apply for this exciting opportunity.