Our client is a large Australian organisation that is a leader in their field. The work culture is collaborative and supportive of each other. They look after their people and provide some of the best benefits, workspaces, and facilities in the industry.
About the Role:
This role is responsible for overseeing vendor-managed security services, including Security Operations and SIEM, Security Incident Response, and Information Protection Services.
Responsibilities:
- Safeguard SOC/SIEM services provided by strategic partners effectively monitor security systems, applying Essential Eight and NIST standards, and responding to complex cybersecurity incidents.
- Drive continuous improvement in Security Monitoring and Threat Detection capabilities.
- Develop and refine the Cyber Security Incident Response Plan and Playbooks to enhance incident management processes.
- Ensure compliance with industry standards and regulations, including SOCI, ASD Essential 8, and NIST frameworks.
- Investigate security incidents using SIEM, O365 Security & Compliance Center, and other forensic tools.
- Manage security resources and services across platforms such as Defender for Cloud, Defender for Endpoint, CrowdStrike, Trend Micro, Airlock, and Zscaler.
- Collaborate with DevOps teams and MSSP vendors to develop automated security workflows and playbooks using Azure Logic Apps, Azure Automation, and security-as-code mechanisms.
Skills and Experience:
- 6 years of hands-on expertise in Azure security, with deep experience across Defender, Purview, and other critical security components.
- Proven track record in leading major incident response and recovery efforts, ensuring swift and effective resolution of security breaches.
- Deep understanding of cybersecurity frameworks, including ASD Essential 8, NIST CSF2, and NIST 800-53, to strengthen security postures and ensure compliance.
- Well-versed in CI/CD pipelines, particularly within Azure DevOps environments.
- Expert in coordinating and managing incident response processes.
- OT Security expertise is highly regarded, with the ability to secure and manage operational technology environments effectively.
For a confidential discussion, please contact Pravin on pravin.manandhar@peoplebank.com.au quoting reference 266197.
