Cyber Security Engineer — Sydney CBD, Sydney

We are a generalist Security team operating within a hybrid model, where our internal team members are security generalists, and we leverage external specialists for malware deconstruction and niche expertise. Our team consists of three Cyber Engineers based in Newcastle, reporting to the Executive Manager. We are now looking for an experienced Cyber Engineer (SOC Engineer) to support our security operations and projects as the business continues to mature. Role Overview We are seeking a Cyber Engineer with a strong risk-based mindset to support our security operations, security controls, and project initiatives. This role is crucial due to an increasing workload driven by our company's growth and a recent merger. The successful candidate will be responsible for enhancing our security posture and ensuring the effectiveness of security controls while working alongside our outsourced SOC provider, Rapid7 . Key Responsibilities Security Operations & SOC Support : Work closely with our outsourced SOC provider (Rapid7) to monitor, analyse, and investigate security threats such as email phishing, data loss prevention, and vulnerabilities . Operational Security : Ensure security controls are properly implemented and functioning, including privileged account management and firewall security . Security Uplift Projects : Support and implement security enhancements and infrastructure improvements to align with business needs and industry standards. Incident Response & Investigation : Investigate and remediate security incidents, ensuring threats are properly identified and addressed. Risk-Based Approach : Apply a risk-focused mindset , questioning anomalies and identifying security gaps rather than just addressing technical issues. Collaboration & Training : Work closely with internal teams to enhance security awareness and ensure compliance with NIST and Essential 8 frameworks. Key Requirements Technical & Infrastructure Knowledge: Experience with SOC operations, security monitoring, and incident response . Strong background in IT infrastructure and cybersecurity . Familiarity with firewalls, vulnerability management, and endpoint security . Experience with Microsoft environments (Windows, O365, Azure security tools). Technology Stack: CrowdStrike (Endpoint Detection & Response) Rapid7 (SIEM) Microsoft Security tools (Azure migration & security management) Firewalls (General network security management) Experience & Industry Knowledge: Prior experience in Financial Services (highly preferred). Familiarity with regulatory compliance frameworks (e.g., NIST, Essential 8 ). Ability to work in a hybrid security model with a mix of outsourced SOC and in-house operations . Preferred Qualifications Certifications such as CISSP, CISM, CEH, or Azure Security certifications are beneficial but not mandatory. Experience working within a 9-to-5 SOC environment (as our SOC vendors handle 24/7 monitoring). Why Join Us? Opportunity to work in a growing security function within a maturing business . Exposure to major security transformation projects . Flexible work model (Sydney-based candidates welcome, Newcastle preferred). Supportive and collaborative team environment . By clicking 'apply', you give your express consent that Robert Half may use your personal information to process your job application and to contact you from time to time for future employment opportunities. For further information on how Robert Half processes your personal information and how to access and correct your information, please read the Robert Half privacy notice: https://www.roberthalf.com/au/en/privacy . Please do not submit any sensitive personal data to us in your resume (such as government ID numbers, ethnicity, gender, religion, marital status or trade union membership) as we do not collect your sensitive personal data at this time.