Security Operations Engineer (AU MSP, WFH)

Schedule: Monday- Friday (08:30 AM - 05:00 PM AEST)

What are we looking for?

Skills Required:

• Appropriate Tertiary qualifications in Cybersecurity, IT, or a related field (Computer Science, Information Security, or equivalent)
• Hands-on expertise in Microsoft Security Solutions, including but not limited to: Microsoft Defender for Endpoint, Defender for Identity, Defender for Office 365, Microsoft Sentinel (SIEM/SOAR) – Log ingestion, rule tuning, automation (Logic Apps/KQL queries), CrowdStrike Falcon Endpoint Protection – EDR/XDR, Threat Hunting, and Response, Identity & Access Management (IAM) – Microsoft Entra (Azure AD), CyberArk, Privileged Access Management (PAM)
• Experience with Security Awareness and Phishing Simulation tools like KnowBe4, Mimecast, and Application Whitelisting solutions such as Airlock and Microsoft Defender Application Control and strong understanding of ASD Essential 8, NIST, CIS Controls, MITRE ATT&CK, or other security frameworks
• Hands-on experience in: Security Monitoring, Threat Intelligence, and Threat Hunting, Incident Response & Digital Forensics – analyzing logs, investigating security incidents, and containing threats, Driving Vulnerability Management Programs for enterprise customers and experience with network and cloud security, including Azure Security Center, Azure Firewall, and Microsoft 365 Security Compliance, and Security solutions implementation and operational experience, particularly in a Microsoft security ecosystem

Industry Certifications (Security & SOC Specialization):

• Microsoft Security Certifications (e.g., SC-200: Microsoft Security Operations Analyst, SC-400: Microsoft Information Protection Administrator)
• CrowdStrike Falcon Certification (e.g., CrowdStrike Certified Falcon Administrator (CCFA), CrowdStrike Certified Falcon Responder (CCFR))
• SIEM/SOAR Certifications (e.g., Microsoft Sentinel, Splunk Certified SOC Analyst, QRadar Security Analyst

General Security Certifications:

• CompTIA Security+ (or equivalent foundational cybersecurity certification)
• ISC2 CC (Certified in Cybersecurity)
• GIAC Security Operations Certified (GSOC)
• Certified SOC Analyst (CSA) – EC-Council

What will you do?

• Provide 2nd-level technical support for Microsoft Defender, Microsoft Sentinel, and CrowdStrike within agreed SLA agreements
• Monitor, investigate, and respond to security incidents using Microsoft Sentinel SIEM, Defender for Endpoint, and CrowdStrike EDR/XDR
• Adhere to Incident Response, Threat Management, Security Operations, Problem, and Change Management processes aligned with ITIL and security frameworks (ASD Essential 8, NIST, MITRE ATT&CK)
• Proactively hunt for threats and perform security investigations by analyzing logs, alerts, and endpoint telemetry data from Microsoft Defender, Sentinel, and CrowdStrike Falcon.
• Configure, manage, and fine-tune security tools, including Microsoft Defender for Endpoint, Defender for Office 365, Sentinel (SIEM/SOAR), and CrowdStrike EDR/XDR.
• Support SIEM rule tuning, automation (KQL, Logic Apps), and dashboard creation to enhance SOC efficiency, and perform vulnerability scanning and management using Rapid7, Tenable, or Qualys, ensuring remediation actions are tracked and implemented
• Create and maintain technical documentation for customer security environments, including runbooks, playbooks, and incident response procedures, and provide escalated support from Service Desk (NOC/SOC Level 1) teams and assist in resolving security-related issues for enterprise customers.
• Participate in on-call rotations for after-hours incident response, threat escalations, and SOC monitoring.
• Conduct periodic customer meetings, presentations, and security posture reviews to provide insights into threat landscape, incident trends, and security improvements

Join the awesome team and enjoy these benefits & perks:

• WFH
• Medical, Dental Coverage and Life insurance
• Paid Vacation and Sick Leave (with Quarterly Sick Leave Conversion)
• Competitive salary package and annual appraisal
• Financial Assistance Program
• Mandatory Government Benefits and 13th Month Pay
• Regular Company Events, Work Life Balance, and Career growth opportunities

JOIN CONNECTOS NOW!

ConnectOS is certified as a Great Place to Work and is a top-rated Philippines employer of choice.

Since 1998, Our client has been empowering organizations to leverage technology to gain a competitive advantage. With a strong focus on IT management and IT strategy, our client offers cutting-edge converged IT services to clients across Australia, New Zealand, Asia, and North America. Renowned for pioneering the concept of delivering IT as a Service, they have revolutionized the way organizations access technology by eliminating the need for capital investments to fund expansion. Through their affordable solutions, they provide true scalability, elasticity, and agility to meet the ever-changing needs of businesses.

#ConnectOSRecruitment

#ConnetOSCareers #JoinConnectOS

Equal Employment Statement

Employment decisions at ConnectOS will be conducted without consideration of factors such as age’, race, color, religion, gender, disability status, sexual orientation, gender identity or expression, genetic information, and marital status. ConnectOS ensures the full confidentiality of the data it processes.