- 经验
- 任何
- 薪水
- —
- 职位空缺
- 1
- 发布
- 5小时前
- 工作模式
- 在办公室
- 学历
- Cyber Security, Information Technology, Computer Science, Information Systems, or related discipline
- 合格
- Applicants from all backgrounds, experiences, and identities are encouraged to apply. The role is suitable for candidates interested in cyber security and security operations, including those with relevant study, practical experience, or adjacent IT support experience.
- 恢复
- 需要申请
你的工作地点
职位描述
About the team
KPMG Australia’s Cyber Security Office is a key defender of the organisation, its clients, and digital environments against an ever-changing threat landscape. Its Security Operations Centre is the first line of defence, delivering round-the-clock monitoring, threat detection, incident response, and security operations support across both enterprise and client environments.
You’ll join a cooperative, high-performing group of cyber security specialists who are committed to protecting critical systems, examining security incidents, and improving cyber resilience. The role offers strong exposure for someone aiming to grow a career in cyber security while working with current security tools and response practices.
Your opportunity
As a Security Operations Centre Analyst at Level 1, your focus will be on watching for security events, helping investigate incidents, and supporting the overall effectiveness of the security operations function. You’ll work with leading security platforms to spot possible threats, review alerts, and assist senior analysts with response activities.
This position suits someone who is genuinely interested in cyber security, eager to learn, and comfortable in a dynamic operational setting. It provides the chance to build practical technical, analytical, and investigative capabilities while helping safeguard essential systems and day-to-day business operations.
What will you do?
Security monitoring and alert triage
- Track alerts and events across enterprise networks, endpoints, cloud platforms, and security monitoring tools.
- Carry out first-pass analysis of alerts to assess whether they are legitimate, how serious they are, and what action is needed.
- Pass confirmed or suspicious items to senior analysts in line with SOC procedures.
- Record investigations, observations, and actions accurately in incident management systems.
Incident response support
- Assist with incident investigations through evidence gathering, validation of alerts, and defined response steps.
- Work according to incident response playbooks and standard operating procedures.
- Help with containment and remediation tasks under senior SOC guidance.
- Communicate and coordinate effectively during active incidents.
Threat analysis and investigation
- Build understanding of common cyber threats, attack methods, and indicators of compromise.
- Use SIEM and security monitoring technologies to identify unusual behaviour, suspicious activity, and new threats.
- Support senior analysts in investigative and analytical work.
Operational excellence
- Follow SOC workflows, shift handover routines, and process requirements.
- Maintain and improve documentation, incident logs, and operational playbooks.
- Look for ways to strengthen processes, alert accuracy, and documentation quality.
Learning and collaboration
- Keep building cyber security knowledge through training and hands-on experience.
- Join knowledge-sharing and lessons-learned activities.
- Work closely with SOC colleagues, technology stakeholders, and wider cyber security teams.
- Assist with client and stakeholder engagement where the SOC delivers managed or advisory security services.
What we are looking for
We’re after people who show:
- Analytical thinking: an interest in investigating issues, spotting patterns, and drawing conclusions from evidence.
- Attention to detail: the ability to review information carefully, follow procedures, and keep thorough records in busy environments.
- Collaboration and communication: a team-oriented approach, clear communication, and a positive contribution to shared goals.
Experience and capability
- Clear interest in cyber security and security operations.
- Basic understanding of cyber security principles, threats, vulnerabilities, and defensive controls.
- Foundational familiarity with SIEM platforms or security monitoring tools.
- Ability to work within structured processes in an operational environment.
- Strong written and spoken communication skills.
- Willingness to learn and develop technical and investigative skills.
- Prior experience in a Security Operations Centre, IT operations, service desk, technology support, or a similar environment.
- Exposure to cyber security monitoring, incident response, threat detection, or vulnerability management.
- Experience working with formal processes and escalation pathways.
Qualifications
- A relevant tertiary qualification in Cyber Security, Information Technology, Computer Science, Information Systems, or a related field; equivalent practical experience is also acceptable.
Preferred certifications and training
- CompTIA Security+
- Microsoft Security Fundamentals (SC-900)
- Microsoft Security Operations Analyst (SC-200)
- Microsoft Azure Fundamentals (AZ-900)
- SOC Analyst, SIEM Fundamentals, Incident Response, or other related cyber security training
- Ongoing commitment to professional development and continuous learning in cyber security
Additional information
KPMG is a global professional services firm with extensive sector knowledge. The organisation helps clients across many industries solve complex problems, guide change, and support growth.
The company values different perspectives and aims to provide an inclusive, equitable workplace where people can do their best work. You’ll collaborate with skilled colleagues who support one another and contribute to meaningful outcomes.
The firm offers flexible ways of working, including flexible hours and locations, along with benefits such as generous paid parental leave, career breaks, retail discounts, health and wellbeing initiatives, learning and development opportunities, and salary packaging options.
During recruitment, information about adjustment requests will be shared for candidates who need support. Additional assistance is available before submitting an application through the Talent Attraction Support Team.
The role is based in Sydney, New South Wales, Australia and is a full-time onsite position.