Cyber Security Specialist

One of our Federal Government Clients is seeking to engage a Cyber Security Engineer (MS Sentinel). This is a long-term contractual position.

Please check below all the job details:

• Contract Duration: 03 Years (12 Months initially + 24 Months extension)
• Work Location: Only Canberra (Hybrid – 3-day office and 02 days home per week)
• Eligibility: You must need to have NV1 Security Clearance or above.
• Tentative Start Date: 04th Aug 2025

Position Description:

This newly established position for a dedicated Security Engineer within the IT Security Team is a hands-on role pivotal to uplifting our security operations maturity.

The Security Engineer will be a skilled cybersecurity professional responsible for uplifting Microsoft Sentinel, security tooling and security operations processes.

The successful candidate will thrive in a small team environment where they can shape strategy initiatives and be hands on in implementing outcomes. As such, they have experience managing end-to-end cyber security operations and will have a strong understanding of all components of cyber security management, particularly in the government context.

Key duties and responsibilities:

• Configure and troubleshoot log source integrations into the SIEM.
• Develop alerting rules and threat response playbooks for systems integrating with Microsoft Sentinel.
• Build and refine KQL queries to support investigations, threat hunting, and traffic analysis.
• Administer, and maintain cybersecurity tooling including SIEM, WAF, DLP, vulnerability scanners, Proxy, Application Whitelisting, including integration of new data sources and automation of threat responses.
• Ensure alignment of our security practises to standard government frameworks such as the ISM, PSFP, and E8.
• Foster collaboration and knowledge sharing through proactive mentorship of junior colleagues, promoting a culture of continuous improvement.

Technical skills:

• Strong experience in cloud security engineering, particularly within the Microsoft ecosystem.
• Proficiency with SIEM/SOAR tools (e.g., Microsoft Sentinel, Splunk, Airlock and Rapid7), endpoint protection, and cloud monitoring.
• Experience managing incident detection and response processes.
• Experience with technologies such as Zscaler.

Essential Criteria:

• Minimum 5 years’ experience with Microsoft technology stack and associated security and management tooling such as Sentinel, Intune, Entra Active Directory, Purview and Microsoft M365.
• Proven experience maintaining, operating and automating SIEM technology.
• Strong experience in team collaboration and business engagement activities, including cyber uplift projects.
• Experience implementing the ISM controls, PSPF and E8 strategies.
• Relevant industry certifications.

Desirable Criteria:

• Experience with incident response processes.
• Experience across other cybersecurity domains including all areas of SecOps and GRC.

The Next step is easy: If you are interested, you may send an email to [email protected]

Referral incentive program: As always, we have the candidate referral incentive program through which you will get $1000 for each successful referral after the successful selection and joining of the referred candidates.