Cyber Threat Detection SIEM Specialist

About Us:

At Minutes to Seconds we match people with great skills with tailorfitted jobs to achieve welldeserved success. We know how to match people to the right job roles to create that perfect fit. This changes the dynamics of business success and catalyzes the growth of individuals.

We re passionate about doing an incredible job for our clients and job seekers. Our success is determined by the success of individuals at the workplace.

We are looking for an experienced Cyber Threat Detection SEIM Consultant to join a large Government Department of work.

Requirements

The primary focus of the CTD SIEM Specialist is to lead a multidisciplinary team to develop and implement detection methods to identify monitor respond and protect against malicious cyber events targeting Services Australia and shared service agency networks.

This role requires indepth knowledge of cyber security fundamentals to accurately determine the impact and relevance of emerging and existing threats to operating environments.

The CTD SIEM Specialist will draw upon their knowledge of detection methodologies and technologies attack vectors vulnerability management principles network security security engineering principles information systems control design and control monitoring.

Key duties may include but are not limited to:

Threat Detection development inclusive of reviewing and approving detection use cases response playbook development and implementation of detection use cases.

Provide technical or strategic advice on complex issues related to detection technologies. Coordinate the accurate and appropriate referral and subsequent tuning of detection use cases.

Review and contribute to process documentation including providing input into the development of processes and ensuring documentation created by the shift aligns with outcomes and goals of the process.

Provide timely relevant and accurate information to the Director of Cyber Threat Detection where business impacts of events and decisions are sensitive including but not limited to:

Wideranging impacts. Events affecting senior executives or other agencies.

Confidentiality integrity and availability are impacted.

Provide technical guidance and support to Cyber Security Operations staff while overseeing Cyber Threat Detection roles.

Prioritize tasks and duties in accordance with direction from Cyber Security Divisional teams considering risk urgency and impact using independent judgment.

Provide expert advice and assistance to team members performing technical work.

Primary Technologies required for the role include:

IBM QRadar

Splunk

Elastic

Sentinel

Demonstrated experience implementing secure web based business solutions, specifically: experience developing web APIs using Azure API Manager and customer facing web portal development using .NET Framework (including .NET Core) and ASP.NET Experience developing single-page web applications using either Angular 7+ or React Demonstrated experience in Azure based solution implementation, including: Azure technologies, such as: Azure Logic Apps, Azure SQL and Azure Service Bus and Azure API Manager Azure DevOps and Visual Studio for code development, management, repositories and deployments (CI/CD) integrating custom built apps with third-party systems, including Microsoft Dynamics 365 CRM