We are looking for a Senior Cyber Security Analyst to join our growing team in Brisbane or Sydney.

As a member of the Managed Security Services team, a Senior Cyber Security Analyst will be focused on working with the team to perform ongoing operations, administration and development of security systems. You will continuously work towards high confidence and high-fidelity detection rules leveraging anomalous or suspicious events in collaboration with other SOC team members, including SOC Engineers and Operations.

Your main responsibilities will include but are not limited to:

• Recognise potential, successful, and unsuccessful intrusion attempts and compromises through correlation analysis of relevant event detail and summary information;
• Provide mentoring and operational guidance to less experienced team members;
• Undertake managed security services tasks in accordance with managed services procedures and practices to meet defined customer Service Level Agreements;
• Work within the managed services team to perform ongoing operations, administration and development of security systems;
• Develop and document new configurations, modules, software and integrations supporting both managed security processes and systems;
• Perform SIEM-based event analysis and incident triage and perform coordination and management of security incidents and projects, remotely and onsite, with internal and external stakeholders;
• Lead and coordinate threat hunting activities, perform and lead vulnerability assessment activities, and develop new detection capabilities and concepts through the creation and tuning of alerts;
• Maintain or gain technical proficiency with common IT tools, applications and environments, including automation, systems administration, cloud infrastructure and application environments;
• Conduct proactive monitoring, investigation, and escalation of security incidents; and
• Provide implementation services for customer and internal security projects, including all facets of customer liaison, and problem resolution to ensure successful completion.

We are looking for a well-organised professional, with initiative and enthusiasm. You will have at least 4 years of relevant experience and will have a good mix of the following skills, knowledge & experience:

• Experience leading high performing technical teams;
• Experience leading incident response activities including managing interactions with customers, boards and all components of IR;
• Strong ability to work with minimal supervision;
• Experience designing, deploying and managing Microsoft security platforms including Sentinel, Defender;
• Experience working with Linux and/or Unix based systems;
• Experience of working/supporting large scale IT Security Operations practices;
• Solid understanding of the MITRE ATT&CK Framework add cyber kill-chain;
• Knowledge of security principles and techniques and understanding of IT security related technologies (e.g. Endpoint Detection and Response, data encryption, PKI, DLP/IDS, etc.); and
• Ability to document and explain technical details clearly and concisely to both technical and non-technical audiences.

Qualifications (Required)

• A qualification in computer science (Certificate, Diploma, Bachelor’s, Masters)
• Relevant and current advanced certifications (SABSA, Blue Team Level 1 Certification, SANS Incident Responder, etc.) or equivalent experience in information security
• Australian Working Rights

Note: The role will be subject to state and federal police background checks.

Why Orro?

Orro is an exciting Australian technology company with a wealth of experience and expertise. We welcome and celebrate diversity of perspectives, background, and experience. We are committed to creating a workplace that supports diversity of all cultures including LGBTQI and those living with a disability including those on the autism spectrum.

If you require any assistance with submitting your application or need to discuss reasonable adjustments in the recruitment process, please get in touch with us on our website.

We are also a company that takes its Corporate Social Responsibility seriously and we try our best to positively impact society and the environment in all possible ways.

What's in it for you?

• An opportunity to join a rapidly growing national organisation – we were recognised as one of Australia’s fastest growing companies, making the 2021 AFR Fast100 list.
• Orro was also named Fortinet’s APAC Partner of the Year 2021.
• An opportunity to work with a supportive and passionate team to change the way Australian businesses connect, collaborate, and operate.
• An opportunity to drive a pivotal function within a growing business at an exciting point in its history.
• A competitive remuneration package.

We also support our staff and their loved ones in a variety of ways, including public holiday swaps to support family responsibilities and diversity with religious holidays.

Additionally, we give 3 x paid volunteer days, employee discounts, as well as access to our wellbeing platform providing exercise programs and food tips to help you reach your health and fitness goals!