Principal Cyber Security Analyst -NV1 Clearance - Canberra
Key Responsibilities
The Senior Cyber Security Analyst will be responsible for:
* Operationalising log sources and developing use cases for newly onboarded systems.
* Monitoring, fine-tuning, and enhancing cyber security platforms and detection mechanisms.
* Developing, maintaining, and updating security playbooks and documentation to support operational activities.
* Analysing security logs and events to detect anomalous behaviour, identifying threats, and recommending security improvements.
* Leading and supporting cyber incident response activities including containment, eradication, recovery, and lessons learned.
* Conducting proactive threat hunting and collaborating with threat intelligence teams to identify emerging risks.
* Maintaining high-quality technical documentation and contributing to continuous improvement of security operations.
Essential Criteria
1. Minimum of 3 years' experience as a Cyber Security Analyst (or similar role).
2. Demonstrated experience in designing, implementing, and testing cyber security use cases for threat detection.
3. Proven experience in cyber incident response and remediation.
4. Strong teamwork, knowledge-sharing skills, and stakeholder collaboration.
5. Well-developed written communication skills, with experience maintaining technical documentation and operational procedures.
6. Experience working with and managing threat intelligence feeds or platforms.
Desirable Criteria
1. Experience using Splunk SOAR to create security automation playbooks.
2. Knowledge of Splunk Risk-Based Alerting (RBA) methodologies.
3. Formal qualifications in Information Technology, Cyber Security, or relevant Microsoft/Splunk certifications.
4. Industry certifications such as CISSP, GCIH, GCIA, GCFA, CEH or equivalent.
SeniorCyberSecurityAnalyst #CyberSecurityJobs #CanberraJobs #FederalGovernmentJobs #ICTJobs #NV1Clearance #SecurityClearedJobs #CyberOperations #SOCAnalyst #IncidentResponse #ThreatHunting #ThreatIntelligence #Splunk #SplunkSOAR #SIEM #CloudSecurity #LogAnalysis #PlaybookAutomation #RiskBasedAlerting #CISSP #GCIH #GCIA #MicrosoftSecurity #CyberDefense #CyberResilience #InfoSec #ZeroTrustSecurity #DigitalSecurity #AustralianGovernment #SecurityOperations #CyberSecurity