Cybersecurity Analyst - Level 2

Our Why 

Datacom works with organisations and communities across Australia and New Zealand to make a difference in people’s lives and help organisations use the power of tech to innovate and grow. 

Datacom operates our Cyber Security Operations Centres (CDOC's) out of Wellington (NZ) Auckland (NZ) and Brisbane (AU) from where we provide our managed SIEM and our full stack of Cybersecurity services.

Our Cybersecurity Operations Centre is a well-established team made up of Cybersecurity Analysts, Engineers, Devops Engineers and Incident Responders who have been managing customers, both commercial and government, for over 10+ years. We are a matured operational team that not only responds to security events, incidents, and triggers, but a fully-fledged operational team that hunts for anomalous, suspicious, and potentially unwanted activities within our customers environments.

We Partner with industry leaders to provide our services and to provide you with a broad technical skillset, certifications and experience.

About the Role (Your Why)

The core objectives and responsibilities of the Cybersecurity Analyst include analysing security events of interest before managing the incident through to resolution or identifying an opportunity for tuning.

A Cybersecurity Analyst uses defensive measures and information collected from a variety of sources to identify, analyse, and report events that occur or might occur within the network to protect information, information systems, and networks from threats.

What you'll do

• Action regular tasks and processes
• Review and respond to alarms/tickets and escalations from the Level 1 team
• Provide mentorship and direction to the junior team members
• Incident response investigation
• Handle Events of Interest escalations
• Security event analysis
• Log and escalate tickets
• Identify policy changes required based on analysis
• Security use case and correlation rule development
• Threat hunting

What you'll bring

• Deep understanding of Security Information & Event Management (SIEM) and Endpoint Detection and Response (EDR) concepts and functionality
• Knowledge of networks, firewalls, proxies concepts and technologies
• Security industry frameworks such as NIST 800-61, NZISM ·
• Cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity frameworks
• Knowledge of Microsoft Windows domain technologies (e.g. Active Directory)
• ITIL - Information Technology
• CompTIA Security+ study or certification
• Minimum 2 years in a similar security analyst role and security incident response and resolution handling.

Due to the Nature of the Clients you will be working with you will need to be an Australian Citizen with the ability to achieve or already hold a Baseline Clearance.

Why join us here at Datacom? 

Datacom is one of Australia and New Zealand’s largest suppliers of Information Technology professional services. We have managed to maintain a dynamic, agile, small business feel that is often diluted in larger organisations of our size. It's our people that give Datacom its unique culture and energy that you can feel from the moment you meet with us. 

We care about our people and provide a range of perks such as social events, chill-out spaces, remote working, flexi-hours and professional development courses to name a few. You’ll have the opportunity to learn, develop your career, connect and bring your true self to work. You will be recognised and valued for your contributions and be able to do your work in a collegial, flat-structured environment. 

We operate at the forefront of technology to help Australia and New Zealand’s largest enterprise organisations explore possibilities and solve their greatest challenges, so you will never run out of interesting new challenges and opportunities. 

We want Datacom to be an inclusive and welcoming workplace for everyone and take pride in the steps we have taken and continue to take to make our environment fun and friendly, and our people feel supported.