Cyber Incident Response Analyst

Incident Response Analyst 6 Month initial contractMix of WFH and office in Central SydneyA busy cyber security operations team is looking for a sharp, hands-on Senior IR Analyst to hit the ground running on a 6 month contract.

This is a genuinely technical role sitting inside an established SOC. You will be leading complex incident investigations, driving containment and remediation, and contributing to how the team detects and responds to threats. If you want to do real IR work in a dynamic environment rather than manage spreadsheets, this one is worth a look.

What you will be doing

• Leading end to end investigation and containment of complex security incidents
• Conducting advanced digital forensics across Windows and Linux environments
• Threat hunting, IOC identification, and mapping adversary activity against MITRE ATT&CKKeeping stakeholders informed throughout incidents, both technical and non-technical audiences
• Contributing to playbook development and continuous improvement of IR processes
• Supporting the broader security team with expert guidance on IR and threat intelligence

What we are looking for

• 5+ years in cyber security with a strong hands-on IR focus
• Solid SIEM experience, Splunk or Sentinel preferred
• Hands-on EDR experience, CrowdStrike or Defender for Endpoint
• Digital forensics capability across native OS tooling on Windows and Linux
• Familiarity with MITRE ATT&CK and structured threat analysis
• Strong communicator who can brief technical and non-technical stakeholders under pressure
• Relevant certifications such as GCIH, GCFE, GCFA or CISSP highly regarded
• Experience with forensics platforms such as Sleuthkit, Encase or FTK desirable
• Interested candidates that meet the required skillset of the role are encouraged to apply via the link with an updated resume.
• Reference BIHI 113871