Cyber Threat Engineer - Global Threat Operations

  • Category: Security Services
  • Team: Managed Security Services
  • Location: Macquarie Park, New South Wales

Description

Position at Trustwave

Trustwave is a leading cybersecurity and managed security services provider that helps businesses fight cybercrime, protect data and reduce security risk. Offering a comprehensive portfolio of managed security services, security testing, consulting, technology solutions and cybersecurity education, Trustwave helps businesses embrace digital transformation securely. Trustwave is a Singtel company and the global security arm of Singtel, Optus and NCS, with customers in 96 countries. For more information about Trustwave, visit https://www.trustwave.com.

The role & team: 
Cyber Threat Engineer is a member of the Global Threat Operations (GTO) team within Trustwave Managed Security Services (MSS). In addition to possessing strong technical knowledge, this role interacts extensively with customers and partners using polite professional etiquette, and serves as a technical point of escalation within GTO.

Responsibilities:

  • As a L2 escalation point, analyse and respond to security events from firewalls, IDS, IPS, SIEM, Web Application Firewall (WAF) and other security data sources within documented SLA.
  • Use strong TCP/IP networking skills to perform network analysis and understand detected threats.
  • Respond within service level agreement (SLA) standards to customer tickets and threats requiring incident notification.
  • Tune devices for blocking and reporting based on customer business need.
  • Use effective written and verbal communication skills to interact with customers and internal resources in a polite, positive, and professional manner.
  • Take responsibility for customer satisfaction and overall success of managed services.
  • Respond to needs and questions of customers concerning their managed services, managed devices and detected threats.
  • Adhere to policies, procedures, and security best practices.
  • Resolve problems independently and understands the correct escalation procedures.

Skills & Knowledge Requirements:

  • Domain intermediate experience with at least 3 of the following:
    • Application Development and Application Security,
    • Network Administration & Security
    • Systems Administration and Security, and/or
    • Database Administration and Data Security
  • Endpoint security (Cybereason, Carbon Black, Palo Alto, etc.) concepts and products
  • Security Information and Event Management (SIEM)
  • Unix / Linux and Windows system administration
  • Information security best practices & network security architecture
  • Sourcefire/Snort/Mcafee/TrendMicro/FireEye based security products
  • Current exploit and remediation techniques
  • Web Services Administration
  • Web Application Firewall (WAF) management
  • Application security including development best practices
  • TCP/IP networking
  • Data at rest encryption
  • Vulnerability Scanning technologies
  • Log collection and analysis tools
  • IP Tables/Packet filter firewalls
  • Threat Intelligence
  • Incident Response / Forensics
  • Payment Card Industry (PCI) Standards

Desired Experience/Qualities:

  • 3-7 yrs Information security or networking experience
  • Intrusion analysis experience
  • Excellent customer service skills
  • Excellent analytical thinking and problem-solving skills
  • Strong oral and written communication skills
  • Self-managed and team-oriented ; Deadline- and detail-oriented ; Highly motivated

Preferred Experience/Qualities:

  • Intermediate to advanced experience in Information Security-related areas
  • Certified in Security related Industry, Vendor or Professional Certifications:  GCIA, GCIH, Security+, OSCP, CCSP or CEH preferred.

Education:

Generally though, certifications /qualifications are nice to have. What we care about is what you know, and who you are. How you came to know it – whether via formal education, industry training and certification, self study, or the school of hard knocks -will be a good discussion point, but we don't necessarily favor one over the other.

Why join us?

At Trustwave, everyone's experience is valued. We advocate Diversity of Thought, using diversity of experiences and perspectives to innovate and solve real world problems. Our people have studied at different universities, are self-taught, have worked in different companies in Australia, and around the world. Whoever you are, be comfortable, be different, be you, with us. Join Trustwave and together we’ll solve the cybersecurity challenges of today and into the future.

Trustwave is an Equal Opportunity Employer 

All Agencies:  
Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave’s policy is to only accept resumes from agencies via the Trustwave Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.

Share this opportunity

Trustwave is an Equal Opportunity Employer of Minorities, Females, Protected Veterans, and Individuals with Disabilities.

Trustwave is a leading cybersecurity and managed security services provider focused on threat detection and response. Offering a comprehensive portfolio of managed security services, consulting and professional services, and data protection technology, Trustwave helps businesses embrace digital transformation securely.Trustwave is a Singtel company and the global security arm of Singtel, Optus and NCS, with customers in 96 countries.

To All Agencies: Please, no phone calls or emails to any employee of Trustwave outside of the Talent Acquisition team. Trustwave policy is to only accept resumes from agencies via the Trustwave Agency Portal. Agencies must have a valid fee agreement in place and they must have been assigned the specific requisition to which they submit resumes, by the Talent Acquisition team. Any resume submitted outside of this process will be deemed the sole property of Trustwave and in the event a candidate is submitted outside of this policy is hired, no fee or payment of any kind will be paid.