- Conduct cyber defence and response activities including triaging alerts, investigating security incidents and providing response and containment against active threats.
- Proactively search for signs of malicious activity within AEMO IT infrastructure.
- Detection improvements to cater for the ever-changing technology stack and cyber security threat landscape
- Conduct digital forensic investigations to gather evidence and identify root cause of security incidents.
- Contribute to the improvement of protective security controls
- Continual improvement / development of documentation, processes, playbooks and incident response.
- Work closely with cross-functional teams, including other Digital teams to coordinate incident response efforts and process improvements
- Willingness to participate in on-call roster, providing 24*7 support responding to cyber incidents after hours.
- Strong experience in cyber security incident response, preferably with experience working in critical infrastructure or the energy sector.
- Experience in the development and implementation of security strategies
- Understanding and implementation of the Threat Hunting Maturity Model
- Experience with Cyber Security Kill Chain(s) and the MITRE ATT&CK Framework
- Demonstrated experience in cyber incident investigation, response, containment, and eradication.
- Demonstrated experience in digital forensics, timelining and organisation wide threat hunting.
- Tertiary qualifications in computer science or technology-related field, or equivalent work or education related experience.
- GIAC Certified Forensic Analyst (GCFA) certification desirable.
- Flexible working: work from home, part time, job share, hybrid options, and additional leave options
- Professional development via projects, industry networks, job rotation, study assistance and more.
- Give back with up to 4 days of volunteering leave per year.
- Embrace a healthier you with our wellness program, discounted health insurance, gym perks and our comprehensive Employee Assistance Program (EAP).
Analyst / Senior Analyst - Cyber Incident Response - Melbourne, Australia - Australian Energy Market Operator
Description
This is a Permanent Full-time position based in Mel/Syd/Brisbane/Perth.
AEMO at the Heart of Energy
We are the Australian Energy Market Operator (AEMO), committed to designing and operating a sustainable energy system that delivers safe, reliable, and affordable electricity and gas. Our mission includes facilitating the transition to a net-zero energy system by 2050, working collaboratively with industry partners to achieve 100% renewable generation capability by 2025. We have the once-in-a-lifetime opportunity to co-design the future of our energy systems, and our core values revolve around Character, Commitment, and Connection.
Join us, as we contribute to this significant mission in the energy sector
About the Team & the Position
At AEMO, we recognise the importance of cyber security in achieving a secure and resilient energy future. This is a SOCI related, critical role that will contribute to the execution of digital evolve and the cyber security strategy at AEMO.
The purpose of this position is to provide specialised skills and expertise in threat detection, analysis, and digital forensics to respond to the ever-growing cyber threats AEMO people and technology face each day.
Position Responsibilities
Position Requirements
Skills & Experience:
Education/ professional Certifications:
In return some of our benefits to you
About Our Process
AEMO values diversity and inclusivity in the workplace, welcoming applications from all backgrounds without regard to age, disability, gender, sexual orientation, parental status, race, or religion. We are dedicated to accommodating applicants' needs during the application or interview process, simply let the us know by emailing us at
If you would like to know more about working at AEMO, please check out our careers page for more information.