Senior Cyber Security Engineer - Blue Team
Quick Overview
Job Description
Teneo seeks a skilled and self sufficient Cybersecurity Engineer to join our security team in Sydney or Melbourne. In this role you will focus primarily on detection engineering and blue team operations: designing, writing and tuning detection / SIEM / XDR rules, responding to security alerts and incidents, and maintaining our security posture across cloud, network and endpoint environments. You will play a critical role in strengthening our defences, automating security processes, and enabling IT and business teams to operate securely.
The position is based in Melbourne and follows a hybrid working model, with three days per week in the office.
Responsibilities- Design, develop, and maintain detection logic and rules (SIEM / XDR / log-management) to identify suspected malicious activity, anomalies, or policy violations across network, cloud, endpoint, and identity systems.
- Configure, deploy, and manage security tooling: SIEM / XDR platforms, log management, IDS/IPS/NDR, firewalls, endpoint protection, cloud security tools, and other security infrastructure.
- Triage and investigate alerts: perform log analysis, correlate events, determine real threats, and respond or elevate as needed.
- Perform vulnerability assessments, threat hunting, risk based tuning of detection rules, and threat modelling for identified CVEs or weaknesses.
- Participate in incident response: containment, mitigation, root cause analysis, remediation, documentation, lessons learned, and improvement of detection strategies.
- Automate security operations where possible: develop scripts or workflows (e.g., via Python, PowerShell, Bash, SOAR integrations) to streamline monitoring, alerting, incident handling, and reporting.
- Collaborate with IT, DevOps, and business stakeholders to embed security best practices into system and network architecture, cloud infrastructure, and software deployments.
- Maintain and enforce security policies, standards, access controls, and compliance frameworks (e.g., relevant regulatory or industry standards).
- Produce clear documentation, dashboards, reports, and run books for detection logic, incidents, and ongoing security operations.
Must have
- Several years (e.g., 5-7+) of professional experience in cybersecurity engineering / operations, with hands on experience in detection, SIEM/XDR, log management, incident response, and security tool administration.
- Strong technical knowledge in network security, cloud security (e.g., AWS, Azure, or similar), endpoint security, identity and access management (IAM), firewall/IDS/IPS, and intrusion detection/prevention.
- Proven ability to author, tune and review detection rules / alerts / log parsing logic, and to perform advanced log analysis and event correlation.
- Familiarity with scripting or automation (e.g., Python, PowerShell, Bash), for building detection logic, automating response, or managing security tool configurations.
- Solid understanding of security frameworks, best practices, and threat detection methodologies.
- Strong analytical, problem solving, communication, and collaboration skills - able to work independently but also engage with IT/security stakeholders.
- Experience with cloud native security environments and multi cloud deployments.
- Familiarity with SOAR or security automation/orchestration platforms.
- Certifications such as CISSP, CISM, CEH, or other relevant credentials.
- Prior experience in a blue team / SOC / detection engineering / incident response role.
- Understanding of compliance, regulatory standards, and risk management best practices.
At Teneo, you'll be part of a committed security team helping protect a dynamic, global consulting company. This role offers the opportunity to influence and shape our security posture, contribute to designing and building detection capabilities from the ground up, and work autonomously with support from experienced leadership.
Skills
Similar jobs
It Security Engineer (m/w/d)
Rheinmetall · Lemwerder, Germany
18 minutes agoVendor Security Management Specialist
StratEdge It consulting INC · Austin, United States
49 minutes agoSecurity Engineering Consultant, Hardware
ECM Selection Ltd. · Royston, United Kingdom
1 hour ago£75k/yrJourneyman Cyber Security Engineer (Splunk/TS) - USSOCOM EDAT Zero Trust
Kentro · Tampa, United States
1 hour agoJourneyman Cyber Security Engineer (Splunk/SIPR) - USSOCOM EDAT Zero Trust
Kentro · Tampa, United States
2 hours agoProduct Security Analyst (Mid-Senior) with Security Clearance
Boeing · Seattle, United States
2 hours ago$148.8k - $201.3k/yr