Offensive Security Engineer tackling end - to - end penetration testing across applications and systems for Bunnings. Collaborating with teams to enhance organizational security posture.
About the role
- Sr. Analyst for Information Security at Edwards Lifesciences focusing on incident response and threat hunting. Contributing to cyber security through detection engineering and operational efforts.
Responsibilities
- Serve as key escalation tier (level 2 analyst) for on-call incident response resources
- Perform complexed investigations as a part of Edwards active security monitoring and threat hunting operations within SLAs
- Drive and design response and remediation actions to protect against security threats in Edwards environments and products
- Lead data ingestion efforts from identifying gaps, onboarding data sources, tuning and correlating them
- Lead the design, testing and implementation of detection use cases to production
- Help drive threat hunting program
- Responsible for operations and maintenance of key cyber security capabilities and services in Detection Response area – SIEM (Google SecOps, Splunk, Qradar etc), Log Collectors (WEF, Cribl, NXLog etc)
- Design automation workflows to streamline detection and response efforts
- As needed, participate in CIRT team efforts
- Provide coaching, mentoring, and knowledge transfer to other team members
- Document and maintain incident response technical playbooks and incident timelines
- Staying informed on the evolving cybersecurity threat landscape to drive innovative detections, threat hunts, and automations to drive Edwards’ security posture
Requirements
- Bachelor's Degree in related field with 4 years of previous related experience, or equivalent work experience based on Edwards criteria
- Previous related experience in Information Security SOC, CIRT or SIEM teams
- Participation and leading information security incident handling efforts
- Provide and build detailed investigation timelines including documentation, improvements, and recommended action items
- Expert with Google SecOps or other SIEM solutions (Splunk, Qradar etc)
- Expert with log collectors' management (WEF, Cribl, NXLog etc), parsing experience
- Experience with SOAR platforms operations (Torq, PaloAlto XSOAR etc)
- Experience with threat hunting operations and/or design
- Certifications in related discipline preferred (e.g., CEH, CISM, CISSP)
- Expert of IR concepts, data tuning, SIEM, forensics, cloud monitoring
- Knowledge of common attack vectors and methods, MITRE framework
- Scripting experience preferred
- Proficient analytical and problem-solving abilities to identify and mitigate potential security risks
- Strict attention to detail
- Ability to partner with other information security and IT experts for escalation of security alerts and onboarding log sources
- Substantial understanding of troubleshooting techniques with the ability to adapt and learn new technologies
- Ability to provide guidance to assigned teams on implementing information security standards and designs
- Excellent organization and time management skills
- Excellent verbal and written communication skills
Benefits
- Health insurance
- Retirement plans
- Paid time off
- Flexible work arrangements
- Professional development
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cyber Security graduate supporting KPMG's Cyber Security Consulting team in New Zealand. Gaining hands - on experience with real client engagements and enhancing cyber resilience.
Senior Security Risk Specialist at nbn safeguarding people and assets. Identifying and reporting security risk while supporting risk treatment across the organization.
VP, Security Engineering Programs & Controls leading modernization of Information Security Engineering control landscape. Ensuring control coverage and standardization across all Security Engineering functions.
Cloud Engineer supporting the U.S. Air Force Cloud One Architecture. Responsibilities include managing cloud security across platforms like AWS, Azure, and GCP.
Mid - level Information System Security Officer providing technical support to Navy Cyber Warfare Developmental Group. Ensuring security and integrity of information systems and network configurations.
Software Engineer developing Upwind Sensor for Windows OS in Cloud Security Platform. Collaborating with cross - functional teams to solve complex engineering issues and improve solutions.
Senior Manager Information Security driving governance and compliance for identity security platform. Leading risk management initiatives and supporting customer engagement in a hybrid work setup.
Information Security Consultant managing security standards implementation at LUZA Group in Lisbon, Portugal. Handling analysis of risk and supporting audits while working in a hybrid model.
Senior Cybersecurity Analyst at Boeing performing advanced cybersecurity assessments and risk evaluations for third - party vendors. Focusing on automation, lean processes, and collaborating with key stakeholders across departments.