Kinetic IT are seeking a driven and passionate Senior Security Analyst to join our Security Operations team. In this role, you will lead threat detection, incident response, and security monitoring, with a strong focus on Microsoft Sentinel and the MITRE ATT&CK framework.

You will act as a subject matter expert across IT and OT environments, supporting SOC services such as Vulnerability Management, while mentoring analysts and contributing to the continuous improvement of SOC processes and security posture.

This is an exciting opportunity for someone looking to take on a technical leadership role, engage with clients at a strategic level, and help drive meaningful improvements across the SOC.       

Responsibilities will include:

• Owning the continual improvement of the global ruleset for the Security operations centre, including threat detection and data source management.
• Leading threat detection, investigation, and response using Microsoft Sentinel, leveraging advanced KQL for deep log analysis and proactive threat hunting.
• Identifying gaps and supporting maturity across the client base for log source enhancements, rule enhancements and work with clients and SOC engineers to develop solutions.
• Contributing to SOC capability uplift through playbook development, automation, and response optimisation, including use of Azure DevOps and CI/CD practices.
• Supporting incident and workflow management through ServiceNow, ensuring alignment with ITIL processes and operational best practice.
• Leading or coordinating purple team / tiger team activities, with a focus on improving detection coverage and threat response maturity aligned to MITRE ATT&CK.
• Providing leadership and support across Threat Monitoring, Detection, Intelligence and Hunting, driving a strong culture of continuous improvement and innovation.
• Contributing to the development and mentorship of other analysts, including knowledge sharing, training, and guidance on complex security issues.

What you'll bring to the table:

• Extensive experience in SOC operations and incident response, including ownership of high-severity incidents end to end.
• Strong hands-on experience with Microsoft Sentinel, including advanced detection engineering and KQL development.
• Working knowledge of Azure DevOps, ServiceNow, and modern SOC tooling to support detection, response, and workflow automation.
• Experience using Dragos (or similar OT security platforms) to support ICS/OT threat detection, analysis, and incident response.
• Broad depth of technical security knowledge across IT and OT environments, with the ability to assess and communicate operational risk.
• Strong capability leveraging artificial intelligence / large language models (e.g. OpenAI) to enhance analysis, automation, and decision-making.
• Solid understanding of automation, Git, and CI/CD practices, with experience improving SOC efficiency and detection maturity.
• Deep understanding of cyber threat intelligence and MITRE ATT&CK, with a threat-informed approach to investigation and response.
• Proven leadership skills, including mentoring analysts and producing clear technical and business-level communications.
• Forward-thinking, innovation-led mindset with a willingness to adopt and experiment with emerging security technologies.
• Current AGSVA Security Clearance (due to customer requirements)

Certifications (highly regarded):

• Microsoft SC-200 – Security Operations Analyst
• Microsoft AZ-500 – Azure Security Engineer
• MITRE ATT&CK Defender (MAD)
• SANS SEC555 and/or SEC599

About Kinetic IT

Kinetic IT is a leading Australian IT services provider specialising in Intelligent Workplace, Cloud, Cyber Security, Digital Infrastructure and IT Service Management. We are unlocking the potential of technology to enrich lives of Australian communities.

For more than 25 years, we’ve partnered with some of Australia’s most important organisations, helping them deliver essential services relied upon by our communities including government, critical infrastructure, education, law enforcement, defence, emergency services, utilities, and transport.

Be You, Create the Future

At Kinetic IT, we’re driven by a shared passion for technology, customer success, and community impact.

With over 1,500 talented people working across Australia, we deliver world-class capabilities with a local touch – helping shape the future of tech, here and beyond.

We value individuality and foster an inclusive culture where you’re safe to be your best, real self. We tackle challenges together, celebrate success together, and make sure everyone feels valued, supported, and proud of the work they do.

As an equal opportunity employer, we welcome people of all abilities, backgrounds, cultures, and genders. We’re proud to be an Indigenous and Veteran-friendly employer.

The Kinetic IT Difference

• Growth-focused culture – Formal training, mentoring, vendor exam support, communities of practice and regular development reviews.
• Advance your career – Access new roles via our internal ‘Opportunity Marketplace’ careers hub.
• Flex your work – Hybrid options, flexible hours, mobility and part-time roles (customer needs permitting) and a variety of leave options (including paid parental leave and purchased leave) to suit your needs
• Celebrate together – Social events, cultural celebrations, end-of-year functions, DEI belonging events and more.
• Wellbeing matters – Health and wellness resources and events, free skin and health checks, free flu shots, tailored leave and support options, free and confidential EAP and access to Fitness Passport.

How To Apply

Work with us as we bring technology to life. Apply today or send your CV direct to careers@kineticit.com.au.

You can learn more about our culture and crew online at kineticit.com.au.