Connected Together
Cyber Security Analyst
Location
Australia
Posted
6 days ago
Salary
0
Seniority
Mid Level
Job Description
Cyber Security Analyst
Centorrino Technologies
Role Description At Centorrino Technologies (CT), we’re more than just tech—we’re a community that goes beyond expectations. We’ve been recognised as a Great Place to Work in 2024 and one of the Best Places to Work Medium Size in Australia for 2024, with an outstanding eNPS score of 68. And we’re not stopping there. We're on a mission to redefine the customer experience, and we need a passionate Cyber Analyst to join our team in Melbourne and/or Perth. This role requires NV1 security clearance. - Conduct real-time monitoring of security alerts and incidents utilising our SIEM tools (FortiSIEM and MS Sentinel) to ensure swift identification and resolution of potential threats. - Utilise vulnerability management tools such as Tenable and MS Defender to report on vulnerabilities within customer environments and propose appropriate remediation plans. - Conduct security awareness training sessions for customers to foster a security-conscious culture. - Conduct regular security meetings with CT customers by generating reports and presenting findings. - Collaborate with all stakeholders to configure and fine-tune security tools, including EDR solutions, application control, firewalls, intrusion detection systems, and anti-malware software. - Develop and maintain comprehensive documentation on security procedures and guidelines. - Stay up-to-date with the latest cyber security trends, technologies, and best practices to continuously enhance our security posture. Qualifications - An NV1 Security Clearance is required to be eligible for this role. - Experience with any SIEM products, ideally FortiSIEM and/or Microsoft Sentinel. - Familiarity with IDS/IPS, EDR Solutions, cloud technologies and endpoint protection. - Knowledge of network protocols, security architectures, and information security frameworks. - Ideally experience in conducting vulnerability assessments and remediation. - Excellent analytical and problem-solving skills, with the ability to think critically and respond quickly to security incidents. - Effective communication and teamwork skills, with the ability to convey complex technical concepts to non-technical stakeholders. - Ideally experience in conducting vulnerability assessments and remediation using products such as Tenable and Microsoft Defender. - Working with user Cybersecurity Awareness training software such as uSecure or Microsoft based training modules. - Relevant certifications are beneficial (e.g., Tenable Vulnerability Management Specialist Course, SC-900, SC-200, SC-100). Benefits - Extensive training and development opportunities that enable continual growth as part of your career planning. - Extensive discounts and benefits to maximise your money. - A choice of your IT equipment to maximise your success and access to cost-price tech for your personal needs. - Fun team events to celebrate achievements and connect with colleagues outside work as part of our engaging culture. - CT celebrates diversity and enables every voice to be heard as we drive to create the world we want. Note: A valid Vulnerable People / Working with Children Check (WWCC) and Police Check are required.
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
Role Description Develop and maintain a forward-looking cybersecurity strategy while integrating emerging technologies into the AIOps roadmap. Ensure security designs align with overarching business and IT objectives by collaborating with Security Architects and IT teams. - Provide technical direction for implementing security solutions and maintaining consistency across platforms. - Lead innovation initiatives by researching new security technologies and enhancing existing systems and processes. - Design data integration solutions that support AI training while ensuring compliance with regulatory requirements. - Assess technical security risks, implement mitigation strategies, and conduct vulnerability management activities. - Act as a technical leader, collaborating with cross-functional teams and supporting security incident investigations. - Promote security best practices, monitor performance metrics, and design scalable AIOps solutions that align with business goals. 