Threat Detection Engineer - Optus

Key Responsibilities

• Develop and maintain detection rules, analytics, and playbooks for a SIEM platform (e.g., Splunk) to identify and mitigate emerging threats.
• Conduct proactive threat hunting across on‑premise and cloud environments, using Python scripts and advanced query techniques.
• Collaborate with incident response and engineering teams to triage alerts, investigate incidents, and drive remediation actions.
• Continuously evaluate and integrate new threat intelligence feeds, tools, and automation to improve detection coverage.
• Document detection logic, procedures, and findings, and provide knowledge‑transfer sessions to peers.

Requirements

• 3+ years of experience in cyber security operations, focusing on detection engineering or threat hunting.
• Strong proficiency in Python for automation, data parsing, and analytics.
• Hands‑on experience with Splunk or a comparable SIEM platform, including rule creation and dashboard development.
• Solid understanding of cloud security concepts (AWS, Azure, or GCP) and ability to monitor cloud workloads.
• Knowledge of incident response processes and ability to work under pressure to investigate and contain security events.