Incident Response Manager

Incident Response Manager You are a problem solver with a strong background in IR and or Security Operations Centre (SOC) We are one of the best and most advanced Cyber Security teams in Australia. Together we can contribute to protecting the Group, Customers andmunity Your business: The Technology division delivers the Group's information technology and banking operations functions to ensure the highest levels of customer service through world-class process excellence and technology innovation. Cyber Security protects the bank and our customers from theft, losses and risk events, through effective and proactive management of cyber security, privacy and operational risk. Due to the work requirements this role will require you to be located in Perth. Your new team: The mission of the Group's Cyber Attack Response team is to provide a high-performing, reliable, and sustainable assurances to detect, contain, and remediate attacks from cyber threats against the Group's digital ecosystem. Your impact and contribution: As the Incident Response Manager, you be part of a highly skilled and experienced team of specialists across the organisations wider Cyber Attack Response Team. This role will have you lead and manage major and critical incident responses initiatives and operational alerts while offering subject matter expertise to functional and technical stakeholders to support the organisations cyber defence. You will also: Analyse data and logs to establish context and scope the full attack path of cyber-attacks in a methodical, accurate and descriptive manner. Maintain incident response documentation, lead post incident review activities, and write incident reports. Partake in an "on-call" roster where required to ensure out-of-hours incident response coverage. Demonstrate thought leadership in the enhancement of incident response capabilities, including the running of brown bags and liaison with other teams. Participate in threat hunt and purple team activities to identify areas for improvement. Provide input as a subject matter expert into projects and initiatives where required. We are interested in people who: As the Incident Response Manager, you will bring yourmercial experience working across cyber security within an incident response and or Security Operations Centre (SOC) environment. You are a subject matter expert with the ability to advice on critical cyber incidents and offer technical support and consultative advice to the wider organisation to ensure the safety of the Group. You will bring: Experience in Incident Response (IR) or Security Operations Centre (SOC) essential. Highly technical background across a broad set of systems and infrastructure. Ability to articulate technical concepts while catering to different audiences is essential. An understanding on malware analysis including tools and automation. Ability to deal with pressure and be adaptive to change during major incidents. Proficiency in Splunk or similar SIEM technologies. Experience with intrusion detection, coding/scripting and other incident response specialisations. If this role is of interested to you, please apply directly or reach out to have a confidential discussion in more detail. If you're already part of themonwealth Bank Group (including Bankwest, x15ventures), you'll need to apply through Sidekick to submit a valid application. We're keen to support you with the next step in your career. We're aware of some accessibility issues on this site, particularly for screen reader users. We want to make finding your dream job as easy as possible, so if you require additional support please contact HR Direct on 1800 989 696. Advertising End Date: 28/04/2024 Job ID REQ208764