100% telecommuting allowed from any location in the U.S. Qualifications - Master’s Degree in Information Systems, Cybersecurity, Information Technology, or a related field. - Two (2) years of experience in the job offered or related field. - Employer is willing to accept Bachelor’s degree and Five (5) years of experience in the job offered or related field in lieu of the Master’s Degree and Two (2) years of experience. Requirements - Two (2) years demonstrated experience in working with cybersecurity principles, practices, and technologies. - Two (2) years demonstrated experience in working with machine learning and data analysis techniques. - Two (2) years demonstrated experience in developing and implementing technical security and AIOps strategies. - Experience working with the following security technologies, platforms, and AIOps tools: - Firewalls - Intrusion Detection & Response (EDR) - Security Information & Event Management (SIEM) - Identity & Access Management (IAM) - Data Loss Prevention (DLP) - Cloud Security Solutions - Zero Trust Security Frameworks - Threat Intelligence Platforms - Vulnerability Management Platforms - Application Security Platforms - Security Orchestration, Automation, and Response (SOAR) - App Dynamics - Datadog - Dynatrace - Splunk IT Service Intelligence (ITSI) - LogicMonitor - BigPanda - AI & Machine Learning Fundamentals: working with supervised/unsupervised learning, neural networks, and model training. - Data Engineering: working with data ingestion, transformation, and pipeline management. - Cloud Platforms: working with Azure and Databricks for implementing AIOps. - Scripting & Automation: working with Python, Bash, or PowerShell for automating tasks and workflows. - Monitoring & Observability Tools: working with tools like Splunk, Evidently, Azure monitoring. - DevOps & CI/CD: working with Jenkins, Github Actions. - MLOps: Managing ML models in production, including versioning, monitoring, and retraining. Benefits - Competitive compensation package. - Base pay determined by performance, experience, skills, equity, regular job market evaluations, and geographical markets. - Other compensation, such as an annual bonus or long-term incentive opportunities may be offered. Contact To apply, please send resumes to JobPostings@McKesson.com . Reference #: 002251.
Cybersecurity Analyst (SOC) N2
OnePointWepoint is the architect of major transformations for businesses and public sector organizations. We support our clients from strategy through technological implementation, always striving to think beyond the obvious and to act within the framework of Economic, Social, Environmental, and Technological Responsibility (RESET). Our goal is to create new ways of working, new economic models, and smarter environments. In nearly 20 years, we have become one of the key players in digital transformation, employing 3,500 people across Europe, Tunisia, North America, and the Asia-Pacific region.
Role Description L'Analyste SOC assure la surveillance des événements de sécurité au sein du Centre d’opérations de sécurité (SOC) 24×7. Le but principal de cette position est de fournir une analyse et une réponse rapide aux menaces détectées. En tant qu’Analyste de Cyber Sécurité, vous êtes non seulement responsable de la surveillance, de l’analyse et de la résolution en temps réel des incidents de sécurité identifiés, mais vous serez également responsable du développement continu et de l’amélioration des capacités 24×7 du Centre d’Opérations Sécurité (SOC). Responsabilités - Fournir une analyse des tendances des données des journaux de sécurité à partir d'un grand nombre de dispositifs de sécurité hétérogènes; - Analyser les journaux de sécurité de différentes sources (proxy, pare-feu, réseau, serveurs Web et appareils Linux/Windows) pour comprendre la source/l'impact des enquêtes/incidents de sécurité; - Fournir une enquête approfondie, une analyse et une réponse experte aux incidents pour les alertes de sécurité; - Assurer la liaison avec les équipes informatiques et les autres équipes cybersécurité pour effectuer une analyse sur les systèmes compromis afin d'identifier l'étendue et la nature de la compromission et fournir des recommandations sur les mesures correctives; - Assurer la liaison avec les équipes informatiques lors des investigations incident et post incident pour contenir, éradiquer les intrusions et mettre en œuvre des mesures de remédiation; - Développer des capacités de chasse aux menaces et aider au développement et à la validation des cas d'utilisation; - Fournir de l'aide et des conseils aux analystes de niveau I; - Faire remonter les incidents de sécurité potentiels aux analystes de niveau 3; - Travailler à l'optimisation des processus de résolution d'incident, y compris, mais sans s'y limiter, l'automatisation des processus et le développement de tableaux de bord; - Assurer la liaison avec les équipes informatiques et les autres équipes cybersécurité pour mettre en œuvre les meilleures pratiques de sécurité et faire mûrir l'incident de sécurité; - Collaborer