CSOC Automation Engineer

Transurban Group Full Time Australia Engineering

Cyber and Information Security is a top priority for Transurban. As part of our growing Cyber Security Operations Centre, the CSOC Automation Engineer is responsible for identifying opportunities to improve efficiency and reducing Mean Time To Detect (MTTD) & Respond to security incidents through the automation of manual and repetitive tasks and processes.

As one of the world’s largest toll-road operators, Transurban brings people and places closer in a safer, smarter and faster way. From the technology that keeps drivers safe on our roads, to our digital channels that help them manage their accounts to engaging with our Customer Care team, Customer and Technology are involved in every step of the journey. We are tapped into global trends so we can build a future that combines traditional infrastructure with emerging technology to create exceptional customer experiences.

The impact you’ll have 

  • You’ll develop processes and procedures around automated tasks and ensure the team is continuously updated or trained on new automated tasks

  • You’ll build integrations between threat detection and response tools, vulnerability management tools and cyber threat intelligence feeds to produce contextualised information for cyber security operations teams.

  • You’ll develop dashboards and reporting channels that provide real-time data (using tools such as Splunk, ServiceNow and Tableau)

  • You’ll support continuous improvement initiatives from simulation activities (cyber drills and red team exercises) to the analysis of emerging automation technologies that may improve the team’s ability to detect/prevent/respond to a Security Incident in a timely manner

  • You’ll identify automation initiatives to reduce risks brought about by manual authorised changes (I.e., certificate renewals, software upgrades etc.)

  • You’ll contribute to the overall security posture of Transurban

The talents you’ll bring

  • Experience with SOAR platforms (preferably Splunk Phantom)

  • Experience with scripting languages and automation tools (e.g. Puppet, JSON, Python, Powershell etc.)

  • Knowledge and understanding across incident response and / or threat intelligence, attack vectors, threat tactics, techniques and procedures beneficial

  • Proven dedication to the industry with tertiary education and/or industry certification(s) desired although not required (e.g. CISSP)

About us
Transurban we are driven by bringing people and places closer. Together, we’re building a future that marries traditional infrastructure with emerging technology. We’re making roads ready for driverless cars and predicting accidents before they happen. We’re getting people where they’re going. And we’re doing it faster, smarter, and safer.

We believe in equality. We treat everyone with fairness, consideration and respect, regardless of gender, cultural background, religious beliefs, sexuality or personal circumstances – whether they work for us or not. We want to ensure everyone feels comfortable to express themselves and their opinions.

We strongly encourage applications from candidates of diverse backgrounds, including Aboriginal and Torres Strait Islander people.

Start changing the world around you. Apply now!

Share this job

Report

Harassment or bullying behavior
Contains mature or sensitive content
Contains misleading or false information
Contains abusive or derogatory content
Contains spam, fake content or potential malware

Block Member?

Please confirm you want to block this member.

You will no longer be able to:

  • See blocked member's posts
  • Mention this member in posts
  • Invite this member to groups
  • Message this member
  • Add this member as a connection

Please note: This action will also remove this member from your connections and send a report to the site admin. Please allow a few minutes for this process to complete.

Report

You have already reported this .