CrawlJobs Logo
Randstad Logo Randstad · IT - Software Development

Lead Cyber Incident Responder

Australia, Canberra · Job Posted May 27, 2026
Apply Position
Job Link Share

Job Responsibility

  • Investigate and respond to potential and actual cyber security incidents end-to-end across the cyber security incident response lifecycle
  • Use provided tools and technologies to perform cyber security incident response
  • Drive cyber security incident communications, ensuring all parties are aware of incidents and their role in the process
  • Develop and maintain records and documentation related to cyber security incidents
  • Communicate and document technical findings and recommendations to technical and non-technical stakeholders through formal reporting, briefs, emails, and verbal advice
  • Facilitate recovery including post incident review, following resolution of cyber security incidents

Requirements

  • Minimum of 3 years of hands-on technical experience in a cyber security incident responder role, and strong technical expertise using Microsoft security tools
  • Australian Citizenship required
  • NV1 security clearance required

Nice to have

GIAC certifications such as GCIH and GCFA, and Microsoft security certifications

What we offer

$220k

Randstad - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Lead Cyber Incident Responder

8 matching positions

Soc Analyst - Incident Response

As a Senior SOC Analyst, you will be the technical lead for incident response wi...
Location
Location
Australia , Sydney
Salary
Salary:
146197.00 - 154260.00 AUD / Year
https://www.randstad.com Logo
Randstad
Expiration Date
June 10, 2026
Flip Icon
Requirements
Requirements
  • 4–5 years in cyber incident response and digital forensics
  • Highly regarded credentials such as GCIH, GCFA, GPEN, or equivalent
  • A cooperative professional who thrives in a supportive, knowledge-sharing team
  • Permanent Residency or Citizenship are required
  • Bachelor Degree
  • skills: Cyber Security, Incident Response, SOC, Digital Forensics, GCIH, GCFA, Threat Hunting
  • qualifications: GCIH
  • GPEN
  • GCFA
  • SANS Certified Incident Handler
Job Responsibility
Job Responsibility
  • Lead cyber incident investigations and provide specialist forensic guidance
  • Coordinate with third-party managed security services to enhance internal capabilities
  • Manage vulnerability assessments and oversee remediation actions across diverse environments
  • Deliver post-incident reporting and communicate technical findings to executive stakeholders
  • Participate in a weekly first-responder rotation and an after-hours on-call roster
What we offer
What we offer
  • Hybrid work with only 1 day on-site per week
  • Attractive on-call allowances and overtime pay
  • Lead investigations for a complex ICT environment
  • Supportive team culture with internal promotion paths
  • Mentor junior analysts in a collaborative environment
  • +17% superannuation
Read More
Arrow Right

Incident Response Senior Analyst

We are seeking a highly skilled and detail-oriented Cybersecurity Incident Respo...
Location
Location
United States , Salt Lake City
Salary
Salary:
Not provided
alterdomus.com Logo
Alter Domus
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in computer science, information security, or related professional experience
  • Minimum of 1 to 3 years of experience in incident response, Security operation, threat management
  • Strong knowledge of SIEM, and SOAR environment
  • Hands-on experience with IDS/IPS, and endpoint protection platforms
  • Working knowledge of Azure Defender and AWS security suite (GuardDuty, Security Hub)
  • Knowledge of network device configurations and standards (Firewalls, Switches, NSGs)
  • Knowledge of common operating systems MacOS, Linux and Windows OS
  • Familiarity with malware analysis, reverse engineering, and forensic tools
  • Strong cross functional communication skills and the ability to work closely with internal teams & lead cyber incident remediation efforts
  • Familiarity with common security frameworks and standards, such as NIST
Job Responsibility
Job Responsibility
  • Respond to security incidents
  • Lead and manage alerts, investigate, contain, and eradicate the cyber threats
  • Conduct forensic investigations to identify the root cause of security breaches and recommend preventive measures
  • Participate in post-incident reviews to identify lessons learned
  • Coordinate with internal teams and external partners during incident containment, eradication, and recovery efforts
  • Monitor security information and event management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), and other tools for suspicious activity
  • Investigate and assess potential threats, vulnerabilities, and attack vectors
  • Create detailed incident reports, document findings, remediation steps, and lessons learned
  • Maintain and update incident response playbooks and processes
  • Participate in Tabletop exercise and incident response trainings for other stakeholders
What we offer
What we offer
  • Support for professional accreditations
  • Flexible arrangements, generous holidays, plus an additional day off for your birthday
  • Continuous mentoring along your career progression
  • Active sports, events and social committees across our offices
  • 24/7 support available from our Employee Assistance Program
  • The opportunity to invest in our growth and success through our Employee Share Plan
  • Plus additional local benefits depending on your location
Read More
Arrow Right

