* 6 month (initial) contract
* $1,000 Daily Rate
* NV1 Clearance
* Large enterprise client
We are seeking an experienced and dedicated Security Operations Engineer with a current NV1 Security Clearance to join a major enterprise client on an initial 6 month contract.
This critical role demands strong hands on expertise in SIEM platform management (especially Splunk) and Cloud Web Proxy solutions (Zscaler) within a high security operations environment. This position balances proactive engineering (building/tuning) with reactive incident response.
Responsibilities:
* Configure, manage, upgrade, and maintain SIEM platforms (e.g., Splunk, DEVO), ensuring optimal performance and availability.
* Configure, manage, upgrade, and maintain Cloud Web Proxy platforms (e.g., Zscaler).
* Develop and tune complex use cases, alerts, dashboards, and reports within the SIEM to enhance threat detection and reduce false positives.
* Lead the investigation of complex security cases by correlating patterns across SIEM and other security data sources to identify threats and anomalies.
* Collaborate with technical teams to onboard new logs and establish detection baselines.
Requirements:
* AGSVA NV1 Security Clearance.
* Hands on experience in security operations, triage, investigation, and remediation.
* Advanced, hands on knowledge of Splunk (logging, monitoring, triage, alert reporting, and use case development).
* Solid familiarity with frameworks such as NIST, PSPF, and Australian ISM.
If this opportunity aligns with your expertise and aspirations, please hit apply