Cyber Security Engineer

• Splunk Detection Engineer
• Melbourne
• Contract - 6 Month

Our client in Melbourne is looking for Splunk Detection Engineer this is Contract -6 Month role. Please email me at [email protected] for more information.

Job description:

1. 5+ years of experience in a CSOC, Cyber detection, Threat Hunting and/or SOAR development role.
2. 5+ years developing detections within a SIEM environment (such as Splunk ES).
3. 2 years + experience working with Splunk.
4. Experience working with security tools such as endpoint detection and response systems, network anomaly detection etc,
5. Experience working with cloud and SaaS environments (AWS, Azure, M365, Entra ID, etc) and awareness of threats impacting them.
6. Designing and implementing threat/attack modelling to derive abuse cases, detection logic and automation course of actions.
7. Ability to think like an adversary/threat actor.
8. Well versed in the development of detection and hunting strategies for a broad range of cyber threats, including malware, DDOS, hacking, phishing, lateral movement and data exfiltration in the Financial Services sector or similar.
9. Working in large/complex environments.
10. Good consulting and stakeholder management,
11. Pro-active & energetic work ethic.
12. Participation or experience in penetration testing / red teaming exercises, including network, infrastructure and application exploitation would be a plus.
13. Knowledge of the following frameworks is required:
14. NIST Cybersecurity framework
15. MITRE ATT&CK
16. Lockheed Martin Cyber Kill Chain™ or similar methodologies

All candidates should have full working rights in Australia.

Only shortlisted candidates will be contacted for this role.

To apply, please submit your resume ASAP for immediate consideration or email [email protected]