Cybersecurity Analyst

**Position**: Cybersecurity Analyst - L2
**Datacom Location**: All of NZ

Our Why
Datacom works with organisations and communities across Australia and New Zealand to make a difference in people’s lives and help organisations use the power of tech to innovate and grow.

About the Role (Your Why)
As a Cybersecurity Analyst (L2), you will be responsible for analysing security events of interest before managing the incident through to resolution or identifying an opportunity for tuning. This role uses defensive measures and information collected from a variety of sources to identify, analyse, and report events that occur or might occur within the network to protect information, information systems, and networks from threats.

Our offices are based in Auckland, Wellington and Christchurch though we are open to hiring the right talent anywhere in NZ. We like to bring people together in person when we can, but we are mindful of the benefits of working from home for work/life balance. We therefore leave it to you and the team you join to figure out what works best

**There is a preference for NZ citizens or residents only though some current visa holders will be considered**

What You’ll Do
**As a Cybersecurity Analyst L2, your general duties will be to**:

- Use data collected from a variety of cyber defence tools (e.g., IDS alerts, firewalls, network traffic logs) to analyse events that occur within their environments for the purposes of mitigating threats.
- Provide guidance to L1 Cybersecurity Analysts.
- Respond to customer queries, providing customer service that exceeds our customers’ expectations.
- Bring Operational Security Excellence to any threat hunting/identification, threat intel research, threat intel notifications/subscriptions, tuning identification, and identification of enrichment opportunities that you carry out.
- Provide recommendations on platform enhancements and how to improve cybersecurity services.
- Incident, Change and Problem Management.
- Daily Event/Incident/Ticket Reviews.
- Escalate Security Incidents to the appropriate resolver group(s)
- Ensure documentation and the knowledgebase are kept up to date
- Compiling and completing internal and customer reporting.

We are a pretty agile company and are keen to respond to customer, technology and internal stakeholders’ changing requirements and this can mean we evolve in our roles to meet those needs.

What You’ll Bring
- 2+ years in a similar security analyst role and security incident response and resolution handling.
- Hands-on experience with network security or equivalent study.
- Experience working in ticketing systems and handling workflow.
- An understanding of Security Information & Event Management (SIEM) concepts and functionality.
- Knowledge of networks, firewalls, proxies concepts and technologies.
- Knowledge of security industry frameworks such as NIST 800-61, NZISM and Cybersecurity advisories/forums such as CERT NZ, FIRST, NZITF.
- Knowledge of cyber-attack methodologies and techniques such as MITRE and Lockheed Martin Cyber Kill Chain and other common cybersecurity threats.
- Skills in log event correlation, antivirus/malware protection.
- Skills in Linux OS and working with BASH.

And it would be desirable to have knowledge of cybersecurity vulnerability testing, risk analysis methodologies and forensic techniques, as well as experience with vulnerability scanning and reconnaissance methods and skills in vulnerability management, scripting languages (e.g. Power Shell, Perl etc.), penetration testing and SQL or similar database skills.

**Some useful qualifications would be**:

- ITIL - Information Technology Infrastructure Library Foundation
- CompTIA Security+
- CompTIA Analyst+
- Security related vendor qualifications
- SANS GCIH - GIAC Certified Incident Handler
- SANS GIAC - GIAC Certified Intrusion Analyst

And CISSP, OSCP, CEH, and SANS GMON and SANS GCED.

Why Join Us Here at Datacom?
Datacom is one of Australia and New Zealand’s largest suppliers of Information Technology professional services. We have managed to maintain a dynamic, agile, small business feel that is often diluted in larger organisations of our size. It's our people that give Datacom its unique culture and energy that you can feel from the moment you meet with us.
We care about our people and provide a range of perks such as social events, chill-out spaces, remote working, flexi-hours and professional development courses to name a few. You’ll have the opportunity to learn, develop your career, connect and bring your true self to work. You will be recognised and valued for your contributions and be able to do your work in a collegial, flat-structured environment.
We operate at the forefront of technology to help Australia and New Zealand’s largest enterprise organisations explore possibilities and solve their greatest challenges, so you will never run out of interesting new challenges and opportunities.
We want Datacom to be