CrawlJobs Logo

Cyber Threat Specialist

Australia, Victoria · Job Posted January 25, 2026
Apply Position
Job Link Share

Job Description

Critical role within the Cyber Threat Intelligence Team. As a Threat Specialist within our expanding Cyber Threat Intelligence Team, you’ll be protecting an Australian icon. At Woolworths, our brands are woven into the fabric of daily life, and you will be the shield that keeps them secure.

Job Responsibility

  • Maintain awareness of the cyber threat landscape by conducting research to contribute to formal threat reports and curate actionable intelligence
  • Triage, tune, and customise threat alerts while incorporating curated Indicators of Compromise (IOCs) into the existing threat framework
  • Identify and prioritise detection opportunities using SIEM and EDR tools, mapped against the Mitre ATT&CK framework for comprehensive coverage
  • Conduct threat hunting, trigger incident response workflows, and provide dedicated intelligence support during major security incidents
  • Proactively raise security risks and recommend appropriate controls to strengthen the organisation's defensive posture
  • Assist with the zero-day vulnerability process and ensure all technical documentation remains current and accurate
  • Drive continuous improvement by streamlining workflows through the strategic use of automation and advanced tooling

Requirements

  • 7+ years of tested cyber security experience within high-pressure environments, including SOC, NOC, and CIRT ecosystems
  • Expert-level mastery in network intrusion, detection, and response, with a current and sharp understanding of the modern threat landscape
  • Deep-seated intuition for malicious code, with the specialised skills required to understand the anatomy of an attack
  • Seamlessly applying the MITRE ATT&CK® framework and Cyber Kill Chain methodology to map adversary behavior and anticipate the 'next move'
  • Broad spectrum confidence across an array of security applications, ensuring the right tool is leveraged for the right threat at the right time
  • Advanced proficiency in Open Source Intelligence, turning public data into actionable defensive strategies
  • A rare ability to translate complex cyber risks into tangible business outcomes, ensuring security initiatives drive organisational value rather than just technical compliance
  • Comprehensive end-to-end exposure to Incident Response (IR), from initial triage through to post-mortem and long-term hardening
  • Equally effective as an individual contributor or a collaborative team player, maintaining peak performance in both autonomous and integrated environments

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Cyber Threat Specialist

8 matching positions

Specialist, Cyber Threat Intelligence

The Specialist, Cyber Threat Intelligence is responsible for proactively identif...
Location
Location
Canada , Toronto
Salary
Salary:
Not provided
aircanada.com Logo
Air Canada
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A relevant University degree/technical certification, and/or relevant experience commensurate to the role
  • 5+ years of hands-on professional experience in Cyber Threat Intelligence and Threat Hunting within large enterprise or critical infrastructure environments
  • Deep, applied understanding of adversary tradecraft, including intrusion kill chains, MITRE ATT&CK, Diamond Model, malware families, exploitation techniques, persistence mechanisms, and threats targeting aviation and critical infrastructure sectors
  • Demonstrated experience conducting intelligence-led and hypothesis-driven threat hunts
  • Strong hands-on experience with threat intelligence platforms (TIPs), including IOC ingestion, enrichment, scoring, aging, and operational deployment
  • Proven ability to perform malware and campaign analysis, correlating samples, infrastructure, C2 patterns, payload behavior, delivery mechanisms, and underground chatter into cohesive adversary assessments
  • Experience with dark web monitoring, closed forums, leak sites
  • Advanced log analysis and data correlation skills to identify low-signal, stealthy, or novel adversary activity
  • Hands-on experience developing automation pipelines, scripts, or tooling (Python, PowerShell, APIs, SOAR, etc.) to support intelligence collection, normalization, enrichment, and dissemination
  • Experience with query languages and analytics (KQL, SPL, SQL, etc.) to support threat hunting, detections, and investigations
Job Responsibility
Job Responsibility
  • Collect, analyze, validate, and contextualize cyber threat intelligence from multiple sources including OSINT, dark web forums, commercial feeds, ISACs, industry partners, and internal telemetry to identify emerging threats, adversary TTPs, and sector-specific risks
  • Drive and continuously mature the strategy, governance, and operational execution of the Cyber Threat Intelligence (CTI) program, establishing a formal intelligence lifecycle that ensures actionable intelligence is effectively collected, enriched, analyzed, disseminated, and operationalized within security functions
  • Track, profile, and conduct deep analysis of threat actors targeting the organization’s industry, technology stack, and supply chain, including long-term campaign tracking, infrastructure reuse, malware evolution, and adversary behavior patterns
  • Conduct intelligence-led and hypothesis-driven threat hunting across enterprise systems to identify stealthy, advanced, or previously undetected adversary activity
  • Support and participate in incident response, forensic analysis, and post-incident investigations, providing adversary attribution assessments, likely next-step analysis, and intelligence-based scope expansion
  • Serve as a bridge between fraud prevention, SOC, and intelligence teams to ensure comprehensive coverage of threats. Facilitate information sharing and collaboration to strengthen the organization’s overall security posture
  • Create detailed technical reports, threat advisories, and early warning alerts on emerging threats and incidents for technical and non-technical stakeholders
  • Fulltime
Read More
Arrow Right

