Cyber Security Engineer | SOC Automation & Global Network Defence
* Security Clearance: NV1 (Active and Mandatory)
About the position
This Cyber Security Engineer role sits within a national-level Cyber Operations function responsible for protecting a globally distributed network operating across diplomatic missions and domestic infrastructure.
The focus is defensive cyber engineering not advisory reporting. You will work hands‐on across security event analysis, automation uplift, incident response, and continuous SOC improvement initiatives aligned to long‐term resilience objectives.
This is a delivery‐focused role within an operational security environment.
What you'll do
* Design and maintain security automation playbooks and workflows to improve SOC efficiency
* Analyse logs and security events across hybrid environments to identify anomalous behaviour
* Contribute to incident response, remediation, and threat hunting activities
* Build and optimise integrations between SIEM platforms and enterprise systems
What we are looking for
* Minimum 3 years' experience operating as a Cyber Security Engineer within active SOC environments
* Practical experience integrating and tuning SIEM platforms in hybrid Azure/AWS environments
* Demonstrated ability to develop and test automation workflows (e.g. Splunk SOAR)
* Strong written communication skills and disciplined documentation practices
Seniority fit
* This role suits engineers comfortable operating at SFIA Level 5 within structured cyber operations environments
* Experience contributing to SOC uplift and automation roadmaps is expected
* Ability to share knowledge and collaborate within high‐trust security teams is important
Technology & environment
* SIEM and SOAR platforms (Splunk, Splunk SOAR)
* Hybrid log ingestion across Azure and AWS environments
* Security automation playbooks and Risk Based Alerting (RBA) frameworks
* eDiscovery and investigative tooling (e.g. Nuix – desirable)
* This role operates within an active cyber operations environment protecting globally distributed systems
* If your recent experience has been limited to policy, audit, or governance‐only roles without hands‐on SOC engineering exposure, this may not align with current requirements
* An active NV1 security clearance is mandatory
* The position requires full‐time onsite attendance in Canberra
To showcase your interest for the position, click on 'APPLY' on our website or for any further information, please contact Sanat Anmadwar on. We look forward to seeing how your expertise can help us achieve excellence!
#J-18808-Ljbffr