Cybersecurity Analyst - Level 1

Our purpose

Here at Datacom we connect people and technology in order to solve challenges, create opportunities and discover new possibilities for the communities we live in.

Our team

Datacom operates three Cybersecurity Defence Operations Centres (CDOC’s) in Wellington, Auckland, and Brisbane from where we provide our managed SIEM and our full stack of Cybersecurity services.

Our Cybersecurity Defence Operations Centre is a well-established team made up of Cybersecurity Analysts, Engineers, Devops Engineers, and Incident Responders who have been managing customers, both commercial and government, for over 10+ years. We are a matured operational team that not only responds to security events, incidents, and triggers, but a fully-fledged operational team that hunts for anomalous, suspicious, and potentially unwanted activities within our customers environments.

We Partner with industry leaders to provide our services and to provide you with a broad technical skillset, certifications, and experience.

This is an exciting time of growth, and our driven team need to grow to meet the increased demand and activity. We are looking for a mix of Analysts from Junior to Level 1 (2+ years exp.)

About the Role

The core objectives and responsibilities of the Cybersecurity Analyst include analysing security events of interest before managing the incident through to resolution or identifying an opportunity for tuning.

A Cybersecurity Analyst uses defensive measures and information collected from a variety of sources to identify, analyse, and report events that occur or might occur within the network to protect information, information systems, and networks from threats.

What you’ll do (Basics)

• Action regular tasks and processes
• Review and respond to alarms/tickets
• Incident response investigation
• Handle Events of Interest escalations
• Initial triage
• Security event analysis
• Log and escalate tickets
• Identify policy changes required based on analysis
• Security use case and correlation rule development
• Threat hunting

What you’ll bring (Basics)

• Understanding of Security Information & Event Management (SIEM) and Endpoint Detection and Response (EDR) concepts and functionality
• Knowledge of networks, firewalls, proxies concepts and technologies
• Security industry frameworks such as NIST 800-61, NZISM
• Cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity frameworks
• Knowledge of Microsoft Windows domain technologies (e.g. Active Directory)
• ITIL - Information Technology
• CompTIA Security+ study or certification
• Minimum 1 - 2 years in a similar security analyst role and security incident response and resolution handling.

The Finer Details

Datacom is Australasia's largest homegrown tech company. We proudly bring together technology and expertise to deliver sustainable solutions for some of New Zealand and Australia’s largest and most successful corporations.

We work closely with leading technology partners across a wide range of applications to help organisations better manage their digital assets. Our team of consultants and specialists deliver a broad spectrum of operations — incorporating cybersecurity, cloud, and digital platforms and applications — designed to empower our customers with unparalleled data protection and customer care service. We operate mission-critical infrastructure, with best-in-class data centre facilities, and deliver a range of payroll products and enterprise software to help councils and businesses better connect with citizens and employees.

We are the biggest and best technology company in Australasia that you may not have heard of – and we are only getting started