About Gilbert + Tobin

G+T is built on enduring values of excellence, trust, respect, integrity and good corporate citizenship. These values have underscored our growth, enabling us to become a leading firm of over 500 lawyers, trusted by our clients to navigate today’s increasingly complex world.

We are purpose built for our clients’ most complex and critical work - across transactions, disputes and regulation. Our partners are plain-speaking leaders in their fields, delivering the highest quality of legal advice and providing an exceptional edge for our clients. We are innovators in the use of technology, redefining value and service in the legal industry.

Our open, merit-based culture attracts and inspires the best legal talent. Founded in 1988, G+T’s journey has been one of relentless ambition and rapid progress, achieving extraordinary success in just over three decades.

We remain as determined as ever to be the best it’s possible to be.

About the Role

We are looking for an information security operations analyst to support the implementation and enhancement of the organisation's security operations. This role monitors security events, responds to incidents, and supports and enforces security policies and controls. The analyst collaborates closely with internal teams and third-party service providers to ensure the effective operation of tools such as endpoint protection, SIEM, MSSP, and vulnerability management systems. This role also contributes to incident response, threat detection, and risk remediation activities, helping to strengthen the organisation's overall cyber security posture.

Responsibilities

• Monitor and respond to security alerts, events and incidents across networks, systems and cloud environments
• Operate and maintain security tools and platforms, including SIEM, endpoint detection and response (EDR), managed detection and response (MDR) and data loss prevention (DLP) systems
• Identify, analyse and support the remediation of vulnerabilities and configuration issues
• Triage and escalate security incidents in line with the incident response plan
• Support investigations into potential security incidents and assist with forensic data collection where required
• Work with IT and business teams to implement security controls and recommend improvements
• Maintain and improve logging, alerting and detection rules to strengthen threat visibility
• Contribute to the continuous improvement of security policies and processes
• Review and assess security configurations across infrastructure, applications and cloud platforms
• Track and report on security metrics to support cyber risk management decisions
• Support security awareness initiatives and the application of organisational security policies
• Provide operational input for audits, assessments and compliance activities

About You

We are looking for a proactive and practical cybersecurity professional with strong security operations experience, sound judgment and a collaborative approach.

You will bring:

• At least four years’ experience in information security operations, SOC or cybersecurity analyst roles
• Experience monitoring security events, triaging alerts and supporting incident response using tools such as Security Information and Event Management (SIEM), endpoint detection and response (EDR), managed detection and response (MDR), data loss prevention (DLP) and vulnerability management platforms
• Strong understanding of threat detection, indicators of compromise, vulnerability management, endpoint protection, identity and access controls, device hardening and cloud security across AWS, Azure and hybrid environments
• Ability to assess risk, prioritise remediation, maintain incident records and report on security trends and metrics
• Working knowledge of ISO 27001, CIS Controls and ASD Essential Eight
• Strong written and verbal communication skills, with the ability to work effectively with technical and non-technical teams
• A calm, organised and solutions-focused approach, with high standards of confidentiality and integrity
• Relevant tertiary qualifications or equivalent practical experience. Certifications such as SSCP, GSEC or similar are desirable but not essential
• Eligible for Australian Government clearance

What we will offer you

Gilbert + Tobin will offer you a friendly, flexible and professional working environment. In addition to top of market remuneration, we provide our people with benefits such as up to 26 weeks’ paid parental leave, additional annual leave, a subsidised café, subsidised gym membership, ‘end of trip facilities’, exclusive retail discounts, social events, and much more, which you can view here: http://bit.ly/GTFLYER

Please submit your interest via our career’s website with a resume.
  
We are committed to providing and maintaining a diverse and inclusive environment and a culture where everyone feels valued and empowered to contribute.