Cyber Security Engineer - ACT 12mo FTC

Get to Know Us

Imagine joining an organisation that has a fully flexible working culture and an award-winning brand! That’s exactly what you will get when you join Centorrino Technologies. Our values, our people, our brand, and our customers mean everything to us.

Here at CT, we put a lot of effort into delivering the best customer experience of any managed ICT provider in Australia.

We work pretty hard at CT, but that doesn’t come without a little play.

• Work from the ACT Office
• Training and development – We offer heaps of courses, certifications, and coaching
• Wellbeing Subsidies – You’ll get discounts on your gym, yoga and pilates memberships
• Cost Price Tech – CT discounts
• Events, Events, Events for everyone!
• Everyone has a very personalised career and learning plan. Our commitment is to help you to become the best you can be.
• The list goes on….

Here’s what you’ll be doing:

1. Develop and maintain of SIEM alerts and dashboards to aid with threat detection.
2. Work with Security Analysts to understand, develop and maintain automatic detection and response capabilities using available SOAR capabilities.
3. Utilise available threat intelligence to enrich alerts.
4. Develop and maintain team SOPs and playbooks for SIEM management and configuration, including, alert exclusions and alert tuning.
5. Assist with the upkeep of the SecOps environment where needed.

Here’s what you’ll bring:

Essential criteria

1. Demonstrated experience managing/maintaining logging and SIEM technologies

2. Demonstrated knowledge of cyber security principles and processes in a defensive context

3. Demonstrated ability to develop alerting rules and dashboards to assist with threat detection and incident response.

4. Ability to learn and understand how the operating environment functions normally and effectively identify anomalies when they occur

5. Demonstrated experience with development practices and DevOps pipelines.

Desirable criteria

1. Experience with Azure Sentinel, Kusto Query Language (KQL) and Azure logging mechanisms

2. Experience with Microsoft’s suite of security tools, including Azure Security Centre, Microsoft 365, and Microsoft ‘Defender for’ tools (Endpoint, Identity, etc.)

3. Experience managing a Windows environment, including patching, Active Directory and Group Policy management.

4. Experience utilising threat intelligence services and tools such as MISP to enrich data and alerts that originate from SIEM and logging tools such as Syslog-ng.

IMPORTANT!

All our team members are required to obtain and maintain a valid Victorian Working with Children Check, and Police Check.

Security Level: Must be able to obtain Negative Vetting 1

Working Arrangements:

Full Time Requirement: Onsite, standard 8 hours per day, and 40 hours per week in total. Flexible Working Arrangements (including remote working arrangements): Requests will be considered on a case-by-case basis against the business requirements of the department and the needs of the immediate work area. Reduced Activity Period - A reduced activity period may apply where the specified personnel will not work unless the buyer has provided pre-approval in writing, which includes: • public holidays; and • Christmas shutdown, from 12:30 pm on the last working day before Christmas Day and reopening the first working day following the first day of January each year.

Estimated start date

Saturday, 01 July 2023

Initial contract duration

Until 30 June 2024

Extension term

12 months

Number of extensions

2

When you join Centorrino Technologies, you know you are joining an organisation that is driven by our values and innovation. We are proud to be an equal opportunity employer, and are committed to building a diverse and inclusive workplace where we embrace our individual talents, and our differences. We encourage applications from people of all ages, disabilities, LGBTQI, First Nations people and people from culturally diverse backgrounds.

We look forward to hearing from you!