Cyber SecOps Analyst

Lendlease is Australia’s leading real estate business with International operations. Our core expertise is in Investment Management, Development, and Construction. For more than 60 years, we have created thriving places around the globe. Lendlease’s Digital team focuses on creating innovative solutions across the entire project lifecycle, from design and construction to operation and customer experience. Our work encompasses areas like data analytics, digital twins, smart buildings, and advanced construction technologies, ultimately aiming to improve efficiency, sustainability, and the overall value delivered to clients and communities. About the role We are looking for a Cyber SecOps Analyst to join our team based in Barangaroo. This individual ensures that alerts, investigations, and incidents escalated by the MSSP are validated, enriched, and managed within Lendlease’s risk and compliance frameworks. This person bridges outsourced operational monitoring with in-house risk governance, embedding detection and response expertise across Lendlease. Your key responsibilities include: Leading the integration of external threat intelligence and design targeted threat hunting campaigns. Conducting proactive threat hunts across endpoint, network, cloud, and OT environments. Analyzing and validating MSSP alerts; develop tailored detection rules and threat models. Overseeing security monitoring and manage complex incident responses, acting as incident manager when required. Enrich alerts with contextual data and track adversary TTPs using MITRE ATT&CK. Ensure compliance with DISP, PSPF, and ASD Essential 8; support audit readiness. Collaborate with MSSPs, internal teams, and Defence and OT stakeholders to enhance detection capabilities and governance. About you You’re a seasoned cyber security professional 3–5 years’ experience in SOC, detection, or incident response including hands‑on threat hunting. You thrive in fast‑paced environments, proactively identifying threats, leading complex investigations, and ensuring compliance with Defence and industry standards. You will also have: Proven experience in threat hunting, security monitoring, and incident response across diverse environments (endpoint, network, cloud, OT). Strong analytical skills to validate alerts, develop detection rules, and track adversary tactics using frameworks like MITRE ATT&CK. A strategic mindset for managing vulnerabilities, assessing risks, and driving remediation efforts. Familiarity with DISP, PSPF, and ASD Essential 8 compliance requirements. Excellent collaboration and communication skills to work with MSSPs, internal teams, and Defence stakeholders. Familiarity with SIEM technology/platforms and development of custom use cases. About us We are committed to developing and retaining the best people and provide the best possible learning and development opportunities. We are a company who thrive on our employee’s wellbeing, and offer benefits including: Health & Well‑being program, including well‑being leave to relax and recharge, health assessments, and gym/exercise discounts. Balance your career and personal life with work flexibility, purchase additional annual leave and extensive family support benefits. 26 weeks paid parental leave for both parents. 3x extra wellbeing days per year (on top of annual leave). At Lendlease we offer workplaces that unite diverse minds; where respect, equitable treatment and equitable opportunity are just the norm. We remain committed to supporting under‑represented groups and providing a wide range of inclusion initiatives, so that everyone is supported to thrive. Our commitment to Diversity, Equity and Inclusion is reflected in our Elevate Reconciliation Action Plan, our Bronze Award with the Australian Workplace Equality Index by Pride in Diversity, and our generous parental leave policy of 26 weeks to any parent regardless of gender. Lendlease welcomes applicants regardless of gender identity, ethnicity, people with a disability, sexual orientation, or life stage. If you do not meet all the criteria or require adjustments to proceed with your application, we encourage you to reach out for a further discussion. #J-18808-Ljbffr