Melbourne | Citizen, Baseline or NV1 clearance required
I am currently working with an MSP to build out their founding Cyber function in Melbourne., currently they operate across US, EU and now they are expanding into AU. This role focuses on building and improving detection capability across enterprise security platforms including SIEM, endpoint security, and security orchestration tooling.
What you’ll be doing
- Design and implement detection rules and use cases
- Develop detection logic in Splunk and Microsoft Sentinel
- Integrate security telemetry into SIEM platforms
- Tune detection rules to reduce false positives
- Support security platform operations and patching
- Improve SOC visibility through better logging and telemetry
- Collaborate with SOC and threat hunting teams
- Experience in Detection Engineering / Security Platform Engineering
- Strong experience with Splunk and Microsoft Sentinel
- Experience developing SIEM detection rules and queries
- Knowledge of security automation and SOAR tooling
- Understanding of endpoint security and cloud security telemetry
If you are interested please apply or send your updated resume to lainey.macdonald@halcyonknights.com.au
#SCR-lainey-macdonald-1