Cyber Threat Intelligence Specialist

Join our mission to fight cybercrime and become a key member of our Threat Intel...
Location
Location
North Macedonia , Skopje
Salary
Salary:
Not provided
hornetsecurity.com Logo
Hornetsecurity
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of fundamental cybersecurity concepts, including the CIA triad (Confidentiality, Integrity, Availability), vulnerability management, Advanced Persistent Threats (APT), as well as security frameworks and standards such as NIST, ISO 27001 and MITRE ATT&CK
  • Advanced understanding of tools, tactics, techniques and Procedures (TTPs) utilized by threat actors and ability to identify behavioural or recurrent patterns
  • Proficiency with threat intelligence platforms such as OpenCTI, MISP or ThreatConnect
  • Familiarity with programming and scripting languages (e.g., Python, PowerShell)
  • Proficiency in network protocols and packet analysis, with a deep understanding of TCP/IP, DNS, HTTP/HTTPS, and other relevant protocols
  • Proficiency in using SIEM solutions (e.g., Splunk, QRadar), and other security tools
  • Strong analytical and problem-solving skills to assess complex threat information
  • Excellent written and verbal communication skills to effectively convey threat intelligence to both technical and non-technical audiences
  • Ability to work collaboratively in a team environment and build strong relationships with stakeholders
  • Strong attention to detail to identify subtle indicators of compromise and emerging threats
Job Responsibility
Job Responsibility
  • Lead the management of Threat Intelligence within our CTI platform. Verify and ensure the accuracy and reliability of data within the platform
  • Develop and maintain threat intelligence processes and procedures
  • Continuously monitor and analyze Cyber Threat Intelligence from various sources including open-source intelligence, commercial feeds and internal data
  • Identify and assess potential threats and vulnerabilities to our clients
  • Provide actionable intelligence insights to support relevant teams for incident response
  • Evaluate and recommend new tools and technologies to improve threat intelligence capabilities
  • Produce detailed reports and briefings on cyber threats, trends and incidents for technical and non-technical stakeholders
  • Collaborate with internal and external cybersecurity associations on behalf of Hornetsecurity, representing the company at industry events and conferences
What we offer
What we offer
  • Room for innovation and autonomy in a fast-growing international company
  • Temporary Employee Exchange Program – we provide the ability for you to work at our global office locations and explore the world (e.g. Berlin, Madrid, Malta, Montréal, Washington D.C.)
  • Flexible working hours and the option to work from home
  • Permanent contracts – we’re in it for the long haul and hope you are too!
  • Team events like Laser Tag, Office Movie Nights, Foodie Fridays and much more – let yourself be surprised!
  • FitKit subscription and private insurance for your health!
  • Referral Bonus: we pay 1500€ for each referral who is successfully hired by us!
  • Fulltime
Read More
Arrow Right

Cyber Threat Intelligence Specialist

To reduce Vodafone’s cyber risk exposure by delivering timely, actionable threat...
Location
Location
United Kingdom , Newbury
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of active nation‑state and financially motivated threat actors targeting telecoms, enterprise networks, and critical national infrastructure, with focus on actor tactics, techniques and procedures (TTP's)
  • Hands‑on experience producing and applying operational threat intelligence, including indicator development, attack pattern analysis, and supporting detection, response, and remediation activities
  • Ability to triage, correlate, and integrate multiple intelligence sources (telemetry, open source, vendor, and partner intelligence) into clear, actionable outputs
  • Effective stakeholder engagement skills across SOC, Incident Management and cyber defence teams, with the ability to communicate threat information clearly to technical audiences under operational pressure
  • Experience working with external intelligence communities and information‑sharing groups to enrich situational awareness and support operational security outcomes
Job Responsibility
Job Responsibility
  • Deliver operational and tactical threat intelligence on active threat actors, campaigns, and techniques impacting Vodafone's networks, IT environment, and services, with a focus on supporting detection and mitigation of threats
  • Support live incidents, investigations, and Threat Action Groups by monitoring adversary activity, providing timely intelligence updates, and maintaining situational awareness throughout operational events
  • Analyse threat reporting, tooling, and external intelligence to identify actionable indicators, attack patterns, and detection opportunities, feeding directly into CSOC, Incident Management, and defensive teams
  • Track intelligence outcomes by assessing whether intelligence contributed to detection improvements, response actions, vulnerability remediation, or threat disruption, and feed lessons learned back into operational processes
What we offer
What we offer
  • Yearly bonus: 10%
  • Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
  • Charity days: 5 days/year
  • Maternity leave: 52 weeks: the first 13 weeks are fully paid, followed by 26 weeks of half pay
  • Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10%
  • Access to: private medical, private dental, free health assessments, share save scheme
  • Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan
  • Fulltime
Read More
Arrow Right

