<table width="680"><tbody><tr><td width="507"><p><strong><span style="text-decoration: underline;">THE COMPANY</span></strong></p><p>An International NYSE listed marketing company expanding their Cyber Security team in APAC.</p><p> </p><p><strong>Benefits:</strong></p><ul><li>Join a new team within an established environment (DFIR)</li><li>Hybrid working- 3 days in office, 2 days WFH</li><li>Focus on uplift and automation</li></ul><p> </p><p><strong><span style="text-decoration: underline;">THE ROLE</span></strong></p><p>This is a specialist role focused on Cyber Incident Response and Digital Forensics across the entire global business.</p><p> </p><p>You will be directly responsible for responding to and containing cyber incidents as well as post-incident reviews to understand and determine IOC's and TTP's to better inform and craft remediation and learning activities.</p><p> </p><p>This is a specialist role working as part of a wider global SOC who operate in a follow-the-sun model.</p><p> </p><p><strong>Responsibilities:</strong></p><ul><li>Respond to sophisticated cyber incidents across the global network.</li><li>Collect, preserve and analyse digital evidence.</li><li>Conduct root cause analysis to understand events.</li><li>Enact incident containment measures and actionable recommendations.</li><li>Implement greater automation and improvement across IR frameworks, SOAR playbooks, cloud IR etc. </li><li>Mon-Fri - normal business working hours</li></ul><p> </p><p><strong><span style="text-decoration: underline;">YOUR PROFILE</span></strong></p><p>Ideal for a SOC/ CSIRT Analyst with Incident Response and Digital Forensics experience.</p><p> </p><p>Will suit someone looking to enhance their specialisation in DFIR, working on sophisticated events in a global organisation.</p><p> </p><p><strong>Required:</strong></p><ul><li>Proven SOC experience in Cyber Incident Response and Digital Forensics.</li><li>Knowledge of SIEM, EDR and Threat Intelligence tools to monitor, detect and investigate possible threats.</li><li>Proven experience responding to sophisticated cyber incidents.</li><li>Experience in collecting, preserving, and analysing digital evidence from compromised systems, endpoints, and networks.</li><li>Previous use of forensic tools (e.g., EnCase, FTK, X-Ways, Autopsy, Magnet Axiom, Volatility) to examine disk, memory, and network data.</li></ul><p> </p><p><strong>Personal attributes:</strong></p><ul><li>Attention to detail to translate written security procedures into SOAR playbooks that can be automated.</li><li>Forward thinking when it comes to automation through scripting (PowerShell, Python etc).</li><li><strong><span style="text-decoration: underline;">Australian citizenship is required for ability to obtain NV1 clearance.</span></strong></li></ul><p> </p><p><strong><span style="text-decoration: underline;">This is a full-time permanent role with hybrid working offering $130,000 - $150,000 (plus super) - depending on experience</span></strong></p><p> </p><h4><strong>This is a </strong>hybrid <strong>position.</strong></h4></td></tr></tbody></table><p><em>By clicking 'apply', you give your express consent that Robert Half may use your personal information to process your job application and to contact you from time to time for future employment opportunities. For further information on how Robert Half processes your personal information and how to access and correct your information, please read the Robert Half privacy notice: <a href="https://www.roberthalf.com/au/en/privacy" target="_blank">https://www.roberthalf.com/au/en/privacy.</a> Please do not submit any sensitive personal data to us in your resume (such as government ID numbers, ethnicity, gender, religion, marital status or trade union membership) as we do not collect your sensitive personal data at this time.</em></p><img src="https://counter.adcourier.com/YnJhbmRvbi53aWxraW5zLjY5MjgzLjEwNjc1QHJoaWF1cy5hcGxpdHJhay5jb20.gif">
