Cyber Security Analyst

Cyber Security Analyst (Blue Team)

Location: Sydney (Hybrid)

Employment Type: Permanent

About the Company

Our client is an award-winning financial services organisation that is entering an exciting phase of expansion with a strong focus on strengthening its cyber security capability.

echnology and security sit at the heart of the organisation, supported by award-winning leadership and a culture recognised for high team satisfaction.

The Opportunity

We are hiring a Cyber Security Analyst (Blue Team) to join a growing and mature security function. This is a hands-on, defensive role, sitting close to live incidents and real-world outcomes.

You’ll work alongside an experienced Head of Cyber and small cyber security team to take ownership across core security tooling including CrowdStrike Falcon, you will work in collaboration with the wider tech team as part of a wider tech function.

This role is ideal for someone who enjoys being close to the action, taking ownership of defensive outcomes, and continuously improving detection and response capability.

What You’ll Do

• Monitor and investigate security alerts across endpoint, identity, cloud, email, and external threat surfaces
• Lead or support incident response from detection through containment and resolution
• Use CrowdStrike Falcon to analyse endpoint activity, malware, persistence, and lateral movement
• Take decisive action during incidents, including containment, access revocation, and coordination of takedowns
• Distinguish genuine threats from noise and prioritise response based on risk
• Document incidents, root causes, and remediation actions
• Improve detection quality by tuning alerts and reducing false positives
• Develop and maintain investigation playbooks and response procedures
• Work closely with engineering and infrastructure teams to remediate systemic weaknesses
• Contribute to threat hunting and post-incident reviews

What We’re Looking For

• Degree in Information Technology, Computer Science, Cyber Security, or a related discipline
• 5+ years’ experience in a Blue Team, SOC, or Security Operations role
• Hands-on experience with CrowdStrike Falcon (essential)
• Strong incident investigation and response capability
• Solid understanding of endpoint, identity, and foundational cloud security concepts
• Ability to operate calmly and decisively during high-severity incidents

Desirable Experience

• Cloud security exposure (AWS)
• Threat hunting or detection engineering experience
• Scripting or automation skills (Python, PowerShell, Bash)

Certifications (Highly Regarded)

• CrowdStrike Certified Falcon Administrator or Responder
• Blue Team Level 1 or 2
• GCIA, GCIH, SC-200, AZ-500, or equivalent

Why Join?

• Be close to real incidents and defensive outcomes
• Work with modern, best-in-class security tooling
• Join a collaborative, high-performing security team
• Genuine autonomy and ownership
• Competitive salary with regular reviews
• Opportunity to make measurable improvements to how the organisation detects and responds to threats