Cyber Threat Hunting Specialist

At Vodafone, we’re not just shaping the future of connectivity for our customers...
Location
Location
United Kingdom , Newbury
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Threat Research Expertise
  • You are an experienced security analyst who operates well beyond alert-driven workflows
  • You have a deep understanding of adversary tactics, techniques, and procedures
  • Analytical Thinking
  • You are comfortable working with incomplete, ambiguous, or conflicting data
  • Tool Proficiency
  • You are highly proficient in querying and analysing large-scale security data
  • Data Source Fluency
  • You are confident working across diverse telemetry, including endpoint, identity, network, and cloud data
  • Collaborative Communication
Job Responsibility
Job Responsibility
  • Proactively search for signs of cyber threats across systems and networks
  • Proactive Threat Hunting
  • Drive proactive threat hunting across Vodafone’s environment
  • Own complex investigations end-to-end
  • Rule Development for Security Operations
  • Translate your hunting outcomes into robust, production-ready detection logic
  • Challenge existing detections, identifying gaps in coverage, and refining logic
  • Threat Intelligence Integration
  • Work closely with Cyber Threat Intelligence to turn intelligence into actionable outcomes
  • Assess, validate, and challenge intelligence by mapping it to real telemetry and observed behaviours
What we offer
What we offer
  • Yearly bonus: 10%
  • Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
  • Charity days: 5 days/year
  • Maternity leave: 52 weeks: the first 13 weeks are fully paid, followed by 26 weeks of half pay
  • Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10%
  • Access to: private medical, private dental, free health assessments, share save scheme
  • Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan
  • Fulltime
Read More
Arrow Right

Cyber Risk Management Specialist / Cyber Practice Consultant

An exciting opportunity has arisen to join a growing specialist Cyber Risk & Ins...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
idexconsulting.com Logo
IDEX Consulting Ltd
Expiration Date
September 06, 2026
Flip Icon
Requirements
Requirements
  • Experience within Cyber Insurance, Cyber Risk Management or Financial Lines insurance
  • Strong technical understanding of cyber risks and cyber insurance products
  • Commercial awareness and relationship-building ability
  • Excellent communication and stakeholder management skills
  • Ability to explain technical cyber concepts in a clear and client-friendly manner
  • Strong organisational and problem-solving skills
  • A proactive and consultative approach
  • Ambition to help develop and grow a specialist practice area
  • Experience within a commercial insurance brokerage, insurer or cyber consultancy environment
  • Exposure to: Cyber Insurance, Technology E&O, Professional Indemnity, Financial Lines, Data Protection / GDPR, Incident Response Planning
Job Responsibility
Job Responsibility
  • Advise clients on cyber risk exposures and cyber insurance solutions
  • Build and develop strong relationships with clients, insurers and key stakeholders
  • Support the placement and renewal of Cyber Insurance programmes
  • Work closely with Account Executives and wider broking teams to identify cyber opportunities within existing portfolios
  • Assist clients in understanding emerging cyber threats, trends and risk management strategies
  • Conduct cyber risk reviews and support clients with improving cyber resilience
  • Liaise with specialist insurers and markets to negotiate competitive terms and coverage
  • Support new business activity and contribute towards the growth of the Cyber Practice
  • Deliver presentations and technical guidance to clients and internal teams where required
  • Keep up to date with evolving cyber risks, legislation and market developments
What we offer
What we offer
  • Opportunity to join a growing specialist cyber division
  • Access to leading cyber insurance markets and specialist insurers
  • Strong long-term career progression opportunities
  • Collaborative and entrepreneurial working environment
  • Competitive salary and benefits package
  • Hybrid/flexible working arrangements
  • Fulltime
Read More
Arrow Right
New

