Cyber Incident Responder

Strategic Partners Australia

One of our federal Government clients is seeking to engage Lead Cyber Incident Responder for Canberra, Brisbane, Melbourne and Sydney locations

Please note Candidate must have NV1 Security clearance

Initial contract duration-12 Months

Extension -24 Months

Location of work- Canberra, Brisbane, Melbourne and Sydney

Working arrangements-Hybrid

Job details

Candidate will contribute by responding to cyber security incidents and enhancing the security posture of the Department.

Hands-on technical cyber security incident response expertise is required for this role as you will be performing technical analysis when responding to cyber security incidents.

Additionally, excellent verbal and written communication skills are required for this role as you will be collaborating with a range of internal and external stakeholders across all levels.

Key duties and responsibilities

Key duties and responsibilities include but are not limited to:

  • Investigate and respond to potential and actual cyber security incidents end-to-end across the cyber security incident response lifecycle.
  • Use provided tools and technologies to perform cyber security incident response.
  • Drive cyber security incident communications, ensuring all parties are aware of incidents and their role in the process.
  • Develop and maintain records and documentation related to cyber security incidents.
  • Communicate and document technical findings and recommendations to technical and non-technical stakeholders through formal reporting, briefs, emails, and verbal advice.
  • Facilitate recovery including post incident review, following resolution of cyber security incidents.
  • Develop, maintain, and test the cyber security incident management policy and plan/procedures while ensuring compliance with regulatory requirements and best practice.
  • Identify and drive technical improvements including but not limited to alert tuning.
  • Maintain and optimise cyber security incident response processes.

Essential criteria

  • Proven hands-on technical cyber security incident response expertise and responding to cyber security incidents from end-to-end.
  • Strong technical expertise using Microsoft security tools related to cyber security incident response.
  • Excellent verbal and written communications during and after cyber security incidents including technical findings and recommendations to technical and non-technical stakeholders across all levels.
  • GIAC certifications such as GCIH and GCFA, and Microsoft security certifications.

If you would like to apply for the above role, then please send your updated resume with Cover Letter to ***email_hidden***

Apply Now Apply Now Post a Resume

See more jobs in Canberra, Australian Capital Territory, jobs in Australia