Security Engineer

The Role:

The Security Engineer is responsible for the implementation and maintenance of enterprise solutions required to keep an organisation secure and ensuring these solutions remain fit for purpose. They are technical risk management professionals capable of assessing cyber security threats and vulnerabilities, and then implementing controls across a broad range of technologies and vendors to mitigate risks. 

Essential Skills:

  • Experience with implementation and configuration of SIEM products.

  • Experience in the automation of security incident response (SOAR).

  • Relevant scripting and programing skills (Powershell, Python, RegEx, Logic Apps etc)

  • Configuration and maintenance of Network IPS, Vulnerability Scanning, Endpoint Protection, Firewalls, Cloud Access Security Brokers solutions.

  • Experience in Security Incident Handling and Response.

  • Knowledge of network architecture concepts including topology, protocols, components, and principles.

  • Experience in contributing to SIEM use cases and/or rules.

  • Understanding of the requirements of network security monitoring.

  • Must possess strong verbal and written communication skills.

  • Understanding of Windows and Unix/Linux logging.

  • Familiarity with the MITRE ATT&CK Framework.

Essential Qualifications:

  • Diploma/Certificate/Degree in Information Technology (Security preferred) OR

  • Relevant industry certifications

Related Experience: 

  • Experience working as a security engineer or working in a cyber security operations centre

  • Experience working with standard operating systems (Windows, *nix)

  • Hands-on experience with one or more SIEM systems (ArcSight, Splunk, Sentinel, Qradar, Sumologic etc.) and Security Orchestration, Automation, and Response (SOAR) technologies.

  • Understanding of TCP/IP and networking concepts (OSI Model)

  • Knowledge of IT security controls (Network IPS, Vulnerability Scanning, Endpoint Protection, Firewalls, Cloud Access Security Brokers)

  • Azure Cloud services

Some of the areas you can expect to be accountable for include but are not limited to:

  • Design, Implementation and maintenance of IT security solutions eg, firewalls, EDR, IDS/IPS, SOAR, vulnerability scanning, forensic and Threat Hunting.

  • Using SOAR products for the automation of security incidents, while using case/playbook development for an automated SOC operation.

  • Work with multiple enterprise vendor technologies.

  • Specialised in the implementation and configuration of SIEM technologies in a complex ICT environment.

  • Experience with enterprise cloud components, data acquisition, mapping data and developing and implementing technical use-cases, alerts, dashboards and reports

  • Maintain stakeholder relationships

As our clients are primarily government, you will need to be an Australian Citizen who holds an minimum Baseline security clearance or the ability to obtain. 

This role will be based in Canberra and is not open to interstate candidates. 

Digital61 welcomes applicants from all backgrounds. We support diverse perspectives and innovative thinking which is critical to our success. We support flexible working arrangements to accommodate for individual circumstances.

Due to the high volume of applications expected, only those who reach the next stage of the process will be contacted. If you would like specific feedback on why your application didn’t make it past the initial review process, please send us an email.

Digital61 does not accept or appreciate unsolicited calls or applications from recruitment agencies.

How to Apply

Please send your resume to careers@digital61.com.au

Please ensure you provide the following information:

  • your current location,

  • that you are an Australian Citizen,

  • if you hold a clearance,

  • that you understand this role will be offered as a permanent position and will not suit someone seeking a contract role and

  • desired base salary for the role.

Donna Spencer