AECOM Monitoring & Incident Response Consultant (IT Security) in Brisbane, Australia
Business Line AECOM Corporate
Position Title Monitoring & Incident Response Consultant (IT Security)
Australia - Queensland
The role will see you lead the Incident response and monitoring efforts in our APAC region and reporting to the EMIA SOC Lead. You will serve as a critical member of a global Security Operations Centre (SOC) and will play a key part in keeping the SOC at a world class level.
You will be a human sensor for the global monitoring and response team as part of a “follow the sun” model and you will be responsible for partnering with members of IT in the APAC region and around the world for incident containment and remediation.
Your role will include;
Analyse alerts from various sources in the SOC queue
Identify false positive alerts and create appropriate exceptions to quiet noisy alerts.
Identify systems exhibiting suspicious or malicious behaviour
Collect and analyse volatile forensic data to confirm or rule out malicious or attacker activity
Document your findings
Perform malware analysis and research
Follow up and determine root cause of incidents
Mentoring and knowledge sharing with local and global SOC teams
This is a great opportunity to join a world class security team. We’ve created a unique approach and structure that enables our team to quickly react and respond to incidents and keep a constant and open communication across all pillars of Global SOC. We have a true team approach to securing AECOM. We will have high expectations but you will be presented with fantastic opportunities to be part of something exceptional.
A qualified candidate is a seasoned professional with a broad level of experience in multiple areas of IT and a strong emphasis on Information Security. This includes awareness of current security risks, threats and targeted attack methods.
General IT security best practices knowledge
Experience with packet capture and analysis preferred
Solid understanding of Windows operating system, registry, security configurations, services, processes and WMI
Familiarity with Linux/Unix systems
Strong scripting or application development skills preferred
Strong understanding of security and network event logs
Solid understanding of malware, static and dynamic analysis and removal
Experience with common open source forensic tools
Experience with tools for ip/host/binary research
Experience with built-in OS shell commands and 3rd party command line tools
Able to pass through a background check.
Preferred Bachelor’s Degree in Computer Science or equivalent experience
Current security industry certifications preferred (GIAC, ISC2, EC-Council, etc)
What We Offer
AECOM is a place where you can put your innovative thinking and business skills into high gear and work alongside other highly intelligent and motivated people. It's a place where you can apply your skills to some of the world's most challenging, interesting, and meaningful projects worldwide. It's a place that values the diversity of our areas of practice and our people. It's what makes AECOM a great place to work and grow. AECOM is an Equal Opportunity Employer.
NOTICE TO THIRD PARTY AGENCIES:
Please note that AECOM does not accept unsolicited resumes from recruiters or employment agencies. In the absence of a signed Recruitment Fee Agreement, AECOM will not consider or agree to payment of any referral compensation or recruiter fee. In the event a recruiter or agency submits a resume or candidate without a previously signed agreement, AECOM explicitly reserves the right to pursue and hire those candidate(s) without any financial obligation to the recruiter or agency. Any unsolicited resumes, including those submitted to hiring managers, are deemed to be the property of AECOM.
Job Category Information Technology
Business Group Corporate
Position Status Full-Time
Requisition/Vacancy No. 187805BR
Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.