The role: Spark Cyber Defence is currently seeking a senior cyber security analyst to join our Auckland based operations center. We are looking for a candidate with strong technical skills along with working security operations knowledge. We are seeking experienced individuals with advanced problem-solving, analytical skills and with exposure to analysing security related information in a large, complex environments that are subjected to substantial cyber threats.

You will be part of a rapidly growing team providing services to our external customers. As per of this role you will be comfortable working as a senior member in New Zealand largest private Security Operations Center. You will have a passion for security and a demonstrable knowledge of industry events and of current exploit techniques and mitigations.

Demonstrable knowledge of Microsoft Azure security suite is required. In particular, the use & knowledge of Microsoft Sentinel and Microsoft Defender, KQL language, playbooks and threat hunting. You will be good at working under pressure and be able to deliver in short time frames as constrained by current events.

Primarily you will be an incident responder however you will be able to participate in projects delivering new technology & capability into our team. You will use your knowledge to assist with incidents and be called on as a subject matter expert in delivering our security services to our customers. You will help others in the Cyber defence team build their capability and knowledge in network security.

You will come from a strong networking & security background with an emphasis on DDOS, SIEM & Vulnerability Management. You will have a good understanding of log analysis, mitigation techniques, developing custom scripts/rules/functionality, and experience analysing and triaging using static/dynamic techniques. Due to specific customer requirements, candidates must also be able to obtain (& maintain) a NZ national security clearance, more detail including a self-assessment tool, is available here: Your day to day tasks will involve: Assessing escalated security incidents from our 24x7 team Automating tools and processes Monitoring and tuning our SIEM and other tools Onboarding new customers into our provided services Assisting with development of new security services Assess new vulnerabilities Complete routine compliance tasks Mentor and assist our 24x7 operations team This role provides flexible office hours, you will be in an oncall rotation with other members of the team.

You will be provided with industry training and represent Spark Cyber Defence at industry events. We're looking for excellent communication skills; with the ability to build relationships with the customer as well as across the internal teams to be able to influence outcomes. Your involvement in our team's efforts will be wide and broad, with impact felt throughout the organisation.

.