Urgent requirement of Threat Detection Engineer - Contract - Canberra
Requirements
- Demonstrable experience in content development with at least 2 SIEM technologies (Splunk, Elastic, Q-Radar, MS Sentinel)
- Experience in a detection engineering practice
- An understanding of the sigma detection rule syntax
- Experience with SOAR technologies and playbook development
- Experience with EDR technologies (Carbon Black, CrowdStrike, Defender ATP)
- A thorough understanding of the cyber threat intelligence lifecycle
- Very Good Communication Skills
Desirable:
- Knowledge of scripting languages (Bash, Python)
- Strong organisational and teamwork skills
- Professional Certifications, such as GIAC
- Minimum 5 years of cyber security operations experience
Duration: 12 Months and possible extension
Eligibility: Baseline Holders OR Ability to obtain Baseline Clearance
Email:
Demonstrable experience in content development with at least 2 SIEM technologies (Splunk, Elastic, Q-Radar, MS Sentinel) Experience in a detection engineering practice An understanding of the sigma detection rule syntax Experience with SOAR technologies and playbook development Experience with EDR technologies (Carbon Black, CrowdStrike, Defender ATP) A thorough understanding of the cyber threat intelligence lifecycle Very Good Communication Skills Desirable: Knowledge of scripting languages (Bash, Python) Strong organisational and teamwork skills Professional Certifications, such as GIAC Minimum 5 years of cyber security operations experience Duration: 12 Months and possible extension Eligibility: Baseline Holders OR Ability to obtain Baseline Clearance