EY Manager - Level Security Operations Specialist 

Australia, Victoria, Melbourne 

349665966

Level 3 Security Operations Specialist

We bring together extraordinary people, like you, to build a better working world.

As our experienced L3 Security Operations Specialist, you will play a vital role in providing cybersecurity and incident response services for our clients, performing highly advanced and proactive threat hunting activities to protect our clients from cyber threats. You will be a key influencer in strategic cybersecurity decisions. You will operate with a high degree of autonomy, co-ordinating incident response on a day-to-day basis and leading continuous improvement in L1 and L2 triage processes. You will also perform regular threat hunting, based on available threat intelligence as well as your own developed hypothesis. Your analysis will lead to better detection capability for our services, and better protections for the clients we serve.

In summary, you will:

· Oversee Security Monitoring tools, processes and systems to detect and respond to security events in real-time, working closely with other IT and security teams to enhance security posture.

· Proactively search for threats and vulnerabilities within the network and systems used by our clients

· Conduct in-depth analysis of security threats and incidents, including forensic analysis and root cause determination, providing guidance and training to junior analysts and other team members on security best practices and incident response procedures.

What we’re looking for

Here’s our ‘wish list’ but don’t worry if you don’t tick all the boxes. We’re interested in your strengths, what you want to learn, and how far you want to go.

· Bachelor's degree in Computer Science, Information Security, or a related field.

· Minimum 5-7 years of experience in a SOC or security analyst role, with a minimum 3 years experience as an L3 specialist.

· In-depth knowledge of Sentinel, MS Defender, other Threat centric tools, IDS/IPS, email security, vulnerability scanners and other security technologies.

· Strong understanding of incident response frameworks and best practice, with experience leading the investigation and response to security incidents using advanced technical skills and threat intelligence

· Experience in development and execution of incident response plans, ensuring proper communication and documentation throughout the incident lifecycle.

· Ability to collaborate with cross-functional teams to coordinate incident response activities and ensure timely communication.

· Experience as the primary point of contact for incident escalations from Tier 1/2 analysts, with the ability to perform advanced triage, including deep-dive analysis of security events and logs to determine incident severity, scope, and potential impact.

· Strong background in formulation and execution of threat hunt scenarios and the development of subsequent use cases to uplift detection capability

· Ability to investigate potential threats identified through security alerts via SIEM, anomalies, or intelligence reports.

· Experience conducting independent research and analysis to identify potential attack vectors and vulnerabilities. This may include using threat intelligence and attack frameworks to create realistic threat scenarios.

· Capability to translate threat intelligence into actionable detection and hunting strategies.

· Experience in developing and fine-tune security rules and correlation logic to improve threat detection capabilities.

· Relevant industry certifications such as GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP), or CompTIA Security+ are highly desirable.

· Discover how, when and where you can work at www.ey.com/au/flexibility

· We offer a competitive salary which is open to negotiation pending on skills and experience.

Acknowledgement of Country

Apply now… we’re over 9,000 perspectives in Australia and we’re ready to welcome yours.

Our preferred applicant will be required to undertake employment screening by EY or our external third-party provider.