This is not just a job advertisement—this is a mission.
We are here to connect with people who pursue excellence, take initiative, and are committed to ongoing growth.
We are ctrl:cyber; a high-growth, proudly Australian cybersecurity firm, and we’re looking for purpose-driven individuals to join our team.
We want to hear from people who believe their potential has no ceiling. At Ctrl, your ambition and capabilities are met with real opportunities for impact and development. We’ve built a culture that values curiosity, supports innovation, and provides a platform for continuous learning.
You’ll be surrounded by motivated, skilled colleagues who lead with integrity and collaborate with purpose. Expect to do meaningful work. Expect to grow. Expect to be supported as you take on challenges that matter.
The Opportunity
We’re looking for a Security Operations Centre (SOC) Analyst to join our team. The role can be based in either Melbourne or Sydney and will include 8-hour night shifts in a 4-on, 4-off rotation. You will utilize cyber tools for the detection and protection of network and endpoint environments, applications, and stakeholder’s data. The role reports to the Head of Risk Operations and will be part of a collaborative multi-functional Agile team, working across a multi-domain company proactively responding to cyber events and incidents with external clients.
What You’ll Be Responsible For
Key responsibilities will include two main areas:
Security Monitoring:
- Work with both in-house Security Operations Centre (SOC) and key client stakeholders to ensure timely detection and alerting of security events
- Develop and act on threat intelligence pertaining to industry threats, trends and disclosures.
- Drive automation of security operations workflows by collaborating with the Security Engineering team to integrate security solutions into real-time monitoring as well as detection and response capabilities
Incident Response:
- Contribute to ongoing improvements in the Security Incident Management and Incident Response process
- Record, document, and report security incidents and breaches
- Develop, maintain, and test Incident Response procedures/playbooks
What We’re Looking For
- Ideally, you’ll have proven experience in a similar role and are comfortable working night shifts
- Experience or education in a SOC Analyst environment, detecting, responding and recovery from security alerts of external client-facing cloud-based services, or similar
- Ability to lead security incident investigations within a fast-paced agile environment
- Experience securing cloud and network-based services (preferably hosted in AWS or Microsoft Azure cloud environments) combined with insight into vulnerability management and scanning tools
- Fundamental to the role is the ability to analyse and operate SIEM and threat-hunting tooling (MS Sentinel, Defender, Elastic, Rapid7, etc), implementing application/infrastructure security best practice
- Experience in endpoint security solutions, file integrity monitoring and data loss prevention will be advantageous
- A natural problem solver with excellent communication skills – both written and verbal
What You’ll Get
- Flexible work environment
- A competitive base salary
- Flexibility, autonomy, and support with a clear investment in your development
- A collaborative, technically excellent team to be part of
