We're not your typical cyber team.
We're collaborative, curious, and customer-obsessed and we're looking for a Senior SOC Analyst to join our growing Brisbane based Security Operations Centre. As a senior member of the team, you'll play a hands-on role in the operations, administration and development of security systems. From building high-confidence detection rules and analysing anomalous events to leading incident response and mentoring junior analysts, your expertise will directly shape the effectiveness of our cyber defence capability. This is your chance to take ownership of complex challenges, influence outcomes and continue building your career at the forefront of cyber security.
About Orro
We're an Australian success story, now close to 500 people strong, delivering secure, end-to-end digital solutions across cloud, collaboration, cyber security, data services and network infrastructure, all backed by over 20 years of experience. Trusted by some of Australia's biggest brands, Orro leads the way in designing, building and operating digital infrastructure that delivers greater efficiency, agility, performance and resilience. Our solutions take the stress out of tech for more than 400 businesses and over 20 million Australians every single day.
Our mission? To create "future now" solutions making it faster, simpler and safer for people to access, store and share information, wherever they are and whoever they're with. But more than that, we know that real impact comes from connecting people, not just machines. That's why we take the time to understand our clients; how they work, what matters to them, and where they're headed so we can deliver not just what they need today, but what they'll need next.
With offices in Sydney, Melbourne, Canberra, Brisbane and Perth, and teams across New Zealand, the Philippines and the UK, Orro is known for delivering future-ready solutions, backed by deep expertise, genuine human insight and lasting partnerships.
What You'll Be Doing
As a senior member of the Security Operations Centre team in Brisbane, you will be focused on working with the team to perform ongoing operations, administration and development of security systems. You will continuously work towards high confidence and high fidelity detection rules leveraging anomalous or suspicious events in collaboration with other SOC team members.
* Analyse SIEM events and triage incidents, identifying and escalating potential threats with precision and urgency
* Proactively monitor and investigate suspicious activity, including phishing campaigns, domains and IPs, using advanced tools and threat intelligence
* Lead incident response efforts across diverse customer environments, guiding stakeholders through complex and high-pressure situations
* Drive threat hunting and vulnerability assessments, creating and fine-tuning detection rules to strengthen defences
* Mentor and coach junior SOC analysts, building team capability and confidence
* Design, document and implement new security configurations, integrations and processes to enhance managed security operations
* Deliver outstanding operational support, actively driving outcomes for customers.
What You'll Bring
You bring curiosity, structure and a hunger to learn, along with great team spirit and a growing passion for cyber security. At the same time, you are a well-organised professional who shows initiative and enthusiasm, with more than five years of relevant experience. Ideally, your toolkit includes the following skills and expertise:
* Proficiency with SIEM, XDR and EDR technologies such as Splunk, Microsoft Sentinel and SentinelOne
* Hands-on experience with Microsoft Security Platforms
* Strong background working with Linux and Unix systems
* Knowledge of vulnerability management tools including Rapid7, Tenable and Qualys
* Experience in large-scale IT Security Operations
* Proven capability in incident response and digital forensics
* Solid understanding of the MITRE ATT&CK Framework and Cyber Kill-Chain
* Familiarity with security standards and frameworks including NIST and ISO/IEC 27000 series
* Ability to clearly explain technical details to both technical and non-technical audiences
* Extensive expertise in cloud computing, networking, firewalls and ITSM concepts
Even if you don't tick every box, don't let that hold you back. If this sounds like your kind of challenge, we'd genuinely love to hear from you.
Why Orro?
At Orro, we're proud to support our people and the people who matter most to them in meaningful and inclusive ways. From public holiday swaps that embrace family and cultural diversity, to generous parental and caregiver leave, flexible work options, and company-wide mentoring, we're here to help you thrive at every stage of life.
We also invest in the future through our Emerging Leaders Development Program, nurturing the next generation of talent from within. On top of that, you'll enjoy 3 days of paid volunteer leave each year, novated leasing, employee discounts, and full access to our wellbeing platform packed with expert fitness plans, nutrition tips, and tools to help you feel your best, inside and out.
*Note: The role is subject to state and federal police background checks.