I am currently seeking a highly skilled Cybersecurity Engineer to join the team of our client, a leading educational institution. The successful candidate will play a pivotal role in operationalising and sustaining initiatives under the Cybersecurity Uplift Program. They will work closely with the cyber delivery and operational teams to build integrations and automation workflows across a range of cybersecurity and network detection platforms. Responsibilities:
Lead security operation enhancements and develop new capabilities to build a proactive high-performing Security Operations Centre that includes continuous improvement methodologies and supports existing and new cybersecurity initiatives.
Expand capability of our client's Vulnerability Management Platform, building additional capability across compliance, digital certificate, alerting, and reporting.
Identify, report, and remediate possible threats or system/software security issues.
Research weaknesses and find ways to counter them in a pragmatic cost-effective way.
Consolidate metrics across Azure Security Stack.
Enable, report, and tune M365 Security and Compliance.
Tune and report on CloudApp Security.
Consolidate Cisco detection technologies into a single platform.
Tune alerts across endpoint, SOC, cloud, and network detection platforms.
Assist with the deployment, tuning, and reporting setup of new security services and platforms.
Assist with the creation and maintenance of security playbooks, procedures, and processes.
Assist with the creation and maintenance of security detection and prevention technical policies.
Assist with the selection, implementation, and operationalisation of a cybersecurity case management platform.
Selection Criteria:
Strong knowledge and experience in implementing information security solutions, equivalent to a bachelor's degree and 4 years of security operations experience.
Strong knowledge and experience in a security automation role within an enterprise environment.
Strong API experience, specifically with collecting metrics and developing meaningful reports.
Strong Azure Security Stack & CloudApp Security experience, specifically across log ingestion and utilizing Graph API for reporting.
Automation experience, specifically with vulnerability management, patch management, digital certificate, detection, and remediation playbooks.
Vulnerability management, reporting, and automation.
Hold industry-recognized security certification or equivalent learning and experience such as: CompTIA CySA+, Security+, EC Council CSA, CND; Cisco CyberOps, CCNP Security; Microsoft Certified: Security Operations Analyst, Microsoft 365 Certified: Security Administrator; (ISC)2 SSCP, CCSP or equivalent experience and education.
Deep understanding of network protocols and network security, Cisco security stack advantageous.
Knowledge of one or more security standards/frameworks e.g. NIST CSF, ACSC Essential 8, ISO 27001.
Good working knowledge and experience with operating systems such as Linux, Unix, Windows, as well as proficiency in one or more scripting languages (e.g. Python, PowerShell).
Demonstrated capacity to understand and comply with employer policy and practices in all aspects of work and conduct, including OH&S and Anti-Discrimination responsibilities and complete/attend relevant training.
Desirable:
Offensive Security, Threat Hunting, Incident Response, and Penetration Testing experience and knowledge backed by security certifications such as CEH, CTIA, CPENT, CGFI, APT, OSCP, OSCE, OSEP.
Experience in systems administration, database administration, network administration within an enterprise environment.
Experience in building and automating offensive security tooling for penetration testing, threat hunting, and digital forensic tasks.
This is a contract opportunity running until 23/12/2023, potential of transitioning into fulltime afterwards available for the right candidate.
If you are an experienced Cybersecurity Engineer with a strong technical background in cybersecurity and networking technologies, we encourage you to apply for this exciting opportunity.
