Level 1 - SOC Security Analyst

Join OneStep Group growing Cyber Practice as a SOC Security Analyst Level 1

Primary Location: Perth (must be located in PERTH, WA and be able to work in CBD)

Are you passionate about cybersecurity and ready to take on a challenging and rewarding role in a fast-paced Security Operations Centre (SOC)?

As a Level 1 SOC Security Analyst at OneStep Group, you'll play an essential role in defending client environments by detecting threats early, supporting incident investigations, producing SOC reports, and working alongside senior analysts. You’ll gain hands-on experience with leading security technologies across multiple clients, and have the opportunity to contribute to internal improvements, participate in client meetings, and grow in a structured and collaborative SOC team.

Key Responsibilities:

• Monitor and triage alerts across a range of security tools, not limited to SIEMs (e.g., Microsoft Sentinel, LevelBlue, FortiSIEM), but also including endpoint protection platforms, firewalls, and email gateways.
• Perform daily health and performance checks across different security technologies and environments.
• Assist with incident response, including classification, escalation, and threat containment based on defined procedures.
• Create and contribute to SOC reports for internal analysis and client delivery.
• Participate in client meetings when required to provide updates or insights under supervision.
• Support the ongoing development of SOC playbooks, detection content, and knowledge bases.
• Contribute to continuous improvement, threat intelligence sharing, and basic automation and scripting tasks to improve triage workflows, using query language such as KQL and Python.

What We’re Looking For:

• Minimum of 1 year of hands-on experience (through entry-level roles, IT, IT Support or Cyber Security projects).
• Understanding of SIEM platforms, detection and response workflows, and basic security operations.
• Familiarity with endpoint detection tools, firewalls, email security, and logging systems.
• Strong analytical mindset with basic knowledge of KQL, Python, or similar scripting/query languages.
• Strong communication skills with the ability to document incidents clearly and effectively.

Must have:

• Australian National Police Clearance
• Legal working rights in Australia

Nice to Have:

• Australia Citizen
• Certifications: SC-900, SC-200, Security+, or similar.
• Practical lab or CTF experience (e.g., TryHackMe, Hack The Box).
• Exposure to Azure Sentinel, Defender XDR, EDR, Palo Alto, or Office 365 security features.

Why Join OneStep Group?

• Work with a growing and mature, experienced SOC team and receive real-time mentorship
• Gain exposure to enterprise-grade security tools and diverse client environments
• Access structured career development and certification pathways
• Enjoy a supportive, inclusive work culture with flexibility.

If you're ready to make a real impact in cybersecurity, we want to hear from you! Apply now and take your career to the next level.

For more information on the role or for a full job description, reach out to Jaynil Karkar the SOC Team Leader.

To apply send through your CV to [email protected] or refer someone through the referral process.

Applications close Wednesday, 30 June 2025.