Cyber Security Team Leader

At Centorrino Technologies (CT), we’re more than just tech—we’re a community that goes beyond expectations. We’ve been recognised as a Great Place to Work in 2024 and one of the Best Places to Work Medium Size in Australia for 2024, with an outstanding eNPS score of 68. And we’re not stopping there. We're on a mission to redefine the customer experience, and we need a passionate Cyber Security Team Leader to join our team in Australia.

The Cyber Security Lead – Eyes on Glass plays a critical leadership role in our security operations, responsible for real-time threat monitoring, escalation handling, and mentoring a growing cyber team. This role combines technical expertise with a hands-on approach to cyber defence, ensuring that security incidents are swiftly identified, analysed, and resolved while continuously strengthening our security posture. 

The successful candidate will lead continuous improvement across our Security Operations Centre (SOC) and drive proactive threat hunting, vulnerability assessments, and stakeholder engagement across internal teams and customers. 

What You'll Do:

• Act as the technical escalation point for junior analysts and mentor their professional development. 

• Lead incident investigations, coordinate responses, and ensure root cause analysis and post-incident reviews are completed. 

• Drive team engagement through monthly security meetings and awareness initiatives. 
• Perform real-time "eyes on glass" monitoring of security alerts using SIEM solutions (FortiSIEM and Microsoft Sentinel). 

• Analyse and triage security events and incidents, ensuring accurate escalation and incident management. 

• Tune detection rules and use case logic to reduce false positives while maintaining detection quality. 
• Fine-tune and manage security tools, including EDR (e.g., Defender for Endpoint), application control (e.g., ThreatLocker, WDAC), anti-malware solutions, and intrusion detection systems. 

• Perform vulnerability assessments using tools such as Tenable and Microsoft Defender, and define remediation strategies in collaboration with infrastructure and service teams. 

• Support the integration and optimisation of cloud and on-prem security controls. 
• Maintain up-to-date documentation on security operations, procedures, and incident response playbooks. 

• Lead and document monthly customer security reviews. 

• Provide insight and recommendations to improve internal security processes and controls. 
• Deliver cyber awareness training to internal teams and clients using platforms such as uSecure or Microsoft modules. 

• Collaborate with service delivery, compliance, and infrastructure teams to ensure alignment between security operations and client SLAs. 

• Proactively communicate with clients to provide guidance, incident updates, and reporting. 
• Identify and implement process improvements to streamline operations. 

• Collaborate with other departments to deliver the best quality solutions. 

What You'll Bring:

• You must hold a Negative Vetting 1 (NV1) Security Clearance to be eligible for this role.

• Extensive experience with SIEM platforms (FortiSIEM, Microsoft Sentinel preferred).

• Knowledge of EDR, IDS/IPS, firewall configurations, and endpoint protection technologies. 

• Strong background in network protocols, security architectures, and authentication models. 

• Familiarity with vulnerability management tools (e.g., Tenable, Microsoft Defender). 

• Experience with identity and access management (IAM), conditional access, and cloud security monitoring. 
• Strong leadership capabilities, including mentoring, stakeholder management, and driving technical discussions. 

• Excellent written and verbal communication skills, able to simplify complex topics for technical and non-technical audiences. 

• Proven ability to manage incidents under pressure with professionalism and control. 
• High attention to detail, with strong analytical and critical-thinking skills. 
• Ability to manage multiple priorities in a fast-paced and dynamic environment. 
• Business acumen to align cyber operations with commercial and client goals. 
• Passion for cybersecurity and innovation, with a mindset of continuous improvement. 

Preferred Certifications:

• Microsoft: SC-200, SC-100, SC-300 

• Fortinet: NSE5+ 

• Tenable Vulnerability Management Specialist 

• Other certifications such as CISSP, CISM, CEH, or CompTIA Security+ will be highly regarded. 

Why You'll Love Working Here:

Our company is more than just a workplace, it's a hub of inspiration and creativity where employees love to work! Here's why:

• Hybrid working (for majority of our roles) with team anchor days to support collaboration.
• Extensive training and development opportunities that enable continual growth as part of your career planning.
• Extensive discounts and benefits to maximise your money.
• A choice of your IT equipment to maximise your success and access to cost-price tech for your personal needs.
• Fun team events to celebrate achievements and connect with colleagues outside work as part of our engaging culture.

CT celebrates diversity and enables every voice to be heard as we drive to create the world we want. Apply today and be part of a team that values innovation, inclusivity, variety and diverse backgrounds.

Note: A valid Vulnerable People / Working with Children Check (WWCC) and Police Check are required.