Metro is a multi-award-winning organisation, and we pride ourselves on our team of honest, high performing professionals who are talented, inclusive and safety focused and who are at the core of our success. You will be joining an organisation that is known as a global leader in its field but also prides itself on being dynamic, embracing new technologies and focused on customer service.
Our aim is to promote work/life balance, allow team members to bring their best to work and to truly be focused on a common goal which is to provide a world-class railway service.
About the Role
This position is primarily responsible for operational security of Metro’s infrastructure and applications. MTM are looking for an experienced Security Engineer to work in our Security Operations Team to maintain our protection, detection and response services. The successful candidate will ensure the ongoing maintenance, support and future direction of the security operations portfolio of tools and appliances. You will work within a team of engineers to ensure alignment across all platforms. This includes providing third level operational support for network, security, management and support tools that are developed and used internally.
Key Responsibilities
- Subject matter expert for core Security platforms including (Firewalls, HIDS, NIDS, SIEM, DLP, EDR, DDOS, PAM, Email Gateway, Vulnerability Management)
- Perform deep dive security forensics, analysis and reports for security incidents and suspicious activity and implement necessary actions to mitigate security risks
- Install, configure and maintain core security and network systems according to best practice and architectural principles/guidelines
- Respond and analyse Security Operations Centre (SOC) alerts and escalations to ensure Metro’s infrastructure is secure.
- Contribute to the development, management and enforcement of security standards, policies and procedures, and maintain suitable security monitoring solutions for platforms and new services.
- Plan and execute migrations, develop ongoing maintenance regimes, performance tuning, disaster recovery & general troubleshooting
- Work collaboratively as part of the Security Operations team/s to fulfil service requests as part of business support
- Work as part of an out of hours on-call roster
Qualifications
- Microsoft Certified: Azure Security Engineer Associate, desirable
- GIAC Certifications such as SANS GMON, GSEC, GCED, GCCC, GPPA, desirable
- OSCP or CEH would be advantageous
Skills and Experience
- At least 2 years experience working in a similar Security Engineering or Analyst role.
- Demonstrated experience in the management and configuration of web proxy solutions
- Experience with vulnerability management tools, Anti-Malware solutions, Phishing campaigns and phishing reporting solutions
- Experience scripting abilities in PowerShell and/or Python
- Experience with Security Endpoint Detection & Response tools such as Crowdstrike
- Ability to perform digital forensics, maintain chain of custody and report findings
- Understanding of global Cyber Security trends, attack vectors, fraud and identity theft techniques and proactively seeks to expand knowledge of these trends in line with new and emerging technologies
- Exceptional written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and non-technical audiences.
This is a fantastic opportunity to build on the career you've developed to date and take it to the next level by making a tangible impact that matters. If what you've read resonates with your values, experience and career aspiration then we want to hear from you.
Please submit your application via our recruitment portal by Friday 24th June 2022 to be considered for this position.
Metro Trains is an equal opportunity employer and embraces diversity. We encourage all interested applicants to apply but please do note only applications with the right to live and work in Australia will be considered for this position.
