The Role

As an APS 6 within DSOC’s Monitoring, Detection and Response capability, you will be responsible for monitoring and analysing security events from multiple systems and sources. This position may be required to commit to shift work, which would attract additional shift loading payment.

Duties may include but are not limited to:

• Using tools such as SIEM, SOAR and other network monitoring tools, to monitor and analyse security events and alerts within a high-tempo operational environment;
• Exercising knowledge of legislative frameworks (PSPF, DSPF and ISM), and Defence’s mission and priorities in order to effectively respond to cyber security incidents;
• Engaging in complex technical problem solving which may be of sensitive nature that impacts strategic, political, or operational outcomes for Defence;
• Managing team workflows, setting priorities and training team members;
• Maintaining positive working relationships within an integrated workforce, and manage internal and external stakeholders;
• Preparing internal reports and other formal communications;
• Contributing to the continuous improvement of DSOC processes, SOPs and Work Instructions.

This role is eligible for an additional remuneration benefit known in Defence as a Building Defence Capability Payment (BDCP). This enables Defence to provide a premium, in addition to the base salary otherwise payable under the Defence Enterprise Collective Agreement (DECA), for positions in occupational disciplines/classifications that are critical to Defence capability. For further information, please contact the contact officer.

About our Team

DSOC is the strategic centre for Cyber Security Operations within Defence. DSOC provides mission focused services across the Defence enterprise through a range of Cyber Security Operations functions. The team have access to contemporary tools, training, and support to enable high quality achievement, responsive, and dynamic outcomes in support of Defence and its mission.

DSOC is a collaborative and agile team, committed to providing opportunity for professional development whilst also contributing to key strategic outcomes. DSOC consists of a diverse workforce of complementary skillsets, inclusive of APS, ADF, and contractors. We routinely engage with a wide range of stakeholders across the Department, Whole-of-Government, and Defence Industry, to identify new opportunities for improvement and collaboration.

Our Ideal Candidate

Our ideal candidate will:

• Have demonstrated experience in one or more of:
• Cyber security operations real-time alert monitoring and triage;
• Cyber security incident analysis and response;
• Cyber security risk management;
• SIEM and SOAR technologies and processes.
• Possess an understanding of defensive cyber security operations, and/or cyber security incident response as the front line in defensive capability within a Security Operations Centre;
• Possess strong communication, interpersonal and collaboration skills to work effectively with internal and external stakeholders, in-order-to understand and contextualise the threat to Defence and support decision making;
• Have a proven ability to manage competing priorities to a high standard of accuracy within allocated timeframes;
• Have experience in coordinating and leading operational cyber security teams;
• Possess good attention to detail while being able to prioritise and reprioritise task within a high tempo environment;
• Possess of a well-rounded ability to think critically, be inquisitive, whilst diligently and pragmatically driving at results and comprehensive analytical skills are highly valued.

Application Closing Date: Sunday 02 November 2025

For further information please review the job information pack, reference JCG/08227/25 on https://defencecareers.nga.net.au/?jati=EA637C87-6E1A-17D2-AD67-E44ADA537977