Total 3 job vacancies by Leidos

Your New Role

This is an opportunity to join a team of highly skilled and innovative network defenders, and the best group of individuals out there. Leidos’ Cybersecurity Intelligence and Response Team (CSIRT) has an immediate opening for a motivated Cyber Defense Analyst.

Our goal is to stay ahead of, and maintain a technical advantage over our adversaries using the latest technical advancements, including custom built cybersecurity capabilities. As a key part of the team, your responsibilities will include threat hunting, and tactical analysis of ongoing attacks by criminal and nation state actors.

You will perform data analysis, incident response, investigative analysis, and research on existing and emerging cyber threats, particularly those directed against Leidos' global networks.

Role responsibilities include:

• Analyze network and host activity associated with both successful and unsuccessful intrusions by advanced attackers.
• Perform network traffic analysis utilizing raw packet data, net flow, IDS, and custom sensor output.
• Support enterprise incident response efforts
• Leverage understanding of tactics, techniques and procedures associated with advanced threats to create and add custom signatures that mitigate highly dynamic threats to the enterprise
• Employ advanced forensic tools and techniques for attack reconstruction and intelligence gathering
• Proactively research emerging cyber threats. Apply analytical understanding of attacker methodologies and tactics, system vulnerabilities, and key indicators of attacks and exploits.

Leidos has a long serving history with Defence to provide mature cyber capability to support Australia's Defence mission. We are seeking experienced and security focused people to ensure its success.

If you want the following as part of your next role, please get in touch:

• Important and engaging work
• Leading edge technology
• Excellent training and career development
• Generous salaries at comparable market rates
• Energetic and focused high performing team
• Work with experienced peers on a well-resourced operation supporting the ADF
• Contribute to enhancing national security

This position as a SOC Senior Security Operations Analyst will see you leading a 24/7 Monitoring, Detection and Response teams. Responsible for leading, mentoring and providing the conduct of initial triage management and recommending actions to resolve incidents with minimal guidance.

Reporting directly to Senior Security Operations Lead, you will have the opportunity to help shape and develop our high-performing MDR team as they conduct their vital function in protecting critical Defence systems.

The role requires someone who is comfortable with some ambiguity, and is comfortable making decisions with limited oversight, as well as collaborating and engaging positively with other service providers and multiple areas of Defence.

The SOC is a 24x7x365 operation, operating multiple MDR shift teams across a rotating shift roster. This role will require you to encourage and lead a SOC MDR shift team, work closely with internal SOC teams and engaging with cross-functional teams on regular occasions in supporting our customer in their mission. You will also have additional tasks providing recommendations and working with Cyber Threat Intelligence, Threat Hunt and Threat detection Analyst for process and control improvements within the SOC.

Your New Role

This role is an exciting opportunity to perform crucial, high value and comprehensive cybersecurity services to support and protect our personnel in the Australian Defence Forces.

The Senior Security Operations Lead role will be responsible for coordinating a 24x7 security operations capability, ensuring that our analysts are continuously developing professionally, enabled and engaged in their mission to proactively monitor our networks for threats.

This is a business hours based role that covers co-ordination of handovers between shifts, provides a technical escalation point and most importantly trains and mentors a team of enthusiastic analysts who are eager to learn and grow.

If you like sharing your knowledge and seeing the team grow and develop this is an excellent opportunity for you. The role is best suited for a motivated, self-starter who enjoys taking charge of problems and working to solve them.

What You’ll Be Doing

• Coordinating our 24x7 monitoring capability ensuring activities are being conducted consistently across shifts and events are proactively responded to in a timely manner
• Providing consultative and technical advice to colleagues and stakeholders on cyber security operations
• Working closely with analysts to develop personalized professional development pathways
• Curating a suite of playbooks and documentation to capture processes and procedures
• Driving improvements to our capability through development of our monitoring tools including such artefacts as dashboards, rule creation and tuning, and custom SOAR components.
• Coordinating workflows through the maintenance and curation of ticketing queues for security operations
• Contributing to reporting on System Health Indicators for our environments and Key Performance Indicators for the delivery of our service

Please note:

• This role is based on a customer site and remote working options are limited. 
• This role is Monday to Friday, with flexible start and finish times