Siem Content Development Specialist - Cyber Defence - Vois

We are seeking a SIEM Content Development Specialist to strengthen Cyber Defence...
Location
Location
India , Pune
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experienced professional with 10+ years in SOC operations, SIEM content development, threat hunting, or security engineering
  • Skilled in SIEM technologies, particularly Elastic/ELK, with knowledge of platforms such as Splunk, Sentinel, ArcSight, or Chronicle
  • Proficient in programming and scripting (e.g., Python, SQL, JavaScript, PowerShell, KQL, ES|QL)
  • Strong understanding of cloud environments (AWS, Azure, GCP) and associated telemetry
  • Experienced in developing detection use cases and threat scenarios aligned with MITRE ATT&CK and cyber kill chain frameworks
  • Competent in Regex and data analysis techniques
  • Knowledgeable in networking concepts (TCP/IP, CIDR, subnets) and security tools (IDS/IPS, firewalls, AV systems)
  • Strong analytical, problem-solving, and communication skills
  • Able to work independently, prioritise tasks, and collaborate effectively across teams
  • Certifications such as CISSP or SANS (e.g., GCIH, GCIA) are advantageous
Job Responsibility
Job Responsibility
  • Design, develop, and optimise SIEM detection content across existing and new platforms
  • Lead and contribute to SIEM content engineering initiatives, applying SDLC and Agile methodologies
  • Continuously refine detection rules and logic to improve SOC efficiency and effectiveness
  • Develop and integrate threat response workflows and playbooks
  • Conduct threat analysis to design behavioural and indicator-based detection use cases
  • Collaborate with log source owners to translate business and technical requirements into actionable SIEM content
  • Deliver cyber security reports and advisories to key stakeholders
  • Perform post-incident analysis and drive improvements through actionable insights
  • Support EDR/XDR detection engineering and tuning activities
  • Create and maintain technical documentation, workflows, and operational playbooks
What we offer
What we offer
  • Opportunity to work at the core of global cyber defence operations
  • Exposure to advanced SIEM, EDR, and XDR technologies and large-scale security environments
  • Collaboration with global cyber security experts and stakeholders
  • Continuous learning through evolving threat landscapes and modern security frameworks
  • Opportunity to contribute to meaningful risk reduction initiatives across Vodafone
Read More
Arrow Right

Specialist, Cyber Intelligence - ISSO

L3Harris is dedicated to recruiting and developing high-performing talent who ar...
Location
Location
United States , Waco
Salary
Salary:
Not provided
l3harris.com Logo
L3Harris
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 8 years of prior related experience
  • Minimum Security+ certification required
  • This position requires a TS with SCI eligibility security clearance. Security clearances may only be granted to U.S. citizens
Job Responsibility
Job Responsibility
  • Responsible for the development, deployment and execution of controls and defenses to ensure the security of company technology, information systems, and system deliverables
  • Supports secure systems operations and maintenance
  • Assesses and mitigates system security threats and risks throughout the program life cycle
  • Performs system certification and accreditation planning, testing, and validation activities in coordination with government customers
  • Executes first level responses and addresses reported or detected incidents
  • Interprets, analyzes, and reports all events and anomalies in accordance with directives, to include initiating, responding, and reporting discovered events
  • Safeguards information against unauthorized use, infiltration, exfiltration, modification, destruction or disclosure of national security information
  • Notify the ISSM of changes affecting the ATO. Coordinate any changes to hardware, software, or firmware with the ISSM prior to any change
  • Building Aircraft disk pack sets, along with keeping them maintained and updated, as necessary to support our test team, and the Air Force as required
  • Willing to Travel 25% of the time to support offsite test events
  • Fulltime
Read More
Arrow Right
New

Cyber Operations Specialist

At Boeing, we innovate and collaborate to make the world a better place. We’re c...
Location
Location
Australia , Williamtown
Salary
Salary:
Not provided
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Underpinning knowledge and experience to effectively and confidently triage, prioritise and respond to incidents and detections
  • Depth of experience in cyber operations, including Detection engineering, monitoring and tuning SIEM and other solutions, and stakeholder support
  • Strong leadership capability, including the ability to mentor and guide others
  • A proactive and creative approach to problem-solving
  • Strong communication skills and the ability to explain complex security concepts clearly to customers and senior management
  • The ability to work collaboratively while maintaining accountability and focus on delivery
  • Demonstrated knowledge and experience performing or contributing to system accreditation, including execution of monitoring to maintain security outcomes in compliance to the Australian Defence Security Principles Framework and associated policies and procedures, including the Australian Government Information Security Manual
  • Experience developing and implementing information security practices in an engineering environment
  • Strong written and verbal communication skills, with the ability to engage a broad range of stakeholders
  • Strong project management capability and end-to-end accountability
Job Responsibility
Job Responsibility
  • Support the execution of critical information and cyber security work statements
  • Manage and support cyber incidents, including stakeholder communications
  • Contribute to the development and maturity of cyber operations processes
  • Help identify opportunities to improve monitoring, detection, and vulnerability management
  • Mentor and support team members within a collaborative cyber operations environment
  • Work closely with stakeholders to deliver practical, effective security outcomes
What we offer
What we offer
  • Competitive base pay and incentive programs
  • Industry-leading tuition assistance program pays your institution directly
  • Resources and opportunities to grow your career
  • Up to $10,000 match when you support your favorite nonprofit organizations
  • Fulltime
Read More
Arrow Right