Global Chief Information Security Officer

The Global Chief Information Security Officer (GCISO) will lead Allied Universal...
Location
Location
United States , Irvine
Salary
Salary:
275000.00 - 350000.00 USD / Year
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, Information Technology, cybersecurity, or a related field
  • Minimum of fifteen (15) years of progressive experience in cybersecurity
  • Minimum of seven (7) years in a senior management role in an information security function
  • Experience in managing, responding to, and mitigating cyber incidents
  • Experience or familiarity with government contracting and public and private company cybersecurity reporting requirements
  • Hands-on cyber incident response coordination and oversight experience
  • Expertise in risk-based frameworks (NIST CSF, ISO 27001, SOC 2, CMMC, NIST 800-171) and familiarity with applicable regulatory regimes (SEC, GDPR, state breach laws, etc.)
  • Proven ability to engage with CEO, Board of Directors, and Executive Team on cybersecurity strategy and governance
  • Ability to operate effectively as both strategist and practitioner, a player-coach who drives global cybersecurity direction while engaging hands-on to guide, mentor, and resolve complex technical and operational challenges
  • Strong leadership skills as well as the ability to work and communicate (verbal, written, and interpersonal) effectively with other leadership and their teams
Job Responsibility
Job Responsibility
  • Develop and execute a global, risk-based cybersecurity strategy and program aligned with Allied Universal's business objectives
  • Establish, communicate, and oversee governance of enterprise-wide cybersecurity policies, standards, and controls that are appropriate for the company's diverse global operations
  • Lead, mentor and manage Regional Cybersecurity Leaders to promote consistency, accountability, and operational effectiveness across all regions
  • Define and monitor key risk indicators, cybersecurity metrics, and maturity objectives to inform executive decision-making and drive ongoing program improvement
  • Oversee global monitoring, detection, and response capabilities that provide 24×7 visibility into potential cyber risks and support timely containment activities
  • Identify and assess emerging threats, technologies, and vulnerabilities to support informed planning and risk mitigation efforts
  • Provide recommendations regarding cybersecurity investments and resource allocation, helping prioritize efforts based on risk, business impact, and value
  • Foster a culture of cybersecurity awareness, ownership, and accountability across all functions and geographies
  • Coordinate, develop, and implement programs designed to train Allied Universal's workforce regarding the company's cybersecurity requirements, including applicable cybersecurity laws and requirements and responding to evolving cybersecurity threats
  • Evaluate emerging threats and vulnerabilities, driving continuous improvement of the company's cybersecurity posture as appropriate
What we offer
What we offer
  • Medical, dental, vision, supplemental income plan with a company match, basic life, AD&D, and disability insurance
  • Eight paid holidays annually, five sick days, and four personal days
  • Executive Flex Vacation Plan
  • Fulltime
Read More
Arrow Right

Global Chief Information Security Officer

The Global Chief Information Security Officer (GCISO) will lead Allied Universal...
Location
Location
United States , Irvine
Salary
Salary:
275000.00 - 350000.00 USD / Year
aus.com Logo
Allied Universal®
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in computer science, Information Technology, cybersecurity, or a related field
  • Minimum of fifteen (15) years of progressive experience in cybersecurity
  • Minimum of seven (7) years in a senior management role in an information security function
  • Experience in managing, responding to, and mitigating cyber incidents
  • Experience or familiarity with government contracting and public and private company cybersecurity reporting requirements
  • Hands-on cyber incident response coordination and oversight experience
  • Expertise in risk-based frameworks (NIST CSF, ISO 27001, SOC 2, CMMC, NIST 800-171) and familiarity with applicable regulatory regimes (SEC, GDPR, state breach laws, etc.)
  • Proven ability to engage with CEO, Board of Directors, and Executive Team on cybersecurity strategy and governance
  • Ability to operate effectively as both strategist and practitioner, a player-coach who drives global cybersecurity direction while engaging hands-on to guide, mentor, and resolve complex technical and operational challenges
  • Strong leadership skills as well as the ability to work and communicate (verbal, written, and interpersonal) effectively with other leadership and their teams
Job Responsibility
Job Responsibility
  • Develop and execute a global, risk-based cybersecurity strategy and program aligned with Allied Universal's business objectives
  • Establish, communicate, and oversee governance of enterprise-wide cybersecurity policies, standards, and controls that are appropriate for the company's diverse global operations
  • Lead, mentor and manage Regional Cybersecurity Leaders to promote consistency, accountability, and operational effectiveness across all regions
  • Define and monitor key risk indicators, cybersecurity metrics, and maturity objectives to inform executive decision-making and drive ongoing program improvement
  • Oversee global monitoring, detection, and response capabilities that provide 24×7 visibility into potential cyber risks and support timely containment activities
  • Identify and assess emerging threats, technologies, and vulnerabilities to support informed planning and risk mitigation efforts
  • Provide recommendations regarding cybersecurity investments and resource allocation, helping prioritize efforts based on risk, business impact, and value
  • Foster a culture of cybersecurity awareness, ownership, and accountability across all functions and geographies
  • Coordinate, develop, and implement programs designed to train Allied Universal's workforce regarding the company's cybersecurity requirements, including applicable cybersecurity laws and requirements and responding to evolving cybersecurity threats
  • Evaluate emerging threats and vulnerabilities, driving continuous improvement of the company's cybersecurity posture as appropriate
What we offer
What we offer
  • Medical, dental, vision, supplemental income plan with a company match, basic life, AD&D, and disability insurance
  • Eight paid holidays annually, five sick days, and four personal days
  • Executive Flex Vacation Plan
  • annual bonus
  • equity package
  • Fulltime
Read More
Arrow Right

