AECOM Monitoring & Incident Response Consultant (IT Security) in Brisbane, Australia

Business Line AECOM Corporate

Position Title Monitoring & Incident Response Consultant (IT Security)

Australia - Queensland


Job Summary

The role will see you lead the Incident response and monitoring efforts in our APAC region and reporting to the EMIA SOC Lead. You will serve as a critical member of a global Security Operations Centre (SOC) and will play a key part in keeping the SOC at a world class level.

You will be a human sensor for the global monitoring and response team as part of a “follow the sun” model and you will be responsible for partnering with members of IT in the APAC region and around the world for incident containment and remediation.

Your role will include;

  • Analyse alerts from various sources in the SOC queue

  • Identify false positive alerts and create appropriate exceptions to quiet noisy alerts.

  • Identify systems exhibiting suspicious or malicious behaviour

  • Collect and analyse volatile forensic data to confirm or rule out malicious or attacker activity

  • Document your findings

  • Perform malware analysis and research

  • Incident containment

  • Follow up and determine root cause of incidents

  • Mentoring and knowledge sharing with local and global SOC teams

This is a great opportunity to join a world class security team. We’ve created a unique approach and structure that enables our team to quickly react and respond to incidents and keep a constant and open communication across all pillars of Global SOC. We have a true team approach to securing AECOM. We will have high expectations but you will be presented with fantastic opportunities to be part of something exceptional.

Minimum Requirements

A qualified candidate is a seasoned professional with a broad level of experience in multiple areas of IT and a strong emphasis on Information Security. This includes awareness of current security risks, threats and targeted attack methods.

  • General IT security best practices knowledge

  • Experience with packet capture and analysis preferred

  • Solid understanding of Windows operating system, registry, security configurations, services, processes and WMI

  • Familiarity with Linux/Unix systems

  • Strong scripting or application development skills preferred

  • Strong understanding of security and network event logs

  • Solid understanding of malware, static and dynamic analysis and removal

  • Experience with common open source forensic tools

  • Experience with tools for ip/host/binary research

  • Experience with built-in OS shell commands and 3rd party command line tools

  • Able to pass through a background check.

Preferred Qualifications

  • Preferred Bachelor’s Degree in Computer Science or equivalent experience

  • Current security industry certifications preferred (GIAC, ISC2, EC-Council, etc)

What We Offer

AECOM is a place where you can put your innovative thinking and business skills into high gear and work alongside other highly intelligent and motivated people. It's a place where you can apply your skills to some of the world's most challenging, interesting, and meaningful projects worldwide. It's a place that values the diversity of our areas of practice and our people. It's what makes AECOM a great place to work and grow. AECOM is an Equal Opportunity Employer.


Please note that AECOM does not accept unsolicited resumes from recruiters or employment agencies. In the absence of a signed Recruitment Fee Agreement, AECOM will not consider or agree to payment of any referral compensation or recruiter fee. In the event a recruiter or agency submits a resume or candidate without a previously signed agreement, AECOM explicitly reserves the right to pursue and hire those candidate(s) without any financial obligation to the recruiter or agency. Any unsolicited resumes, including those submitted to hiring managers, are deemed to be the property of AECOM.

Job Category Information Technology

Business Group Corporate

Country Australia

Position Status Full-Time

Requisition/Vacancy No. 187805BR

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.