Job Description
SOC Analyst Canberra (Remote)
Department: Cyber Services and Capabilities
Employment Type: Full Time
Location: AUS Sydney Clarence Street
Compensation: $117,480 / year
Position Title: SOC Analyst
Location: Canberra, ACT - Australia
Role Purpose :
Join our Australian SOC team as a SOC Analyst. In this role, you will be the "engine room" of our security operations, moving beyond basic alert monitoring to lead deep investigations across a diverse range of client environments in Asia Pacific (APAC). You will work with a world-class security stack and have the autonomy to hunt for threats and recommend custom detections.
Key Responsibilities
-
Triage and Investigation Lead investigations into complex security alerts utilising Splunk, Microsoft Sentinel, and SentinelOne SIEMs.
-
Endpoint Response Execute rapid containment and remediation actions using CrowdStrike Falcon, Microsoft Defender for Endpoint, and SentinelOne EDR.
-
Detection Tuning Optimise detection rules using KQL and SPL to enhance our proactive defence posture.
-
Threat Hunting Support regular threat hunting activities based on the MITRE ATT&CK framework to uncover hidden malicious activity.
-
Reporting & Mentorship Produce detailed incident reports for technical and executive stakeholders.
-
DLP Understand data-loss prevention in the context of Security Operations.
-
On-call: Participate in paid on-call roster every 3 weeks.
Skills, Knowledge & Expertise
What we are looking for in you
-
Experience: 2–4 years in a SOC or high-pressure security operations environment.
-
Tooling Expertise: Hands-on proficiency in Splunk, Sentinel, CrowdStrike, and Microsoft Defender. Experience with other SIEM and EDR technologies highly regarded.
-
Technical Skills: Strong understanding of TCP/IP, Windows/Linux internals, Cloud Security and common attack vectors (Phishing, Ransomware, Living-off-the-Land).
-
Certifications: One or more of the following: SC-200, Splunk Core Certified Power User, CompTIA CySA+, or SANS GCIH.
-
Communication: Ability to clearly articulate technical risks to non-technical client stakeholders verbally and/or via email and ticketing system.
Job Benefits
Behaviours
- Client-focused with a proactive and solution-oriented mindset.
- High attention to detail and commitment to quality.
- Collaborative and able to work effectively across teams.
- Comfortable managing multiple priorities in a fast-paced environment.
- Curious and eager to learn, with a passion for cybersecurity.
- Professional and confident in client-facing scenarios.
Ways of working
- Focusing on Clients and Customers.
- Working as One NCC.
- Always Learning.
- Being Inclusive and Respectful.
- Delivering Brilliantly.
Our company
At NCC Group, our mission is to create a more secure digital future. That mission underpins everything we do, from our work with our incredible clients to groundbreaking research shaping our industry. Our teams' partner with clients across a multitude of industries, delving into, securing new products, and emerging technologies, as well as solving complex security problems. As global leaders in cyber and escrow, NCC Group is a people-powered business seeking the next group of brilliant minds to join our ranks.
Our colleagues are our greatest asset, and NCC Group is committed to providing an inclusive and supportive work environment that fosters creativity, collaboration, authenticity, and accountability. We want colleagues to put down roots at NCC Group, and we offer a comprehensive benefits package, as well as opportunities for learning and development and career growth. We believe our people are at their brilliant best when they feel bolstered in all aspects of their well-being, and we offer wellness programs and flexible working arrangements to provide that vital support.
Come join us?