Security Operations Engineer

Axis, part of AxisCLC is a national property maintenance and compliance partner,...
Location
Location
United Kingdom
Salary
Salary:
55000.00 - 65000.00 GBP / Year
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Hands-on experience operating Microsoft 365 security tools and Microsoft Azure
  • Practical experience investigating security alerts and responding to incidents
  • Experience working with ticketing systems to manage security incidents and requests
  • Strong troubleshooting skills and the ability to remain calm under pressure
  • Experience working collaboratively with third-party security partners or SOC providers
  • Ability to produce clear incident reports and maintain operational documentation
  • Strong communication skills, with the ability to explain technical issues to non-technical stakeholders
  • Proven experience working in an operational Security Operations Engineer role or similar cyber security position
Job Responsibility
Job Responsibility
  • Act as the primary operational point of contact for cyber security activity across the business
  • Monitor and operate Microsoft Defender for Endpoint, Defender for Cloud Apps, Defender for Office 365 and Azure Sentinel
  • Investigate security alerts and suspicious activity, coordinating incident response with our Security Operations Partner
  • Support the management of high and critical severity security incidents from detection through to resolution
  • Provide hands-on operational support to the Cyber Security Lead during major incidents
  • Conduct proactive threat hunting and analyse logs and telemetry to identify indicators of compromise
  • Tune detection rules to reduce false positives and improve detection effectiveness
  • Identify gaps in security coverage and recommend and implement improvements to controls and processes
  • Develop and maintain security automation, including Sentinel playbooks and automated workflows
  • Work with the Infrastructure Team to ensure endpoints are patched and configured in line with best practice
What we offer
What we offer
  • Pension and life assurance
  • 25 days’ annual leave plus bank holidays
  • Hybrid working from our Stratford, East London office
  • Opportunities to develop technical skills and progress within Group IT
  • Supportive, collaborative team environment within a growing cyber security function
  • Fulltime
Read More
Arrow Right

Cyber Incident Response Manager

We are seeking a Cyber Incident Response Manager to strengthen and scale Fever’s...
Location
Location
Argentina
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of modern security tooling, including SOAR platforms, cloud-native detection services, EDR solutions (e.g. CrowdStrike), SIEM platforms and automation technologies
  • Skilled in analyzing and correlating large-scale security telemetry across cloud, SaaS, and endpoint sources using languages and tools such as Python, AWS Athena, Google BigQuery, etc.
  • Ability to rapidly automate data handling, detection logic, and remediation workflows
  • Hands-on experience responding to security incidents in cloud environments
  • Ability to design, document, and maintain IR runbooks, playbooks, and tabletop exercises
  • 5+ years of experience in cybersecurity, with at least 2–3 years dedicated to leading an incident response process
  • Fluent in English (written and spoken)
  • An analytical mindset and strong problem-solving skills
  • Excellent communication skills
Job Responsibility
Job Responsibility
  • Strengthen and scale the incident response program
  • Design, update, and maintain IR processes, playbooks, and runbooks tailored to cloud and corporate IT environments
  • Enhance detection engineering capabilities by collaborating with infrastructure, data, and engineering teams
  • Lead response coordination efforts during incidents, ensuring rapid containment, eradication, and recovery
  • Enhance monitoring and detection with integrated threat intelligence and advanced threat detection capabilities
  • Manage and mentor a specialized incident response team
  • Continuously assess and improve IR metrics, KPIs, dashboards, and reporting methodologies
  • Conduct IR training, simulations, and preparedness exercises across the organization
What we offer
What we offer
  • "Relación de dependencia" contract
  • Opportunity to have a real impact in a high-growth global category leader
  • 40% discount on all Fever events and experiences
  • Osde 410 as medical insurance
  • Home office friendly anywhere in Argentina
  • Responsibility from day one, and professional and personal growth
  • Great work environment with a young, international team of talented people to work with!
  • English Lessons
  • Gympass
  • Attractive compensation package consisting of base salary and the potential to earn a significant bonus for top performance (including Base, Variable, and Stock Options)
  • Fulltime
Read More
Arrow Right

