Technical Lead – Cyber Defence Specialist

• Location: Brisbane, Queensland
• Type: Contract
• Job #18340

About the role

We are seeking a highly experienced Technical Lead – Cyber Defence Specialist to support the delivery of a major cyber security uplift program within a large critical infrastructure environment.

This role sits within a Digital Technology and Innovation Project Management Office and will provide deep, hands-on technical expertise across Security Operations and Defence initiatives. The focus will include SIEM/SOC capability enhancement, detection engineering, OT vulnerability discovery, and risk-based remediation design across both Corporate IT and Operational Technology (OT) environments.

Working closely with Cyber Program leadership, you will execute complex technical delivery activities to ensure solutions are operationally effective, securely integrated, and aligned with enterprise cyber strategy, regulatory obligations, and industry frameworks including the ACSC Essential Eight and NIST Cybersecurity Framework (CSF) 2.0.

This is a Brisbane-based role with hybrid working arrangements (minimum three days onsite per week).

Key responsibilities

• Lead specialist technical delivery across SOC uplift and OT vulnerability management initiatives
• Produce detailed cyber security designs in collaboration with program and strategy leads
• Configure, optimise and enhance SIEM capabilities (including Microsoft Sentinel), analytics rules, automation workflows and monitoring processes
• Develop detection use cases, logging standards, and telemetry normalisation across diverse IT and OT assets
• Conduct threat modelling, threat hunting and threat analysis aligned to MITRE ATT&CK (IT and ICS/OT matrices)
• Design and implement risk-based vulnerability management approaches, particularly within OT environments
• Develop incident response playbooks, SOC runbooks and SOAR automation logic
• Integrate vulnerability tooling with SIEM platforms to enable risk-informed monitoring and response
• Provide technical documentation including architecture designs, implementation plans and risk assessments
• Support release planning, CAB coordination and Management of Change processes
• Lead secure cutover and deployment activities with minimal operational disruption
• Engage internal stakeholders, vendors, MSSPs and regulatory bodies to ensure aligned and secure outcomes
• Ensure compliance with organisational cyber strategy, risk frameworks, and critical infrastructure regulatory requirements

Highly desirable criteria

• Extensive experience enhancing Microsoft Sentinel SIEM including data connectors, analytics rules, automation and alert tuning
• Proven experience delivering SOC uplift initiatives in complex enterprise environments
• Demonstrated capability designing and implementing OT vulnerability management solutions
• Strong experience across both IT and Operational Technology environments, including industrial control systems
• Deep understanding of threat intelligence, detection engineering and DFIR practices
• Experience aligning solutions with ACSC Essential Eight, NIST CSF and Security of Critical Infrastructure (SOCI) obligations

Desirable criteria

• Experience working within critical infrastructure or highly regulated environments
• Experience integrating security tooling across firewalls, Secure Web Gateways, XDR platforms and enterprise security controls
• Familiarity with structured delivery methodologies such as PRINCE2 or PMBOK
• Experience working with Managed Security Service Providers (MSSPs)

Skills and experience

• Bachelor’s degree in Information Technology, Computer Science or related discipline
• Over 10 years’ IT experience across infrastructure, networks and enterprise systems
• Minimum 5 years’ experience applying cyber security principles across IT and OT environments
• Industry certifications such as CISSP, CEH, SC-100 or equivalent cyber operations credentials
• Strong capability in security analysis, governance reporting and framework alignment
• Demonstrated ability to translate complex technical concepts for non-technical stakeholders
• Proven track record delivering secure, high-quality technical outcomes within structured project environments

Contact details

For a confidential chat, please contact Raisa on 0437 318 208 or via email at raisa@exclaim-it.com.au and we would be more than happy to provide you with additional information and assist in the application process.