Cyber Detection Engineer


  • Company:
    CommWealth
  • Location:
  • Salary:
    negotiable / month
  • Job type:
    Full-Time
  • Posted:
    3 days ago
  • Category:
    Engineering

Job no: 40040419_19112018Work type: Permanent full timeLocation: Sydney CBD AreaCategories: Cyber SecurityDeliver defensive cyber security services across the Commonwealth BankProvide security insights and expertise using the latest security technologiesTogether we can make a difference to the business and the broader communityDo work that mattersEnterprise Services (ES) is responsible for the world leading application of technology and operations across every aspect of CommBank, from innovative product platforms for our customers to essential tools within our business. We also use technology to drive efficient and timely processing, an essential component of great customer service.The Digital Protection Group (DPG) protects the bank and our customers from theft, losses and risk events, through effective and proactive management of cyber security, privacy and operational risk.See yourself in our teamReporting to the Lead Cyber Engineer, you will build and deploy methods designed to identify, scope, contain and eradicate real-world threats. In collaboration with the team you will develop innovative detection logic through structured hunting activity, and by automating response tasks to reduce manual workload.Your responsibilitiesExecute targeted hunts for malicious activity, developing proactive detection signatures, capabilities and methodologies.Develop automation playbooks to streamline incident response, and free up analysts to do more meaningful work.Provide specialised technical assistance for incident response activities.Develop new initiatives where automation or tooling is required to improve workflow.What you will need to succeedYou are a technology expert with the ability to understand complex data in the context of cyber threats, and able to take the perspective of a responder to produce meaningful automation that streamlines investigation and response activities.You will have:A number of years of information security experience, ideally in operational security roles like hunting, forensics, or intrusion detectionStrong Splunk skillsA passion for developing systems and processes dedicated to finding and responding to malicious activityExperience in both commercial and open source security products, such as IDS or EDRExperience with TCP/IP networking and services such as DNS, SMTP, HTTP, DHCP, etc.Experience with OSX, Windows and Linux operating systemsIdeally have experience writing tools to automate tasks and integrate systems in Python or equivalentStrong consulting skills to work with the programme and deliver CSC business outcomesAdvertised: 08 Jan 2019 AUS Eastern Daylight TimeApplications close: 25 Jan 2019 AUS Eastern Daylight TimeApply now Send to a friend