Description:
Job Description: · We are seeking an experienced Cyber threat detection engineer.
· Duties include proactively searching for threats.
· Inspect traffic for anomalies and new malware patterns.
· Investigate and analyze logs.
· Develop custom content within the SIEM or other network security tools to detect threats and attacks against the department.
· SIEM Content Developers participate in briefings to provide expert guidance on new threats and will act as an escalation point for analysts.
· The analyst may also be required to author reports and/or interface with customers for ad-hoc requests. In addition, the threat detection engineer may be asked to participate in discussions to make recommendations on improving SOC visibility or process.
· Expert knowledge in two or more of the following areas related to cybersecurity:
· Vulnerability Assessment, Intrusion Prevention and Detection, Access Control and Authorization, Policy Enforcement, Application Security, Protocol Analysis, Firewall Management, Incident Response, Web-filtering, Advanced Threat Protection
· Extensive experience working with various security methodologies and processes
· Advanced knowledge of TCP/IP protocols, experience configuring and implementing various technical security solutions, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices
· Experience implementing security methodologies and SOC processes
Primary Responsibilities
Capture use cases from subscribers or other team members and develop correlation rules.
Utilize knowledge of the latest threats and attack vectors to develop SIEM correlation rules for continuous monitoring.
Review logs to determine if relevant data is present to work with existing use cases
Develop custom regex to create custom knowledge objects
Develop custom dashboards and reports for customer stakeholders
About XPT:
• XPT Software Australia PTY Ltd, incorporated in 2016, is a Software services company catering to a vast variety of clients across Australia in Banking, Insurance, Telecom, Mining and Manufacturing etc domains.
• We have 90+ technocrats in Australia working at our client project locations at Melbourne, Sydney, Brisbane, Perth, Adelaide etc.
• We engage with our clients for their IT services, R&D, Staff augmentation and Permanent hiring needs for Australia
• XPT Software Australia is part of group companies which has global presence across India (Bengaluru, Chandigarh), Europe ( Berlin, Sweden, Poland)
• We have served 100+ clients globally fulfilling their onsite-offshore needs through local hiring or sponsored work visas
• With our strengths and capabilities, we aspire to support GLOBAL OEMs, Tier 1, Tier 2 companies in Automotive, Aerospace, BFSI, Consumer/Healthcare and Telecom space
• Visit below link to see more opportunities with us
http://xptsoftware.com.au/careers/