Overview
We are seeking an experienced and driven Team Lead to support the operational needs of our Managed Detection and Response (MDR) customers. The ideal candidate will play a pivotal role in managing real-time cybersecurity incidents and providing technical leadership to a team of threat analysts. You will collaborate closely with threat hunters, incident response analysts, engineers, and ethical hackers to proactively detect, investigate, and mitigate cyber threats. This role reports directly to the Manager of MDR Operations - Australia and offers flexibility for candidates located throughout Australia.
About Sophos: Sophos is a global leader and innovator of advanced security solutions for defeating cyberattacks. The company acquired Secureworks in February 2025, bringing together two pioneers that have redefined the cybersecurity industry with their innovative, native AI-optimized services, technologies and products. Sophos is the largest pure-play MDR provider, supporting more than 28,000 organizations. The Sophos portfolio includes endpoint, network, email, and cloud security that interoperate through the Sophos Central platform.
What You Will Do
* Lead and mentor a team of threat analysts, overseeing day-to-day tasks and incident response activities
* Coordinate and manage the investigation of security incidents, determine root causes, and ensure swift resolution
* Act as a subject matter expert (SME) during cybersecurity incidents, leading response efforts and providing technical guidance
* Maintain up-to-date knowledge of attacker tactics, techniques, and procedures (TTPs) and generate actionable intelligence for proactive defense
* Develop and implement incident handling processes and ensure consistent execution across all incidents
* Conduct network and endpoint intrusion analysis, digital forensics, and malware analysis to support investigations
* Communicate findings and incident details effectively to technical and non-technical stakeholders
* Collaborate with the wider team to operationalise threat intelligence and produce Indicators of Compromise (IOCs) for future use
* Engage in threat hunting activities to identify and mitigate emerging threats
* Champion continuous improvement to refine incident response and threat detection methodologies
What You Will Bring
* Minimum of 5+ years of experience in cybersecurity, preferably with leadership experience in a SOC or similar environment
* Proven expertise in managing and responding to advanced security incidents and intrusions
* Bachelor's Degree in Information Technology, Computer Science, or equivalent practical experience
* Deep understanding of threat detection, incident response, and/or digital forensics
* Strong knowledge of endpoint and network security technologies (e.g., IDS/IPS, EDR, ATP, malware defenses)
* Hands-on experience in threat hunting and identification of advanced attack techniques (persistence, evasion, obfuscation)
* Familiarity with MITRE ATT&CK and similar frameworks for adversary behavior mapping
* Strong analytical and troubleshooting skills, with experience in constructing SQL queries and using OSQuery or similar
* Proficiency in scripting languages such as PowerShell or Python, with ability to automate tasks
* Experience administering Windows, macOS, or Linux-based operating systems in an enterprise environment
* Knowledge of incident response tools and procedures; certifications like CISSP, GIAC, or OSCP are desirable but not required
* Strong Windows event log analysis skills
* Excellent documentation and communication skills; ability to convey complex information clearly
* Strong interpersonal skills and the ability to communicate across organizational levels
* A proactive approach to learning new tools, techniques, and processes
* Commitment to diversity and inclusion and a genuine passion for cybersecurity
Desirable
* Experience with threat intelligence and IOCs production
* Knowledge of additional security domains and cloud security concepts
What’s Great About Sophos
* Remote-first working model; some roles may require a hybrid approach
* Collaborative culture with focus on innovation and team spirit
* Employee-led diversity and inclusion networks, volunteering initiatives, and wellbeing programs
* Global sustainability and wellness initiatives
Our Commitment To You
We are committed to a diverse and inclusive environment and to equality of opportunity. All applicants will be treated fairly and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, veteran status, disability, pregnancy or sexual orientation. If adjustments are needed for the recruitment process, please let us know.
Data Protection
If you share your CV or other personal details with Sophos, these details will be held for 12 months in accordance with our Privacy Policy. You may request deletion or updates to your data at any time by following the steps in the Privacy Policy.
Seniority level
* Not Applicable
Employment type
* Full-time
Job function
* Information Technology
Industries
* Software Development
#J-18808-Ljbffr