Apply now »

Senior Security Operations Engineer

Job Requisition Number:  11064
Date:  2 May 2024
Location: 

DOCKLANDS, VIC, AU, 3008

Will you actively create a healthier future for tomorrow?

At Medibank and ahm we’re encouraged to think big. We have a clear purpose to impact better health outcomes for our customers, patients and our community.

 

We celebrate diversity of thought because we want to make better decisions for our customers. As we work towards our goal of better health for better lives, we value the knowledge and contribution of Aboriginal and Torres Strait Islanders. We are working hard to create an inclusive workplace and develop Indigenous careers.

 

The Role

 

At Medibank, we are continuously looking at ways to develop, maintain and support security controls across the organisation. We are on the lookout for a technical and analytical Senior Security Operations Engineer who has a curious eye and is passionate about solving complex problems using state of the art security solutions. 

 

As a Senior Security Operations Engineer at Medibank, you will contribute to our security posture though your involvement in and contribution to the design, planning, implementation, maintenance and management of security controls, systems, process, and infrastructure. 

 

Some of your duties include:  

 

  • Designing, planning, and implementing security solutions for the organization. 

  • Configure and manage Security tools like Endpoint Protection Platforms, Vulnerability Scanners, Firewalls, SIEM, SOAR, etc. 

  • Perform frequent analysis of the organization’s Security posture to enable continuous improvement. 

  • Promote learning and development within the team through assignments and exercises to introduce them to newer threats and exploits. 

  • Create and update Standard Operating Procedures and Incident Response Playbooks for the Security Operations team. 

  • Deliver and maintain operating procedures and security controls for compliance against most common security standards and frameworks like PCI-DSS, NIST, etc. 

  • Provide design inputs to the Delivery team to help them in planning and implementing security solutions. 

  • Participate in an 24/7 on-call roster to responds to security events on Medibank systems. 

  • Participate in enterprise-scale security and infrastructure incidents. 

  • Manage rulesets and configurations of systems that generate security event data, and tune alerting and reporting of security event data sources. 

  • Triage on a wide variety of events from various sources to determine whether they pose a threat to Medibank systems stability, performance, and availability. 

 

Ideally you will have:

 

  • 7+ years’ experience in one or more of the following roles:

    •  IT operations, systems administration, software engineering, system engineering, digital forensics, security analyst, security engineering or detection engineering. 

  • Experience performing network, threat, and security analysis of events. 

  • Experience performing cloud-based incident response activities. 

  • Experience with handling Security Incidents and recovery activities. 

  • Experience with setup, configuration, and management of tools like EPP, Firewalls, Vulnerability Management, SOAR, SIEM, EDR, etc. 

  • Accountable for working with the team to ensure KPI’s and targets are met. 

  • 2+ years’ experience in information security or a related field. 

  • Understanding and experience with TCP/IP and networking equipment such as switches, firewalls, and routers. 

  • Experience configuring, analyzing, and documenting security threats and controls across Azure and AWS platforms. 

  • Hand-on experience managing AWS environments, Linux environments; Windows environments. 

  • Management and use of automation and orchestrations tools and systems (e.g. Puppet, Chef, Salt, Ansible, Docker, Kubernetes, Jenkins, Terraform); 

  • Experience with one or more of Python, Perl, Bash, Go, C/C++ and/or Java. 

 

Desirable but not essential:

 

  • One or more security-related certifications, such as CISSP, CEH, CISA, CISM, SECURITY+, etc
  • Hand-on experience with Security Automation and Orchestration (SOAR)
  • Previous experience in non-security operations roles
  • Management and triage of application whitelisting technologies
  • Management and triage of vulnerability-scanning and vulnerability-management tools
  • Hands-on experience with event management or correlation tools (SIEM)
  • Management and triage of endpoint protection technologies like next gen av (NGAV) and endpoint detection and response (EDR)
  • Experience or involvement in software development highly desirable

 

A career with us

We believe work is something we do, not somewhere we go. Our modes of working – Collaboration, Connection and Concentration – help inform how your day is structured and where you choose to work will vary, depending on your role and requirements.

 

The wellbeing of our employees is our priority. We encourage you to talk to us about any adjustments or additional support you may require during the recruitment process, as well as how this role can be flexible for you. Virtual interviews are always on offer and will not adversely impact your application.

 

We offer a range of great benefits such as subsidised private health insurance, rewards and discounts, and health and wellbeing initiatives. To find out more, click here.

 

To start small and impact bigger.


Job Segment: Operations Manager, Cloud, Computer Forensics, Information Security, Operations, Technology, Security

Apply now »