Senior Security Analyst at Megaport

Technology, Full-time, Sydney sydney analytics full-time
Posted 22 days ago

The Role
Support the organisation in leading the design and implementation of the tools, processes, procedures and methods for detecting, analysing, and responding to security events and incidents. Assist in implementing and administering technologies, processes and procedures for technical vulnerability detection and evaluation across various technologies and administrative teams within the organisation.

About Megaport
Megaport has transformed the way IT gets connected. We're global leaders in Network as a Service (NaaS), changing the way businesses reach the cloud. We're also a leading partner to Amazon, Microsoft, Google, IBM, Oracle, NYSE, and many other leading technology companies. Megaport is a publicly-traded company on the Australian Stock Exchange with a market cap exceeding $1.5 Billion. We’re a lean, high-achieving team made up of over 215 members globally. While the company is headquartered in Brisbane, Australia, employees are spread out across North America, Europe, and Asia-Pacific. Staff enjoy an environment that is collaborative, supportive, and fun.

Our Team Culture
Join a team of globally-positioned industry experts that lead by example. We do not compromise our values for commercial gain; we are all the custodians of our culture, and the customer is at the centre of everything we do. Our employees are motivated, adaptable, persistent, hard-working, and dynamic. Our culture permeates everything we do and this, in turn with a global vision, forms a commitment to each other, our customers, and shareholders alike.

What you will be doing

  • Lead the design, selection, and implementation of security event detection solutions (e.g., SIEM) across diverse technologies and environments.
  • Operate and maintain SIEM technologies and associated processes as a BAU function.
  • Cultivating cyber threat intelligence leads and threat models to generate use-case for the  implementation and refinement of detection rules.
  • Manage the alert process and engage technology administrators in triage and evaluation activity within their respective domain.
  • Manage the response process. Conduct end-to-end incident investigation including analysis of attack artifacts to establish incident scope, impact assessment and  containment strategies.
  • Develop documentation and guidance for administrators regarding detection and response procedures, methods and tools.
  • Investigate and maintain additional technical tools required for incident response (e.g., nmap scanning, SIFT images).
  • Participate in the design, selection, and implementation of vulnerability scanning solutions.
  • Scope, schedule and execute periodic/ad hoc scans and engage technology administrators regarding results and mitigation efforts, as necessary.
  • Validate and evaluate technical characteristics of vulnerabilities from scan, penetration test or risk assessment.
  • Manage reports of vulnerability management processes for audit and assurances.
  • What we are looking for

  • Expertise in security event detection and correlation solutions.
  • Experience in incident response processes, procedures, methods and tools.
  • Experience with vulnerability scanning solutions and best-practices.
  • Experience working with cloud network and application environments.
  • Working, up-to-date knowledge of potential exploits, attacker tools, techniques, procedures, and managing threat intelligence sources.
  • Understanding of various desktop and server operating systems and technologies.
  • An understanding of networking security including, firewall, IDS/IPS, routing, encryption.
  • An understanding of the current threat landscape, response, and mitigation strategies used in cyber security.
  • An understanding of attacker tactics, techniques and procedures and the cyber kill chain.
  • Desirable skills

  • Experience with AWS and Azure-related management toolsets
  • Experience with scripting, regex, and linux utilities.
  • Web application threats and SDLC security practices
  • Current or past certifications (e.g., OSCP, GIAC)
  • What we offer

  • Flexible working environments
  • Creative, fun, and contemporary workspaces
  • Motivated team of industry experts and new talent
  • Cutting-edge software to drive efficient communication and collaboration
  • Training and development opportunities
  • Celebrated success with ‘Legend’ and ‘Kudos’ Awards
  • Health and wellness program and full social calendar
  • Opportunity to make a difference
  • All applications will be treated in confidence. 
    Please see Part 2 of our Privacy Policy to see what information Megaport collects from job applicants, why, and how we store and use it. Note that you’re entitled to know what personal data of yours Megaport holds, to request updates, rectification, and in some circumstances restriction or deletion thereof if you object (you being entitled to withdraw your consent to our holding your information at any time). Please see Part 5 of our Privacy Policy for more details on this and how to contact Megaport's data protection officer if you have any further privacy-related questions.
    Candidates who meet the selection criteria will be invited to attend an interview
    Strictly no Recruitment Agencies please.