Security Engineer IV

As a Security Engineer IV on the Information Security Engineering team, you'll d...
Location
Location
United States , Maryland Heights
Salary
Salary:
Not provided
corporate.charter.com Logo
Spectrum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree or Master’s in Computer Science or Information Systems or related field or equivalent experience
  • Minimum five (5) years of Information security experience
  • Minimum four (4) years of Information security operations experience
  • Demonstrated knowledge of database management or database security
  • Experience with security scan assessment tools of Oracle, MSSQL, PostgreSQL or other relational or NoSQL databases.
  • Must understand what is required to prevent security exploits, how to detect security attacks and anomalies and how to respond to security incidents and intrusions
  • Expert knowledge of forensic methodologies and best practices to investigate intrusions, preserve evidence and coordinate a unified security response
  • Advanced knowledge of database management and administration.
  • Advanced knowledge of industry security standards and cyber security frameworks.
  • Demonstrated experience in managing information security events and incidents for large and sophisticated networks
Job Responsibility
Job Responsibility
  • Designs and implements queries and use cases to correlate security relevant system and application log data to alert and report on potential security events.
  • Leads the security incident response lifecycle for any cyber security related events affecting Charter’s databases and services.
  • Responsible for providing timely updates to security management according to Charter’s Incident Response Plan.
  • Leads efforts to integrate and maintain scanning services with SEIM, ASPM and vulnerability management systems.
  • Implements, maintains and monitors threat intelligence data from various resources that is relevant to Charter’s networks and systems.
  • Proactively hunts for security related threats and vulnerabilities that potentially affect Charter’s databases and services.
  • Develops and coordinates the implementation of security counter-measures with the appropriate organizations.
  • Develops and recommends security policies, standards, and configurations to the security governance committee.
  • Leads and performs the advanced forensics analysis and data evidence gathering for critical security events.
  • Recommends, designs and implements security systems and tools used for Database Security
What we offer
What we offer
  • Innovative Tools & Tech: Work with high-performing software and applications on the forefront of the digital telecommunications industry.
  • Dynamic Growth: The growth of our industry and evolving technology will power your career as you move up or around the company.
  • Supportive Teams: Who you are matters here. We aim to foster an inclusive workplace where every person is empowered to bring their best ideas.
  • Total Rewards: See all the ways we invest in you—at work and in life.
  • Fulltime
Read More
Arrow Right

Information Security Specialist/Analyst III

The Information Security Specialist/Analyst III reports to the Manager, Security...
Location
Location
United States
Salary
Salary:
Not provided
muschealth.org Logo
MUSC Health
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, information assurance, computer science, or a related field with 5 years of IT security experience
  • or 10 years of hands-on experience in information security or related IT experience required, at least 6 of which must be directly related IT security experience
  • or a Master's degree in information security, information assurance, computer science, or a related field, and 3 years of IT security experience required
  • Advanced knowledge of information security principles, risk management, and regulatory compliance (HIPAA, FERPA, NIST, etc.)
  • Strong analytical and problem-solving skills with the ability to make decisions under pressure
  • Hands-on experience with Crowdstrike EDR, SIEM, IDS/IPS, vulnerability management, and threat intelligence tools
  • Familiarity with cloud security (Azure, AWS) and identity management solutions
  • Advanced Understanding on the administration and securing of various operating systems and enterprise applications with advanced security best practices
  • Excellent written and verbal communication skills, with the ability to translate technical findings into business-relevant language
  • Mentor junior analysts and contribute to the development of security standards, procedures, and playbooks
Job Responsibility
Job Responsibility
  • Serve as a lead escalation point for security incidents, overseeing detection, investigation, containment, and remediation within a CrowdStrike EDR environment across a healthcare infrastructure
  • Analyze findings from security monitoring systems, including Intrusion Detection/Prevention Systems (ID/PS) and Security Information Event Management (SIEM) consoles, to identify and respond to potential security incidents and data breaches
  • Perform cyber security incident handling, tracking and reporting
  • Utilize professional judgment and institutional knowledge to assess risk levels, conduct forensic investigations, isolate malware, identify attack vectors, provide guidance on remediation planning, and prioritize remediation efforts
  • Respond to relevant service requests received from end users (e.g. for investigation of security events)
  • Collaborate with internal Security Operations Center (SOC) teams and external Managed Security Service Providers (MSSPs) to contain and remediate security incidents
  • Configure, manage, and optimize SIEM platforms (Crowdstrike and/or Microsoft Sentinel) to enhance threat detection and response capabilities
  • Lead and manage large scale security-related projects, including tool implementations, upgrades, and process improvements
  • Conduct vulnerability assessments to identify security risks and report findings to system owners
  • Manage workflows to ensure that protected assets are properly assessed in a timely manner
  • Fulltime
Read More
Arrow Right