About Us
We're known for being the country's most popular rewards program, helping Australian's get more of what they value beyond the checkout. And through our extended network of partnerships with other nationally recognised brands, we make every day simpler, easier and more rewarding for our members. Plus, we're also the winner of Canstar Blue's **** and **** Most Satisfied Customer award for Rewards Programs.
Your Role
Support Flybuys in safeguarding its digital assets by leading the design, implementation, and continuous enhancement of threat detection capabilities, with a primary focus on Microsoft Sentinel.
This role bridges engineering and operations, ensuring telemetry is actionable, detections are effective, and threats are swiftly identified and mitigated.
Microsoft Sentinel Engineering
Understand and maintain scalable Microsoft Sentinel deployments across multi-cloud environments.
Develop and optimise KQL-based analytics rules, workbooks, playbooks, and automation workflows.
Integrate Sentinel with Microsoft Defender, Azure Monitor, and third-party security tools.
Lead log ingestion and enrichment pipelines to maximise visibility and detection fidelity.
Provide strategic guidance on data normalisation, enrichment, and threat modelling.
Security Operations & Threat Detection
Collaborate with the SOC to enhance detection coverage and response capabilities.
Conduct proactive threat hunting using Sentinel and other telemetry sources.
Drive remediation of security gaps identified through analytics and investigations.
Support incident response with Sentinel-driven insights, automation, and forensic analysis.
Maintain and improve cloud security posture across Azure and AWS using Sentinel insights.
Detection Engineering & Agile Delivery.
Identify risks and recommend mitigations across infrastructure and application layers.
Translate detection strategies into understandable concepts for non-technical stakeholders.
Contribute to security standards, patterns, and operational artefacts.
Champion continuous improvement in detection engineering practices.
SOC Collaboration & Enablement
Act as a technical liaison between internal teams and the SOC team.
Assist in tuning alerts to reduce false positives and improve signal-to-noise ratio.
Provide mentoring and enablement to SOC analysts on Sentinel capabilities and threat detection techniques.
Participate in shift handovers, incident reviews, and detection strategy sessions.
Your Experience
Proven experience in security engineering with deep expertise in Microsoft Sentinel.
Strong proficiency in KQL, Logic Apps, and Sentinel playbook development.
Experience with SIEM, EDR, and threat detection tooling.
Solid understanding of cloud security principles (Azure & AWS).
Ability to interpret telemetry and identify threats across diverse environments.
Familiarity with agile delivery methodologies.
Bachelor's degree in Cybersecurity, Information Technology, or related field (desirable)
Industry certifications (e.g., SC-200, AZ-500, CISSP) (desirable)
Experience in threat hunting and incident response (desirable)
Exposure to MITRE ATT&CK and threat modelling frameworks (desirable)
Your Benefits
Flybuysflex | work from anywhere, measured on outcomes
Two well-being days per year
Volunteer leave
Ongoing learning & development programs and opportunities
My Coles and Wesfarmers team member discount card
Be Well Programs – Mind/Body/Soul
Quarterly All Team events
Hybrid social events
New starter kit merchandise
Be You, With Us.Apply today
We value ways of working that work for everyone and use our different strengths to make us stronger. We work hard to make sure everyone's voice is heard and respected equally, regardless of identity, background, position, ability or lifestyle.
It is a condition of employment that successful applicants undergo a National Police Check prior to commencing.
#J-*****-Ljbffr