avec d'autres équipes TI et cybersécurité régionales et mondiales dans les enquêtes/incidents de sécurité; - Suivre et suivre la documentation liée aux incidents, y compris les analyses des causes profondes et les leçons apprises, et mettre à jour les plans de résolution des incidents en conséquence; - Fournir les métriques de réponse aux incidents et les KPI; - Capacité à hiérarchiser et à équilibrer plusieurs enquêtes et incidents; - Aider à développer et à maintenir des procédures d'exploitation standard, un plan de réponse aux incidents et des playbooks; - Participer aux audits internes et externes. Qualifications - Baccalauréat ou supérieur en informatique, ingénierie, informatique ou discipline connexe; - Plus de 5 ans d'expérience professionnelle dans le domaine de la technologie, dont un minimum de 3 ans et plus en SOC; - Expérience minimum de 2 ans avec les plateformes SIEM telles que Kibana : rédaction de recherches, création de tableaux de bord et réalisation d'enquêtes; - Expérience avec EDR, NDR et autres systèmes similaires : effectuer des analyses et collecter des preuves; - Excellente connaissance des frameworks standard de l'industrie (tels que MITRE ATT&CK); - Solide expérience technique et familiarité avec divers types et techniques de cyberattaques avec le cycles de vie de réponse et de chasse aux menaces et incidents; - Excellente communication en français et en anglais. L'anglais est requis, le poste demandant de communiquer avec des partenaires et des clients situés à l'extérieur du Québec; - Seuls les candidats légalement autorisés à travailler pour tout employeur au Canada seront considérés. Benefits - Minimum of 3 weeks of vacation starting from the first year; - Comprehensive group insurance with a generous employer contribution; - Employer contribution to a group RRSP; - Full remote work flexibility: Hybrid, Remote, or On-site; - A warm, bright, and welcoming office offering fresh fruit, coffee, beverages, occasional meals, etc.; - Annual IT equipment budget; - A balanced work environment with flexible working hours; - Career development: training and certifications, online or in-person learning, Wepoint Academy, etc.; - An international community of experts ready to share their knowledge; - A company culture focused on individuals’ needs and their belonging to a strong community.
Threat and Vulnerability Analyst
EnsonoEnsono delivers complete Hybrid IT solutions, from mainframe to cloud, tailored to each client’s journey.
• Assist in the execution of vulnerability and threat management initiatives under the guidance of senior team members. • Collaborate with team members to prioritize tasks and allocate resources effectively. • Participate in team meetings, contributing insights and ideas for enhancing security practices. • Utilize automated scanning tools to perform regular vulnerability scans across the Ensono infrastructure. • Aid in analyzing scan results to identify vulnerabilities, misconfigurations, and weaknesses in systems and applications. • Assist with classifying vulnerabilities based on severity levels and prioritize remediation efforts accordingly. • Work with Service Delivery Managers, System Administrators, Network Engineers, and Application Developers to understand the root causes of vulnerabilities and facilitate their remediation as required. • Contribute to the maintenance of a centralized repository for vulnerability reporting. • Assist in monitoring external threat intelligence sources for relevant information on emerging threats and vulnerabilities. • Support the analysis of incoming threat intelligence to assess its potential impact on Ensono's environment. • Aid in reviewing and refining vulnerability management processes and procedures to improve efficiency. • Assist in identifying opportunities for automation and workflow optimizations to streamline operations. • Collaborate with internal stakeholders to raise awareness of security risks and solicit support for remediation efforts. • Assist in monitoring team performance against key performance indicators (KPIs) and tracking progress on vulnerability management activities. • Seek feedback from senior team members and utilize it to continuously improve your performance and contribute effectively to the team's success.
Global Security Systems Service Desk Analyst
Securitas Security ServicesSecuritas’ mission is to protect homes, workplaces, and communities by providing the security services they need to protect their assets, safeguard their people, and maintain their ability to generate profits. Core values - Integrity, Vigilance, and Helpfulness Employees come from diverse backgrounds, bringing distinctive skills and perspectives.
