Senior Security Operations Centre (SOC) Engineer

Senior Security Operations Centre (SOC) Engineer

Bulimba, QLD 4171 (4–7 km east of Brisbane CBD)

4–5 days per week onsite

Permanent

$120,000 – $160,000 base + super

About the Opportunity

Our client is a growing cybersecurity consultancy seeking an experienced Senior Security Operations Centre (SOC) Engineer to join their advanced SOC team. This role focuses on detection engineering, incident response, security automation, and the delivery of modern security solutions leveraging platforms such as Palo Alto Cortex XSIAM and Cribl.

Key Responsibilities

• Participate in security monitoring, detection, and incident response activities.
• Investigate and resolve issues relating to managed security services.
• Design and implement automation workflows to improve triage, response, and containment.
• Lead migrations from legacy SIEM platforms (Splunk, QRadar, LogRhythm) to Cortex XSIAM.
• Integrate security data sources into Cortex XSIAM and Cribl environments.
• Develop dashboards, detections, correlations, and automations tailored to client needs.
• Provide security consulting, architecture guidance, and implementation support.
• Support monthly reporting and client review meetings.
• Mentor junior SOC analysts and contribute to the ongoing improvement of security operations.

About You

Essential

• Bachelor's degree in Cyber Security, IT, Computer Science, Engineering, or equivalent experience.
• Experience in IT integration, including 5+ years in cybersecurity.
• Strong hands-on experience with Cribl and data pipeline management.
• Experience with SIEM migrations and security automation.
• Strong scripting, analytical, and problem-solving skills.
• Excellent communication and stakeholder engagement abilities.

Highly Desirable

• Palo Alto Cortex XSIAM experience.
• Experience across the broader Palo Alto security ecosystem.
• Cribl certification.
• Experience working within higher education or university environments.

Work Rights

• Australian or New Zealand Citizen; or
• Unrestricted rights to work in Australia.

Why Join?

• Work on cutting-edge security operations and automation initiatives.
• Help shape next-generation SOC capabilities and security architectures.
• Blend hands-on security engineering with consulting and client engagement.
• Join a high-performing team delivering impactful cybersecurity outcomes.

If you're passionate about security operations, automation, and solving complex cyber challenges, we'd love to hear from you.

Interested candidates with full Australian working rights are encouraged to apply and join a growing, forward-thinking team.

Please email me your CV to ***email_hidden*** then give Charmaine Thum a call on 0439 320 538