Leidos is an industry leader in IT and airborne solutions, protecting and advancing the Australian way of life. Our team of experts delivers high-stakes problems with code, caffeine, and a healthy disregard for how things have always been done.
We're seeking an experienced Senior Cyber Security Analyst to join our Central Processing Cyber Security Operations Centre (CP SOC) capability with the Department of Defence. This role requires collaboration with stakeholders to triage, manage, and report on security incidents, build relationships with stakeholders, develop SOC tactics, techniques, and procedures, and develop custom signatures to identify, detect, protect, respond, and recover from adversaries' attacks.
* Demonstrate leadership as the shift lead and within the broader team to meet mission and contractual outcomes.
* Work collaboratively with stakeholders to triage, manage, and report on security incidents.
* Actively build relationships with stakeholders.
* Develop and maintain SIEM apps, rulesets, dashboards, and workflows.
* Have intermediate to advanced Windows, Linux, and Networking skills.
* Have intermediate to advanced Incident Response professional skills.
* Familiarity with Trellix EPO, Tenable, and Palo Alto platforms or similar.
This role requires strong communication and stakeholder management skills, as well as a clear working understanding of industry and government cyber security frameworks. We're looking for a self-starting individual who can identify, take ownership of, and solve challenging problems.
Key Responsibilities
SOC Development:
* Develop and maintain SOC tactics, techniques, and procedures.
* Develop custom signatures to identify, detect, protect, respond, and recover from adversaries' attacks.
Incident Response:
* Triage, manage, and report on security incidents.
Relationship Building:
* Actively build relationships with stakeholders.
Technical Skills:
* Intermediate to advanced Windows, Linux, and Networking skills.
* Intermediate to advanced Incident Response professional skills.
* Familiarity with Trellix EPO, Tenable, and Palo Alto platforms or similar.
Education and Qualifications:
* A relevant tertiary qualification in Engineering, Computer Science or equivalent, or significant experience in the field.
* Current NV-1 or NV-2 Security Clearance.
About Us
We value diversity and inclusion, and are committed to creating a workplace where everyone feels welcome, valued, and respected. If you're passionate about making a difference in the world of cybersecurity, we'd love to hear from you!