Role Description The Global Security Systems Service Desk Analyst is a critical operational role responsible for ensuring the stability and performance of enterprise physical security systems. Acting as the central point of coordination, this role manages service requests from intake through resolution, performing advanced troubleshooting and orchestrating field response when necessary. This position requires a blend of technical expertise, analytical thinking, and service ownership. The ideal candidate is comfortable operating in a fast-paced environment, making real-time decisions, and driving issues to resolution while maintaining a high standard of customer service. Key Responsibilities - Serve as the primary point of contact for all incoming service requests related to physical security systems (via phone, email, and ticketing systems). - Perform advanced triage and root cause analysis to diagnose system issues. - Execute remote troubleshooting and resolution, minimizing the need for onsite dispatch whenever possible. - Determine incident severity and business impact; prioritize work in alignment with SLAs. - Coordinate and dispatch field technicians, ensuring proper scope, parts, and information are provided. - Own incidents end to end, including follow-ups, status updates, and final resolution validation. - Monitor system health, alerts, and dashboards to proactively identify and mitigate issues. - Collaborate with engineering, vendors, and cross-functional teams to resolve complex or recurring issues. - Identify trends and recurring problems; recommend process improvements or system enhancements. - Maintain accurate and detailed documentation in ticketing systems, including resolution steps and root cause. - Contribute to and maintain a knowledge base to improve team efficiency and first call resolution rates. - Provide guidance and informal mentoring to junior team members or technicians as needed. - Ensure compliance with security policies, data protection standards, and confidentiality requirements. Technical Scope - Enterprise Access Control Systems: Lenel OnGuard - Video Management Systems (e.g., Milestone, Lenel OnGuard) - Alarm monitoring and event management systems - Device connectivity (controllers, readers, cameras) - Basic network troubleshooting (IP addressing, connectivity, latency, device communication) - Troubleshoot integration points between security systems and IT infrastructure - Axis (or equivalent) enterprise level IP CCTV configuration, commissioning & fault finding Qualifications - 3–5 years of experience in technical support, systems analysis, or security systems service operations roles. - Experience with physical security systems (access control, CCTV) or closely related technologies. - Proven experience in incident management, triage, and issue resolution. - Strong troubleshooting skills across software, hardware, and network connected systems. - Ability to manage multiple concurrent incidents with competing priorities. - Strong written and verbal communication skills with a customer-first mindset. - Demonstrated ability to take ownership and drive issues through to completion. - Experience working with ticketing systems (e.g., APEX, Jira Service Management). Preferred Qualifications - Experience supporting enterprise scale security environments (Data Centre environments). - Familiarity with ITIL practices (incident, problem, and change management). - Experience coordinating or dispatching field service teams. - Working knowledge of networking fundamentals (TCP/IP, ports, device communication). - Experience working with vendors or third-party service providers. - Experience working with Data Centre co-location service providers. Work Environment & Additional Requirements - Will need to be highly self-motivated and comfortable working independently. - The work is often non-routine and highly complex, involving the application of advanced technical and business skills within the area of specialization. - Although predominantly supporting the EMEA region, there is an expectation to assist the wider global team in delivering a 24x7 “follow the sun” support model. - Primarily a remote role, with occasional onsite support as required. - Participation in an on-call rotation or after-hours support may be required. - Ability to work in a fast-paced, high availability environment supporting critical infrastructure. Key Performance Indicators (KPIs) - SLA adherence (response and resolution times). - First call, first contact resolution rate. - Incident backlog and aging. - Customer satisfaction (CSAT). - Accuracy and completeness of ticket documentation. Key Success Factors - Strong analytical and troubleshooting mindset. - Ability to remain composed and decisive under pressure. - Effective coordination across technical and non-technical teams. - High level of accountability and ownership. - Continuous improvement mindset with attention to detail. Benefits - Retirement plan. - Employer-provided medical and dental coverage. - Company-paid life insurance. - Voluntary life and disability insurance. - Employee assistance plan. - Securitas Saves discount program. - Paid holidays. - Paid time away from work. - Access to earned wages on a daily basis, prior to payday (restrictions and fees may apply).



