LAB3 is one of the largest Azure engineering practices in the Australasia region with a focus on Cloud & DevOps, Data, IoT & AI, Modern Workplace, Security, and Network services.
The role:
We have a great opportunity for a L1 SOC analyst on our managed services team ideally with NV1 clearance (or Australian citizenship so we can help you obtain one) to join LAB3’s 24/7 Security Operations Centre (SOC). You will work remotely & on shifts to support, monitor, and maintain high security standards and manage incident responses & controls and for our clients.
The role:
- Play a fundamental role in the analysis, investigation, logging, monitoring and escalation of cyber security events produced by the SIEM 24/7.
- Promote and support the security process, outcomes, and value proposition to internal and external clients. Manage the governance processes to promote effective oversight and solution quality within security business areas.
Cyber Security event handling such as:
◦ Security alert monitoring and response on your shift, ensuring 24/7 coverage ◦ Investigation, escalation, and ownership of incidents ◦ Track tactical issues in execution of SOC responsibilities and process. ◦ Ticket logging: ensure the investigation process and chain of custody for evidence handling and gathering is followed. ◦ Ensuring incidents are addressed in a timely manner using available reporting and metrics. ◦ Monitoring Level 1 Analyst events
- Work closely with our clients, support the reporting & communication regarding incidents and their follow up.
- Maintaining SOC documentation and analytic playbooks
- Demonstrate an ability to perform incident investigation and triages confidently.
- Identifying opportunities for tuning noisy alerts and automation
- Undertake client governance and reporting tasks
- Partner with teams across the organization, to ensure the security, availability, and site reliability of our infrastructure.
- Analyse, troubleshoot and respond to potential threats where necessary using Microsoft Sentinel, Azure Log Analytics and Azure Security Center.
Our ideal candidate:
- NV1 Clearance or Australian citizenship & the ability to obtain NV1 clearance
- Based in Australia
- Experience in a SOC, ideally in a Microsoft/ Azure environment
- Ability to work on a rotating shift
- Mindset: Client-centric, collaborative, and passionate about secure automation and continuous improvement
- Communication skills: Ability to communicate effectively
- Technical Skills & knowledge: Cloud Security, Cybersecurity operations , SOC analytic skills, familiarity with cyber security policies and compliance standards, knowledge of cyber security threats and tactics, threat intelligence within Azure, Investigation theory, SOC Wiki (maintenance and documentation creation), Azure Security Centre, Detection Rules, Analytical investigation & Coding skills (Query language like KQL or SQL), SIEM - Azure Sentinel (preferred) or Splunk, Kibana or equivalent SIEM product, MITRE ATT&CK framework techniques and tactics. OSINT, EDR, MS Defender for Cloud
What’s in it for you?
- Be part of a Managed Services team that truly leverages modern technologies to solve real problems and provides top level of customer satisfaction
- Work with a Microsoft Partner of the Year award winner with multiple specialisations, consistently punching above our weight on the global technology stage
- Be supported by experienced peers and leaders, with clear career pathways and ongoing learning, including Microsoft and HashiCorp certifications, all in a community that values technical expertise, and encourages innovation and practical experimentation with automation and AI
- Enjoy a supportive workplace that values inclusion, flexibility, diversity, and differences. We actively encourage and embrace all cultural backgrounds, genders, abilities, and circumstances
- Take advantage of largely working from home in our remote/hybrid workplace and enjoy the flexibility to balance your life
- Thrive in a community with strong values #BeTrue #TeamUp #StandOut #ThinkAhead #FearLessAchieveMore
Apply now, call or connect on LinkedIn for further information.
#LI-GS1