Principal Security Engineer Cyber Advisor
Quick Overview
Job Description
Our client is a highly respected Federal Government law enforcement and national security organisation responsible for protecting Australia's interests both domestically and internationally. Operating at the forefront of security, intelligence, and law enforcement, the organisation leverages advanced technology and cyber capabilities to combat serious and organised crime, safeguard critical systems, and support national security outcomes.
As part of an ongoing technology transformation, the organisation is investing heavily in modern cyber security capabilities, strengthening operational resilience, and enhancing its ability to detect, respond to, and mitigate evolving cyber threats.
About the RoleWe are seeking an experienced Principal Security Engineer - Cyber Advisor to join a high-performing cyber security team based in Canberra. In this role, you will play a key part in designing, implementing, and enhancing enterprise security monitoring and response capabilities. Working across SIEM and SOAR platforms, you will help strengthen the organisation's cyber detection, automation, and incident response functions while supporting operational teams with expert cyber security advice and technical leadership.
Key responsibilities will include- Designing and implementing the onboarding of security log sources across cloud, endpoint, identity, network, and on premises environments.
- Developing and maintaining SIEM use cases, correlation rules, parsers, and data normalisation standards.
- Building and optimising SOAR workflows to automate alert triage, enrichment, containment, and response activities.
- Integrating security platforms with EDR, IAM, ticketing, firewall, email security, and threat intelligence solutions.
- Developing, tuning, and maintaining detection content aligned to emerging threats and organisational risk profiles.
- Supporting cyber incident response through advanced log analysis and rapid detection engineering.
- Conducting detection gap assessments and driving continuous improvement initiatives.
- Developing dashboards, performance metrics, health monitoring, and reporting capabilities across security platforms.
- Creating and maintaining documentation, operational runbooks, and SOC playbooks.
- Providing technical leadership, mentoring junior team members, and contributing to cyber security strategy and best practice.
To be successful, you will bring extensive experience in cyber security engineering, security operations, and detection capability development within large and complex environments.
You will demonstrate- Proven experience leading the implementation and administration of enterprise SIEM platforms such as Microsoft Sentinel, Microsoft Defender, Splunk, Elastic, or IBM QRadar.
- Strong hands on experience developing automation, correlation rules, detection use cases, parsers, and SOC playbooks.
- Experience integrating SIEM and SOAR solutions with broader security and IT ecosystems.
- Advanced knowledge of security monitoring, threat detection, incident response, and cyber security operations.
- Strong analytical and problem solving skills, with the ability to rapidly investigate and respond to emerging threats.
- Excellent communication and stakeholder engagement skills, including the ability to provide trusted cyber security advice.
- Experience mentoring, coaching, and supporting technical teams.
- A commitment to continuous learning and staying current with evolving cyber security technologies and threat landscapes.
- Same day payment for contractors once a timesheet is submitted.
- Level 3 DISP certified, veteran employment commitment, ISO 9001 certification and environmental compliance with global standards.
- Commitment to diversity with support for Indigenous Australians, multicultural backgrounds and people with disabilities.
The role is based in Barton, Canberra ACT.
Office TypeOnsite
Contract terms36 months from commencement date, plus rolling 12 month extensions as required.
Estimated Hours37.5 per week
Security RequirementsDue to the nature of this position, candidates must hold a minimum NV1 security clearance.
How to ApplyPlease upload your resume to apply. You will need to complete selection criteria to complete this application process, after which we will provide further instructions to suitably skilled candidates.
Candidates will need to be willing to undergo pre employment screening checks which may include ID and work rights, security clearance verification and any other client requested checks.
Application periodApplications open until 8am 29 July 2026.
ContactReach Damien on or for any further information.
Skills
Similar jobs
Network Security Engineer
Source Infotech · Denver, United States
18 minutes agoSOC Security Engineer
Romack Staffing International, LTD. · Burbank, United States
18 minutes agoSecurity Architect - SIEM Engineer
Xylo Technologies, Inc. · United States
21 minutes agoCyber Security Network Engineer
Avenues International, Inc. · Albany, United States
22 minutes agoCyber Security Engineer, Cloud Security, SIEM, Incident Response, COR7555
Corriculo Ltd · Oxford, United Kingdom
34 minutes agoCyber Security Engineer - Princeton, NJ, Philadelphia, PA, New York City, NY, Boston, MA, Hartford, CT.
TechniPros, LLC · Princeton, United States
38 minutes ago