About the Consultancy
Join a leading international consultancy delivering large‑scale cyber security, defence, and technology transformation programs across government and highly regulated industries globally. Our teams operate enterprise‑grade Security Operations Centres (SOCs), protecting mission‑critical systems and supporting national‑level security outcomes.
About the End Client
The end client is a major government organisation operating within a Defence and national security environment, where cyber threat detection, rapid response, and resilience are critical. This role supports a high‑volume, enterprise‑level SOC focused on protecting complex applications, networks, and cloud platforms.
About the Role
An exciting opportunity exists for a Cybersecurity SOC Analyst to support continuous monitoring, detection, analysis, and response to security events across enterprise and cloud environments.
You will work within a mature SOC environment, contributing to incident triage, threat detection, vulnerability identification, and continuous improvement of detection and response capabilities.
This role suits candidates who thrive in fast‑paced, security‑critical environments and are keen to deepen their SOC and incident response expertise.
Key Responsibilities
- Monitor, analyse, and triage security alerts and incidents across SIEM, SOAR, EDR/XDR, and cloud security platforms.
- Investigate suspicious activity across applications, networks, identities, endpoints, and cloud environments.
- Escalate confirmed security incidents with detailed analysis and recommended response actions.
- Perform initial forensic data collection to support investigation and containment activities.
- Monitor application security events and work with infrastructure and application teams to identify vulnerabilities and misconfigurations.
- Support the tuning and optimisation of SIEM detection rules, use cases, and automation workflows.
- Assist with vulnerability assessment activities, validation of findings, and remediation tracking.
- Contribute to threat intelligence enrichment and indicator integration into monitoring tools.
- Maintain SOC documentation, runbooks, dashboards, and incident records.
- Participate in continuous improvement initiatives across SOC processes and detection maturity.
- Support compliance with security standards, policies, and regulatory requirements.
- Experience working in SOC operations, security monitoring, or incident triage within enterprise or government environments.
- Strong understanding of application security concepts, including common vulnerabilities (e.g. OWASP Top 10).
- Hands‑on experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, ETD, or similar.
- Familiarity with SOAR, EDR/XDR, threat intelligence tooling, and cloud security controls.
- Ability to analyse logs, alerts, and telemetry across networks, endpoints, applications, and cloud platforms.
- Understanding of security frameworks and standards including ASD Essential Eight, ISM, and NIST.
- Strong analytical, problem‑solving, and decision‑making skills under pressure.
- Strong communication skills and ability to collaborate across security and technology teams.
- Australian Citizenship and AGSVA Negative Vetting Level 1 (NV1) clearance (mandatory).
- Experience working in a dedicated or hybrid SOC environment.
- Exposure to application security testing tools (SAST, DAST, SCA).
- Knowledge of Azure, AWS, or Google Cloud security services (Azure preferred).
- Cyber security certifications such as CompTIA Security+, CCNA Security, Microsoft Cybersecurity Analyst, or equivalent.
- Hands‑on experience across the full incident response lifecycle(identify, contain, eradicate, recover).
- Opportunity to work within a Defence‑grade SOC environment.
- Exposure to modern SIEM, SOAR, EDR, and cloud security platforms.
- International consultancy environment with strong cyber capability and career pathways.
- Long‑term, stable engagement supporting national security outcomes.
- Collaborative SOC team with strong focus on skills uplift and continuous improvement.
Please upload your CV to apply. Suitable candidates will be contacted with next steps and may be required to complete additional selection criteria.
For further information, contact:
📞 Farbar Siddiq – 0489 922 211
📧 farbars@whizdom.com.au
Candidates must be willing to undergo pre‑employment and security vetting as required.
