EL1 Senior System Engineer — City, North Canberra

Job Description Location: ACT Start date: July 2025 Duration: Approximate 12-month contract with possibility of extension Pay rate: $78.95 - $88.31 per hour plus 12% superannuation Security Clearance Requirements: Negative Vetting 1 OVERVIEW: We are looking for an experienced Senior System Engineer (EL1 equivalent) to leverage both Engineering and Analyst skills to conduct defensive cyber security operations, ensuring the protection of the department's global network from malicious actors. This is an opportunity to monitor and improve Cyber Security systems in a government environment. RESPONSIBILITIES: Assist with log ingestion and use case creation for newly onboarded systems. Monitor and improve Cyber Security systems. Develop and maintain playbooks to assist with Cyber Security tasks. Analyse security events and logs to identify patterns of potential anomalous activity, recommend security enhancements, and assist in developing countermeasures to prevent future incidents. Undertake incident response and remediation functions. Assist with Threat Hunt activities. EXPERIENCE / REQUIREMENTS: Essential: Minimum 3 years working as a Cyber Security Analyst and/or Engineer. Experience maintaining SPLUNK infrastructure, or experience managing a similar product. Demonstrated knowledge of log ingestion from hybrid hosting platforms, including Azure and Amazon Web Services. Experience designing, implementing and testing use cases to detect potential malicious activity. Ability to work well and share knowledge within a team. Well-developed writing skills and experience maintaining technical documentation. Desirable: Experience using Splunk SOAR to develop Playbooks. Knowledge of Splunk Risk Based Alerting (RBA). Technical tertiary qualifications, Microsoft or Splunk certifications are highly desirable. Relevant industry certifications such as CISSP, GCIH, GCIA. IMPORTANT TO NOTE: SOS Recruitment is committed to the principles of workplace diversity and equity in employment and we encourage applications from Aboriginal and Torres Strait Islanders, people with disabilities, women, people with family responsibilities, people with diverse linguistic and cultural backgrounds, religious beliefs and LGBTIQ people. Please be advised If the closing date has passed for the particular position(s) you are interested in, we still encourage an application. Occasionally late applications are accepted and in addition we will retain your resume on our system for other positions as they arise. For more information on this role, please contact Aiden McLean on 02 6260 8888.