Job Title

Level 3 Security Operations SpecialistIf we inspire you to do the work you love, will you still call it work?At EY we believe that whoever you are, your uniqueness helps us stand apart.We bring together extraordinary people, like you, to build a better working world.Whats in it for you?As our experienced L3 Security Operations Specialist, you will play a vital role in providing cybersecurity and incident response services for our clients, performing highly advanced and proactive threat hunting activities to protect our clients from cyber threats. You will be a key influencer in strategic cybersecurity decisions. You will operate with a high degree of autonomy, coordinating incident response on a day-to-day basis and leading continuous improvement in L1 and L2 triage processes. You will also perform regular threat hunting, based on available threat intelligence as well as your own developed hypothesis. Your analysis will lead to better detection capability for our services, and better protections for the clients we serve.In summary, you will:Oversee Security Monitoring tools, processes and systems to detect and respond to security events in real-time, working closely with other IT and security teams to enhance security posture.Proactively search for threats and vulnerabilities within the network and systems used by our clients.Conduct in-depth analysis of security threats and incidents, including forensic analysis and root cause determination, providing guidance and training to junior analysts and other team members on security best practices and incident response procedures.What were looking forHeres our wish list but dont worry if you dont tick all the boxes. Were interested in your strengths, what you want to learn, and how far you want to go.Bachelor''s degree in Computer Science, Information Security, or a related field.Minimum 5-7 years of experience in a SOC or security analyst role, with a minimum 3 years experience as an L3 specialist.In-depth knowledge of Sentinel, MS Defender, other Threat centric tools, IDS/IPS, email security, vulnerability scanners and other security technologies.Strong understanding of incident response frameworks and best practice, with experience leading the investigation and response to security incidents using advanced technical skills and threat intelligence.Experience in development and execution of incident response plans, ensuring proper communication and documentation throughout the incident lifecycle.Ability to collaborate with cross-functional teams to coordinate incident response activities and ensure timely communication.Experience as the primary point of contact for incident escalations from Tier 1/2 analysts, with the ability to perform advanced triage, including deep-dive analysis of security events and logs to determine incident severity, scope, and potential impact.Strong background in formulation and execution of threat hunt scenarios and the development of subsequent use cases to uplift detection capability.Ability to investigate potential threats identified through security alerts via SIEM, anomalies, or intelligence reports.Experience conducting independent research and analysis to identify potential attack vectors and vulnerabilities. This may include using threat intelligence and attack frameworks to create realistic threat scenarios.Capability to translate threat intelligence into actionable detection and hunting strategies.Experience in developing and fine-tuning security rules and correlation logic to improve threat detection capabilities.Relevant industry certifications such as GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), or CompTIA Security+ are highly desirable.What we can offer youOur roles can be adjusted to work flexibly with the potential of reduced hours to balance your time between the home and office. Please speak with us about potential options.Apply now were over 9,000 perspectives in Australia and were ready to welcome yours.Diversity, equity, and inclusiveness (DE&I) are core to who we are, how we work and how we live our values. We hold a collective commitment to continue to drive an environment where all differences are valued, practices are equitable, and everyone experiences a sense of belonging. We encourage applications from people of all ages, nationalities, abilities, cultures, sexual orientations, and gender identities and are committed to providing an equitable and barrier-free recruitment experience for all.The exceptional EY experience. Its yours to build.EY | Building a better working world #J-18808-Ljbffr