Subscribe to job alerts

Location: Brisbane

Remuneration/Benefit: Negotiable

About the role:

We’re looking for a Senior Cyber Defence Analyst to join our growing cyber team and take the lead in incident detection, response, and defence across the enterprise. This is a hands-on, highly technical role where you’ll serve as a Primary Responder to security incidents, guiding the organisation’s response to real-world threats and helping to shape our Security Operations Centre (SOC) for the future.

You’ll bring strong technical expertise, a strategic mindset, and the ability to stay cool under pressure. If you're passionate about protecting systems and thrive on making fast, informed decisions in high-stakes situations—this role is for you.

In this role, you’ll:

• Lead the frontline response to cyber security incidents as the organisation’s Primary Responder.
• Design and evolve detection and response strategies aligned with current and emerging threat landscapes.
• Shape the future of the SOC, supporting roadmap development and implementation to enhance detection and response maturity.
• Support and mentor SOC team members, helping triage, prioritise, and manage alerts and threat intelligence outputs.
• Conduct deep-dive investigations into suspicious activity, advanced threats, and confirmed incidents.
• Coordinate escalations and collaborate with cross-functional teams to contain and remediate threats.
• Take charge of incident containment and recovery, including hands-on technical response actions.
• Lead root cause analysis and post-incident reviews, turning learnings into action and risk reduction.
• Recommend detection enhancements to improve visibility and response time, working closely with Detection Engineering.
• Produce clear, comprehensive incident reports to support business awareness and compliance needs.
• Analyse emerging threats, malware, and vulnerabilities to keep the organisation a step ahead.
• Guide proactive threat hunting initiatives to uncover hidden risks and reduce dwell time.
• Maintain and refine IR tools, playbooks, and processes, ensuring our cyber defence is always response-ready.
• Stay ahead of the curve by tracking industry developments and applying new techniques to real-world defence.
• Participate in the on-call roster, providing expert support when it matters most.

About you:

• Bachelor’s degree in IT, Software Engineering, Networking, or related field (mandatory).
• Professional certifications such as CISSP, CEH, CSA, CySA+, GCIH, or E|CIH (mandatory).
• 5+ years of hands-on experience in incident response roles within a large enterprise environment.
• Strong experience with Splunk, Microsoft Defender, Crowdstrike, and Microsoft Sentinel (mandatory).
• Comfortable working with scripting tools like PowerShell, Python, or Bash.
• Solid technical skills across Windows, Linux/Unix, and Azure environments.
• Knowledgeable in network security fundamentals and next-gen firewall capabilities.
• Experience administering EDR tools and leading incident response efforts.
• Excellent communicator with the ability to present clearly to both technical and non-technical stakeholders.
• Familiarity with MITRE ATT&CK, D3FEND, YARA scanning, and deception technologies (preferred).

What we offer you:             

At Aurizon, we support the development and growth of our employees. With a national portfolio of operations, we offer long-term and exciting career opportunities. 

Some of our benefits include:

• Development and growth opportunities.
• Access to mentoring and development programs.
• Discounts on selected health insurance funds, personal travel, gyms, vehicles and retail brands.
• Parental leave program and super booster.

About Aurizon.

https://youtu.be/PHESxVZ6dQY

Aurizon is Australia’s largest rail freight operator and a top 100 ASX company. Each year, we deliver more than 250 million tonnes of Australian commodities right across the country. Aurizon is crucial to the Australian economy, connecting miners, primary producers and industry with international and domestic markets. 

Look to Aurizon for a diverse and collaborative culture.

At Aurizon, we are proud of our diverse, collaborative, creative and high-performance culture. We celebrate the contribution of every employee and provide opportunities for career development in a dynamic, caring, and inclusive work environment.

To learn about us and our company values, please visit www.aurizon.com.au/careers